Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HtPTlGXyq4iBalsq_37lotMTF3A.roa
File: HtPTlGXyq4iBalsq_37lotMTF3A.roa (raw, json)
Hash identifier: yWa9vBzgCnw9w9D5gRS0KhD5ps5LJLODD+GYp9AWCzU=
Subject key identifier: 1E:D3:D3:94:65:F2:AB:88:81:6A:5B:2A:FF:7E:E5:A2:D3:13:17:70
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12CF
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HtPTlGXyq4iBalsq_37lotMTF3A.roa
Signing time: Wed 29 Sep 2021 02:55:01 +0000
ROA not before: Wed 29 Sep 2021 02:55:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 61.60.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4815 (0x12cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1ED3D39465F2AB88816A5B2AFF7EE5A2D3131770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3d:5c:07:81:44:99:36:60:f6:43:fb:05:64:
da:e4:61:0b:f4:4e:5f:af:ed:26:14:33:24:a5:d2:
8a:a2:b8:42:bb:13:54:1c:94:af:95:3f:5e:b2:e8:
8c:0b:63:13:9d:57:27:f4:55:ff:34:1c:16:79:4e:
d5:8b:96:e0:c4:51:91:84:d1:61:29:c8:0c:b1:5c:
cf:54:19:34:66:e5:e4:f3:8d:d0:88:69:1e:9b:3a:
bf:3b:42:bb:00:e2:fe:bf:92:c3:08:dc:51:14:20:
d0:e8:eb:fe:06:c9:4a:90:ce:10:d4:85:31:77:3e:
e9:3e:de:d1:c9:b9:9d:4d:3d:f3:70:86:09:01:06:
d9:04:1f:2d:a8:12:2e:0b:9f:6c:29:02:c9:c0:27:
3d:19:ef:bd:87:33:8e:bb:60:a3:80:3e:f3:bf:b1:
c1:8a:6b:b3:46:ec:9f:65:90:93:81:6c:fe:dc:de:
fd:4b:dc:13:fe:58:ee:29:a4:83:cf:52:7e:a0:fc:
9c:72:29:db:1e:16:71:68:5c:d4:5f:ce:a7:ff:6d:
23:9e:69:70:1a:b2:54:8b:2c:8c:75:36:75:6d:5d:
78:9c:c5:39:c5:34:8d:11:7f:13:4f:13:16:84:5f:
65:37:c3:7f:92:e9:32:01:7a:f0:06:f7:e0:b0:46:
b6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D3:D3:94:65:F2:AB:88:81:6A:5B:2A:FF:7E:E5:A2:D3:13:17:70
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HtPTlGXyq4iBalsq_37lotMTF3A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.215.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:e1:5f:61:b2:ad:f4:07:a9:cb:48:7e:01:a1:48:d7:0e:d2:
a0:26:10:5d:87:ca:71:c7:a6:47:8d:55:09:75:08:03:75:be:
ba:2c:96:d5:e1:36:13:0d:08:ec:ec:82:3b:1b:00:18:29:fc:
df:91:fa:c9:b5:48:dd:d0:c1:fb:a8:f6:b2:5c:ec:5b:a1:57:
bc:1f:40:f3:30:22:23:5c:26:d2:81:f8:ef:db:70:78:69:fd:
3a:4f:5e:c5:89:d8:6e:09:54:9a:be:6a:2e:d1:73:d3:e1:00:
24:18:1e:2a:c3:9d:d3:e0:86:6b:32:be:b0:e9:52:fb:f6:93:
77:a7:69:8a:85:db:7c:9b:76:18:f9:68:0e:8c:84:ea:9e:32:
04:d8:80:d4:8b:d6:7d:a2:84:34:5b:13:37:56:54:13:23:98:
6a:d1:d4:f1:72:29:2b:ea:f3:17:09:e7:cb:83:34:66:94:9a:
70:49:97:60:4d:41:36:f5:17:69:e6:be:48:51:59:ac:ee:9a:
69:00:57:44:ee:e6:39:19:8d:ed:31:be:51:01:2a:dd:1c:de:
e0:d6:94:65:4f:72:ca:de:2c:3d:03:65:40:00:2c:5b:8a:07:
c4:e5:d6:fa:49:75:24:e0:72:88:76:4c:9c:fe:ed:5f:81:37:
20:76:37:d3
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEs8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1MDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDFFRDNEMzk0NjVGMkFC
ODg4MTZBNUIyQUZGN0VFNUEyRDMxMzE3NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSPVwHgUSZNmD2Q/sFZNrkYQv0Tl+v7SYUMySl0oqiuEK7E1Qc
lK+VP16y6IwLYxOdVyf0Vf80HBZ5TtWLluDEUZGE0WEpyAyxXM9UGTRm5eTzjdCI
aR6bOr87QrsA4v6/ksMI3FEUINDo6/4GyUqQzhDUhTF3Puk+3tHJuZ1NPfNwhgkB
BtkEHy2oEi4Ln2wpAsnAJz0Z772HM467YKOAPvO/scGKa7NG7J9lkJOBbP7c3v1L
3BP+WO4ppIPPUn6g/JxyKdseFnFoXNRfzqf/bSOeaXAaslSLLIx1NnVtXXicxTnF
NI0RfxNPExaEX2U3w3+S6TIBevAG9+CwRrYhAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUHtPTlGXyq4iBalsq/37lotMTF3AwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0h0UFRsR1h5cTRpQmFsc3Ff
Mzdsb3RNVEYzQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9
PNcwDQYJKoZIhvcNAQELBQADggEBAJ/hX2GyrfQHqctIfgGhSNcO0qAmEF2HynHH
pkeNVQl1CAN1vrosltXhNhMNCOzsgjsbABgp/N+R+sm1SN3Qwfuo9rJc7FuhV7wf
QPMwIiNcJtKB+O/bcHhp/TpPXsWJ2G4JVJq+ai7Rc9PhACQYHirDndPghmsyvrDp
Uvv2k3enaYqF23ybdhj5aA6MhOqeMgTYgNSL1n2ihDRbEzdWVBMjmGrR1PFyKSvq
8xcJ58uDNGaUmnBJl2BNQTb1F2nmvkhRWazummkAV0Tu5jkZje0xvlEBKt0c3uDW
lGVPcsreLD0DZUAALFuKB8Tl1vpJdSTgcoh2TJz+7V+BNyB2N9M=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org