Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HC9pLaz0IwhLot7XQuRSY0_tAzA.roa
File: HC9pLaz0IwhLot7XQuRSY0_tAzA.roa (raw, json)
Hash identifier: zt9ilXtRkj7rgCsuzIlgkuE+Cj5msLQToWb/Y8lml4k=
Subject key identifier: 1C:2F:69:2D:AC:F4:23:08:4B:A2:DE:D7:42:E4:52:63:4F:ED:03:30
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HC9pLaz0IwhLot7XQuRSY0_tAzA.roa
Signing time: Thu 15 Sep 2022 02:35:18 +0000
ROA not before: Thu 15 Sep 2022 02:35:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 61.60.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1C2F692DACF423084BA2DED742E452634FED0330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fc:3a:21:8a:5f:44:6b:68:b7:72:b7:a0:93:
05:09:b1:bb:3f:76:2c:26:b0:d0:e8:20:fa:a5:a3:
1b:b2:ca:34:47:c3:d3:42:6f:20:f1:75:ec:c2:d8:
05:dd:29:c7:90:23:b9:9f:a4:31:ca:9a:77:cf:c4:
9f:f9:12:de:8d:d2:2c:a2:d1:28:01:d6:0f:14:34:
09:8c:cc:d1:df:cd:96:ed:9c:d4:98:40:26:a9:4b:
c2:a5:56:ad:57:c6:48:65:d2:e5:f5:24:31:c7:61:
92:65:0e:6a:e0:6f:51:a0:7c:f1:54:bb:fc:db:b2:
06:e4:7f:53:e7:dc:76:37:01:9a:e0:d7:b4:b4:13:
4e:0b:f4:2d:4b:8d:f3:04:92:7a:a1:10:0d:0d:ee:
55:34:ff:a4:ae:22:4b:70:2d:39:cd:83:d9:29:5d:
b5:4b:3a:5b:24:93:f3:88:4a:a6:56:70:34:7b:34:
f7:75:ce:1c:29:e0:5b:ac:09:e9:0a:28:f5:cf:25:
f7:ed:9f:26:3d:76:bd:9e:42:ce:42:a3:12:9e:27:
84:48:d0:38:65:20:9b:38:84:24:b3:9d:e4:d1:77:
17:1d:6d:bd:55:e2:66:58:7d:d9:d3:64:70:ea:09:
d8:45:63:ba:e4:ae:65:7e:81:8b:ca:c4:46:38:ee:
79:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:2F:69:2D:AC:F4:23:08:4B:A2:DE:D7:42:E4:52:63:4F:ED:03:30
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HC9pLaz0IwhLot7XQuRSY0_tAzA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.208.0/21
Signature Algorithm: sha256WithRSAEncryption
56:69:3d:20:67:90:60:f4:7d:50:e0:ba:1a:a1:4e:1c:e2:03:
99:a9:9c:bf:d5:00:20:eb:82:e1:ce:34:f6:6a:d3:df:ea:25:
d3:f1:d1:d5:b9:23:ec:f8:b8:6e:b5:5d:78:44:1b:09:19:27:
5d:91:4c:23:c0:a9:00:af:a1:5c:e3:c7:8b:c2:ef:35:e1:f7:
80:fa:c1:90:30:93:af:cf:62:90:f7:2b:bf:22:2e:2d:a2:15:
85:e4:98:9e:98:a0:8b:a6:5e:e1:9e:88:f6:32:74:b3:59:28:
25:a6:38:aa:a8:14:6b:89:29:8f:da:9d:c9:35:65:0d:bd:63:
65:89:0c:7b:08:4a:96:02:4f:ce:b8:8e:d3:da:50:41:bf:bb:
c6:81:24:bc:98:0c:44:b1:b0:ae:55:b2:7e:5a:e3:2b:a9:19:
41:60:c3:e1:ef:ce:50:c8:d1:03:e1:06:42:7a:6e:27:6e:8f:
d2:16:b3:b9:bb:a1:b4:b4:29:b7:dd:d5:61:7b:2a:37:28:40:
00:d6:68:f5:a0:e2:cf:e8:cc:cd:ef:3e:b3:42:84:10:1c:12:
f5:ee:0a:9d:f2:63:ab:2c:28:1c:0e:92:dd:26:6a:8d:9a:50:
00:4a:24:ab:54:82:56:8e:cf:c7:1c:a6:16:a9:05:2b:0c:00:
a8:00:80:29
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA5MTUw
MjM1MThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFDMkY2OTJEQUNGNDIz
MDg0QkEyREVENzQyRTQ1MjYzNEZFRDAzMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCe/Dohil9Ea2i3cregkwUJsbs/diwmsNDoIPqloxuyyjRHw9NC
byDxdezC2AXdKceQI7mfpDHKmnfPxJ/5Et6N0iyi0SgB1g8UNAmMzNHfzZbtnNSY
QCapS8KlVq1Xxkhl0uX1JDHHYZJlDmrgb1GgfPFUu/zbsgbkf1Pn3HY3AZrg17S0
E04L9C1LjfMEknqhEA0N7lU0/6SuIktwLTnNg9kpXbVLOlskk/OISqZWcDR7NPd1
zhwp4FusCekKKPXPJfftnyY9dr2eQs5CoxKeJ4RI0DhlIJs4hCSzneTRdxcdbb1V
4mZYfdnTZHDqCdhFY7rkrmV+gYvKxEY47nm1AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUHC9pLaz0IwhLot7XQuRSY0/tAzAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0hDOXBMYXowSXdoTG90N1hR
dVJTWTBfdEF6QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9
PNAwDQYJKoZIhvcNAQELBQADggEBAFZpPSBnkGD0fVDguhqhThziA5mpnL/VACDr
guHONPZq09/qJdPx0dW5I+z4uG61XXhEGwkZJ12RTCPAqQCvoVzjx4vC7zXh94D6
wZAwk6/PYpD3K78iLi2iFYXkmJ6YoIumXuGeiPYydLNZKCWmOKqoFGuJKY/anck1
ZQ29Y2WJDHsISpYCT864jtPaUEG/u8aBJLyYDESxsK5Vsn5a4yupGUFgw+HvzlDI
0QPhBkJ6biduj9IWs7m7obS0Kbfd1WF7KjcoQADWaPWg4s/ozM3vPrNChBAcEvXu
Cp3yY6ssKBwOkt0mao2aUABKJKtUglaOz8ccphapBSsMAKgAgCk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org