Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3fuhW5jcIyk-9TMXBt8KSYTynxE.roa
File: 3fuhW5jcIyk-9TMXBt8KSYTynxE.roa (raw, json)
Hash identifier: 58oYO3xgwZI7P0hAqwyABL8lHs7nqraHEoJh/rA56So=
Subject key identifier: DD:FB:A1:5B:98:DC:23:29:3E:F5:33:17:06:DF:0A:49:84:F2:9F:11
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0D5E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3fuhW5jcIyk-9TMXBt8KSYTynxE.roa
Signing time: Thu 14 Jan 2021 07:45:55 +0000
ROA not before: Thu 14 Jan 2021 07:45:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 61.60.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3422 (0xd5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 14 07:45:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DDFBA15B98DC23293EF5331706DF0A4984F29F11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:82:0f:04:72:e3:39:d9:e2:43:40:fc:94:bd:
c4:90:95:b9:86:c0:39:d6:c1:1d:02:c2:3c:7a:4f:
05:41:99:b5:53:d0:63:ff:d7:5f:08:fd:83:71:e8:
0d:ee:70:fe:eb:e9:da:00:c5:85:46:ea:ab:25:90:
f7:73:d8:46:25:02:43:84:f3:40:5a:65:bd:2c:dd:
34:7a:d2:b4:ba:d4:3b:e9:8d:eb:54:d8:f4:b7:f3:
e4:5b:11:11:72:94:c1:d2:8b:50:30:4a:39:5f:99:
d6:14:b4:0c:a7:9d:ae:83:f2:4e:99:90:f6:4e:41:
63:35:6a:96:14:db:62:35:0c:4a:59:c2:d1:92:1d:
96:86:c9:55:e6:f6:5a:61:55:53:c7:cf:8e:14:e1:
49:62:0a:d6:9b:0e:f8:f7:b2:0b:98:37:f9:18:fd:
11:2a:b6:0f:4b:ad:3e:b3:b4:69:c1:7e:6c:bc:8a:
41:a4:6f:58:eb:f8:81:6d:66:9b:9c:df:62:29:47:
4a:5f:81:51:e1:9e:7a:cd:d9:f5:e7:ea:b5:f4:d3:
93:82:1e:49:ac:42:c1:9f:26:e8:a4:3d:a6:19:6b:
ac:1f:f9:e7:a2:64:89:8b:23:99:01:60:a1:43:eb:
6b:a8:40:d2:ba:5a:e4:36:f3:07:e0:73:f2:25:0a:
00:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:FB:A1:5B:98:DC:23:29:3E:F5:33:17:06:DF:0A:49:84:F2:9F:11
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3fuhW5jcIyk-9TMXBt8KSYTynxE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.214.0/24
Signature Algorithm: sha256WithRSAEncryption
32:3b:9f:e5:db:7e:b8:07:f6:95:6c:d7:a7:5c:5b:90:a7:05:
0c:dc:34:2b:e8:6a:7c:a1:eb:83:50:9c:a2:16:87:47:1a:01:
96:05:20:00:b0:f9:c9:3d:32:4d:41:f3:91:ca:61:64:5d:d0:
89:73:c4:88:08:57:27:db:fe:ed:42:79:9d:d8:f7:13:46:a4:
c4:d7:9a:88:43:04:86:4f:6b:11:56:af:46:f0:6b:b8:1d:9a:
40:1f:fe:22:e7:ef:93:e9:2f:59:dc:82:e6:6f:bd:da:53:a4:
1d:4c:15:53:9d:4f:71:98:bb:58:e0:83:7d:c5:d3:1f:4f:79:
ad:2d:c2:fd:65:40:42:1f:9d:73:ca:c8:78:5d:82:82:e9:e3:
54:ec:78:94:dc:b9:3e:f8:34:8b:18:3d:c7:90:30:27:92:77:
1c:98:87:04:9f:4b:c0:b1:fa:0d:03:96:cd:69:69:be:9d:ff:
3e:5a:d6:67:1b:80:7c:1c:47:d4:58:ad:15:aa:85:a0:69:b6:
ce:63:90:8d:3c:d9:e2:52:98:9b:82:e6:55:a4:32:c6:14:a2:
61:f2:cb:d7:f6:fd:a4:ad:49:67:a7:34:12:84:0a:47:c6:02:
47:52:7d:17:3c:4d:ea:d5:5f:e2:10:87:c5:56:3e:51:af:44:
54:2d:09:65
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAxMTQw
NzQ1NTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKERERkJBMTVCOThEQzIz
MjkzRUY1MzMxNzA2REYwQTQ5ODRGMjlGMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEgg8EcuM52eJDQPyUvcSQlbmGwDnWwR0Cwjx6TwVBmbVT0GP/
118I/YNx6A3ucP7r6doAxYVG6qslkPdz2EYlAkOE80BaZb0s3TR60rS61DvpjetU
2PS38+RbERFylMHSi1AwSjlfmdYUtAynna6D8k6ZkPZOQWM1apYU22I1DEpZwtGS
HZaGyVXm9lphVVPHz44U4UliCtabDvj3sguYN/kY/REqtg9LrT6ztGnBfmy8ikGk
b1jr+IFtZpuc32IpR0pfgVHhnnrN2fXn6rX005OCHkmsQsGfJuikPaYZa6wf+eei
ZImLI5kBYKFD62uoQNK6WuQ28wfgc/IlCgA7AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU3fuhW5jcIyk+9TMXBt8KSYTynxEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzNmdWhXNWpjSXlrLTlUTVhC
dDhLU1lUeW54RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9
PNYwDQYJKoZIhvcNAQELBQADggEBADI7n+XbfrgH9pVs16dcW5CnBQzcNCvoanyh
64NQnKIWh0caAZYFIACw+ck9Mk1B85HKYWRd0IlzxIgIVyfb/u1CeZ3Y9xNGpMTX
mohDBIZPaxFWr0bwa7gdmkAf/iLn75PpL1ncguZvvdpTpB1MFVOdT3GYu1jgg33F
0x9Pea0twv1lQEIfnXPKyHhdgoLp41TseJTcuT74NIsYPceQMCeSdxyYhwSfS8Cx
+g0Dls1pab6d/z5a1mcbgHwcR9RYrRWqhaBpts5jkI082eJSmJuC5lWkMsYUomHy
y9f2/aStSWenNBKECkfGAkdSfRc8TerVX+IQh8VWPlGvRFQtCWU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org