Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3IjcmDyXXX5EzpV8-gnlJ8_S_P0.roa
File: 3IjcmDyXXX5EzpV8-gnlJ8_S_P0.roa (raw, json)
Hash identifier: r+v4k6HVU3mcuBw/ogU2OmunNm2PMuapgsPFbu3hrtw=
Subject key identifier: DC:88:DC:98:3C:97:5D:7E:44:CE:95:7C:FA:09:E5:27:CF:D2:FC:FD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1077
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3IjcmDyXXX5EzpV8-gnlJ8_S_P0.roa
Signing time: Sun 07 Feb 2021 12:45:42 +0000
ROA not before: Sun 07 Feb 2021 12:45:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 119.77.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4215 (0x1077)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:45:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DC88DC983C975D7E44CE957CFA09E527CFD2FCFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2a:22:51:ef:44:62:e4:6a:73:0b:73:5b:e5:
68:ae:74:18:8f:57:50:9b:8d:5b:48:d2:1d:6a:b7:
f9:91:2c:f2:2d:ba:44:78:b9:f9:e5:ac:ca:2e:35:
0e:72:5d:e2:c9:74:08:0c:31:23:51:89:28:65:a6:
21:5d:14:17:0f:9b:b7:8e:3e:aa:0b:4f:80:43:7f:
75:3c:75:19:22:83:7d:4d:8b:57:f8:a2:da:e7:54:
a7:d2:c6:6a:29:4d:1a:5c:aa:34:dc:05:02:f1:6c:
ba:d6:85:c9:cf:1b:5e:15:6d:c1:75:9f:fa:6d:b4:
d1:ea:55:e0:42:59:5e:59:25:13:4c:db:c0:84:c9:
ba:de:d7:d3:94:0c:be:eb:c5:b0:8b:0d:af:13:65:
c7:ec:3d:66:a5:f4:1a:7d:d2:70:20:b0:72:13:29:
99:47:77:93:8d:b9:a3:db:31:2b:2a:be:df:7f:dd:
59:cd:4c:ac:b9:08:f3:3c:8e:79:7f:3a:2b:0f:9c:
d5:ae:c4:fc:97:b4:56:86:6a:5e:e5:0b:af:66:a4:
96:16:84:26:7c:20:eb:76:59:4d:72:7f:30:06:33:
01:f0:82:40:dd:b4:7d:0d:4c:be:4f:11:f5:31:81:
f4:f5:55:b9:fe:42:7c:fc:25:99:4f:57:2b:9e:6c:
db:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:88:DC:98:3C:97:5D:7E:44:CE:95:7C:FA:09:E5:27:CF:D2:FC:FD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3IjcmDyXXX5EzpV8-gnlJ8_S_P0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.254.0/24
Signature Algorithm: sha256WithRSAEncryption
92:ed:ff:32:ae:7e:72:fb:10:f5:e8:8d:5b:16:a0:87:e4:52:
9c:c3:ea:5b:9e:55:c6:c2:8f:5f:89:4a:4a:d8:25:ca:de:09:
e1:c4:61:a5:ea:07:ad:26:1c:25:79:76:08:be:6a:31:4a:fc:
d8:c8:9a:5b:c4:7d:b7:c7:98:83:eb:2b:40:28:bf:e9:28:8d:
4d:96:fa:e4:84:98:d6:93:69:dd:fb:21:3f:c4:47:1a:b9:47:
2f:3b:20:1b:e2:9b:c6:a5:c2:37:19:cf:df:f0:5d:0c:37:ea:
41:e0:7e:05:af:06:07:e9:65:0c:11:9c:72:53:41:ea:2c:71:
3d:9a:80:f4:18:db:e2:d2:9d:62:88:06:38:4a:4c:7f:a0:90:
48:f5:b1:c2:08:20:4c:4d:11:d6:d0:6f:79:38:a8:db:bb:32:
63:d3:c7:c1:b5:9c:36:09:fa:32:6e:8e:2d:75:9d:45:cb:35:
55:eb:15:e9:86:41:cf:47:f5:e4:44:ac:00:b3:2d:94:10:1d:
0e:09:d6:3d:e7:e3:c2:8a:e8:fa:1a:12:67:ef:37:ee:7a:3a:
85:75:18:a6:73:cf:b3:d9:4b:ce:5f:f3:34:cc:71:f6:04:1f:
ab:9e:0e:91:21:c9:d4:a5:b8:b7:04:30:92:fa:9c:6d:b5:5a:
31:5d:6f:2e
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEHcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjQ1NDJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKERDODhEQzk4M0M5NzVE
N0U0NENFOTU3Q0ZBMDlFNTI3Q0ZEMkZDRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuKiJR70Ri5GpzC3Nb5WiudBiPV1CbjVtI0h1qt/mRLPItukR4
ufnlrMouNQ5yXeLJdAgMMSNRiShlpiFdFBcPm7eOPqoLT4BDf3U8dRkig31Ni1f4
otrnVKfSxmopTRpcqjTcBQLxbLrWhcnPG14VbcF1n/pttNHqVeBCWV5ZJRNM28CE
ybre19OUDL7rxbCLDa8TZcfsPWal9Bp90nAgsHITKZlHd5ONuaPbMSsqvt9/3VnN
TKy5CPM8jnl/OisPnNWuxPyXtFaGal7lC69mpJYWhCZ8IOt2WU1yfzAGMwHwgkDd
tH0NTL5PEfUxgfT1Vbn+Qnz8JZlPVyuebNvRAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU3IjcmDyXXX5EzpV8+gnlJ8/S/P0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzNJamNtRHlYWFg1RXpwVjgt
Z25sSjhfU19QMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3
Tf4wDQYJKoZIhvcNAQELBQADggEBAJLt/zKufnL7EPXojVsWoIfkUpzD6lueVcbC
j1+JSkrYJcreCeHEYaXqB60mHCV5dgi+ajFK/NjImlvEfbfHmIPrK0Aov+kojU2W
+uSEmNaTad37IT/ERxq5Ry87IBvim8alwjcZz9/wXQw36kHgfgWvBgfpZQwRnHJT
QeoscT2agPQY2+LSnWKIBjhKTH+gkEj1scIIIExNEdbQb3k4qNu7MmPTx8G1nDYJ
+jJuji11nUXLNVXrFemGQc9H9eRErACzLZQQHQ4J1j3n48KK6PoaEmfvN+56OoV1
GKZzz7PZS85f8zTMcfYEH6ueDpEhydSluLcEMJL6nG21WjFdby4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org