Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GJl-etMcHmD5WkUVaxdYnt_-p-8.roa
File: GJl-etMcHmD5WkUVaxdYnt_-p-8.roa (raw, json)
Hash identifier: RYmPH6xJQFGY7ovRAZnEajZLjEFTmW1wMbqBERxIR6I=
Subject key identifier: 18:99:7E:7A:D3:1C:1E:60:F9:5A:45:15:6B:17:58:9E:DF:FE:A7:EF
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GJl-etMcHmD5WkUVaxdYnt_-p-8.roa
Signing time: Thu 15 Sep 2022 02:35:31 +0000
ROA not before: Thu 15 Sep 2022 02:35:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4662
IP address blocks: 211.76.64.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=18997E7AD31C1E60F95A45156B17589EDFFEA7EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f0:35:30:66:7b:b1:c7:5f:43:e6:b8:21:80:
b3:b5:2f:0f:ff:48:42:c2:f9:85:74:6a:bd:5c:f2:
30:a9:f5:cf:ab:69:5d:23:4f:14:ef:23:55:91:11:
3e:e5:4e:bd:7a:7a:7c:81:54:9b:02:0e:0d:26:60:
e5:0c:ce:c4:d7:18:0e:f8:10:eb:2e:98:32:d3:7a:
88:b3:e7:88:4b:dc:52:1e:17:d6:6d:1c:39:f9:80:
76:67:4b:02:0a:d4:54:d2:35:be:53:07:ac:dc:33:
94:b6:02:b4:a1:46:68:55:6b:b9:63:d0:97:3f:6d:
bf:5f:8b:36:f3:d5:71:78:db:05:1f:10:0b:96:20:
64:ca:62:4b:b7:a1:67:37:1b:cb:10:47:ec:cf:5b:
55:d7:75:bd:9d:33:a5:1a:70:29:99:f0:af:ee:ec:
7e:db:60:63:f4:3b:d3:26:5f:73:f3:e2:b3:a0:99:
b8:f8:5f:3c:4a:53:cf:60:d5:19:8d:14:0c:38:a2:
01:10:a0:3f:c1:57:b2:ee:0c:83:aa:d3:f4:27:1a:
96:ba:25:68:0d:a4:54:32:69:61:44:8b:2d:0b:c7:
6d:e2:3c:07:70:2f:a3:1d:3f:a0:1e:cb:02:72:86:
62:23:38:b8:16:32:e0:d6:f9:db:12:85:4b:60:6e:
85:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:99:7E:7A:D3:1C:1E:60:F9:5A:45:15:6B:17:58:9E:DF:FE:A7:EF
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GJl-etMcHmD5WkUVaxdYnt_-p-8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.64.0/20
Signature Algorithm: sha256WithRSAEncryption
9e:06:a7:75:57:2e:a1:e5:72:f7:d9:ed:9b:9f:a2:aa:fc:4c:
f4:fa:6e:2d:31:c1:f3:a8:de:28:6d:92:06:66:49:a0:59:c2:
40:25:9c:bf:d0:80:4e:c4:22:a5:ae:83:0c:eb:b7:d1:8d:04:
a1:33:13:f7:51:ac:13:f0:8c:df:55:7f:8c:df:f6:b6:49:28:
49:5b:f6:1d:25:21:1f:59:f3:1d:42:dc:22:6c:89:5a:72:0e:
26:73:8d:99:ef:e1:42:8e:bb:cf:5d:0c:21:d1:1e:f8:8a:fa:
37:22:42:84:ff:c1:08:bd:4d:85:9c:93:f1:80:45:a9:cc:e2:
66:2d:2e:7a:7b:99:c8:17:88:40:a7:46:97:01:b3:b2:da:37:
51:8b:1e:6e:f6:11:4d:a1:bc:cb:b1:de:9f:b1:4a:dc:e7:34:
98:93:33:68:56:a2:f8:6c:8e:a0:a7:70:2c:0b:df:ee:a4:aa:
b0:51:41:f9:f2:d2:9e:97:60:4c:8b:86:36:cb:7a:74:b9:ab:
4b:6c:5d:a0:93:08:af:e2:15:b4:95:95:bd:6d:c3:30:e5:4d:
86:2f:04:04:4d:8b:40:22:b0:6d:e4:d9:de:53:a5:23:5f:03:
04:74:73:a6:98:99:f6:a6:55:17:27:0e:74:8b:af:96:40:ef:
f0:2e:6f:40
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA5MTUw
MjM1MzFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDE4OTk3RTdBRDMxQzFF
NjBGOTVBNDUxNTZCMTc1ODlFREZGRUE3RUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDP8DUwZnuxx19D5rghgLO1Lw//SELC+YV0ar1c8jCp9c+raV0j
TxTvI1WRET7lTr16enyBVJsCDg0mYOUMzsTXGA74EOsumDLTeoiz54hL3FIeF9Zt
HDn5gHZnSwIK1FTSNb5TB6zcM5S2ArShRmhVa7lj0Jc/bb9fizbz1XF42wUfEAuW
IGTKYku3oWc3G8sQR+zPW1XXdb2dM6UacCmZ8K/u7H7bYGP0O9MmX3Pz4rOgmbj4
XzxKU89g1RmNFAw4ogEQoD/BV7LuDIOq0/QnGpa6JWgNpFQyaWFEiy0Lx23iPAdw
L6MdP6AeywJyhmIjOLgWMuDW+dsShUtgboUTAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUGJl+etMcHmD5WkUVaxdYnt/+p+8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0dKbC1ldE1jSG1ENVdrVVZh
eGRZbnRfLXAtOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATT
TEAwDQYJKoZIhvcNAQELBQADggEBAJ4Gp3VXLqHlcvfZ7Zufoqr8TPT6bi0xwfOo
3ihtkgZmSaBZwkAlnL/QgE7EIqWugwzrt9GNBKEzE/dRrBPwjN9Vf4zf9rZJKElb
9h0lIR9Z8x1C3CJsiVpyDiZzjZnv4UKOu89dDCHRHviK+jciQoT/wQi9TYWck/GA
RanM4mYtLnp7mcgXiECnRpcBs7LaN1GLHm72EU2hvMux3p+xStznNJiTM2hWovhs
jqCncCwL3+6kqrBRQfny0p6XYEyLhjbLenS5q0tsXaCTCK/iFbSVlb1twzDlTYYv
BARNi0AisG3k2d5TpSNfAwR0c6aYmfamVRcnDnSLr5ZA7/Aub0A=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org