Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MWfG1EAVHlpyZqezqRmoFaWvH1w.roa
File: MWfG1EAVHlpyZqezqRmoFaWvH1w.roa (raw, json)
Hash identifier: QbXzo6vFOgPCHIt+E9vGyFVw/YEy5gE3+4r4okFTZ5A=
Subject key identifier: 31:67:C6:D4:40:15:1E:5A:72:66:A7:B3:A9:19:A8:15:A5:AF:1F:5C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1251
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MWfG1EAVHlpyZqezqRmoFaWvH1w.roa
Signing time: Wed 29 Sep 2021 02:54:27 +0000
ROA not before: Wed 29 Sep 2021 02:54:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 119.77.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4689 (0x1251)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3167C6D440151E5A7266A7B3A919A815A5AF1F5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0f:36:53:0e:3b:c2:c8:51:ea:f6:11:4c:2b:
e0:f4:ae:cc:fb:95:c1:03:de:73:41:b5:be:ba:99:
94:51:6e:d8:4d:83:a8:c4:08:80:10:17:35:2f:0b:
2c:1a:6f:88:8c:05:4f:86:c6:b8:6e:a1:d2:d9:4b:
50:fb:19:21:39:b4:07:f1:72:71:6c:31:6c:04:37:
6b:3c:8a:e5:a4:16:c8:f1:a2:d4:87:d2:6c:48:7e:
8b:a9:c4:a7:c5:b6:81:da:64:cb:2a:ba:80:7c:cb:
5b:ab:ee:c0:86:ab:84:3b:cf:2c:e3:e1:89:08:43:
da:e7:c3:62:7f:fa:12:80:ac:3b:55:8d:29:a6:fd:
98:3b:6a:e1:dd:7e:c5:68:34:f6:34:7c:84:7b:06:
9b:78:18:ba:e0:1a:c1:f8:8d:c2:b2:be:6c:1d:d5:
90:cb:de:77:88:37:4e:02:e2:46:22:bd:e8:36:ca:
c4:08:9c:a7:c6:51:32:6a:88:c9:c5:ec:84:26:1f:
d9:70:9a:a0:8b:33:db:ef:37:4f:d9:b8:42:5b:5d:
e7:d3:35:87:cd:6f:89:85:d7:3c:73:52:ad:78:e7:
cf:55:ab:31:42:2b:37:f9:9b:a7:12:5d:fe:79:e1:
b1:6d:9d:2e:46:e9:b7:3f:70:96:d0:11:61:6b:a6:
c7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:67:C6:D4:40:15:1E:5A:72:66:A7:B3:A9:19:A8:15:A5:AF:1F:5C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MWfG1EAVHlpyZqezqRmoFaWvH1w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.136.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:d4:67:b8:89:c8:a5:62:72:52:78:00:d1:54:39:70:a9:a2:
74:f7:c8:b5:b3:c9:99:e1:db:a7:99:93:2d:cc:97:15:1c:78:
b8:76:cc:3b:79:e1:01:5a:eb:c5:3a:87:97:72:09:b0:0d:eb:
cc:23:d4:47:24:04:25:17:e0:4b:b6:6d:14:23:51:48:4b:3a:
79:70:a7:1d:34:8d:59:1e:81:4b:22:d6:1c:2a:5a:de:cf:1a:
5d:e2:cf:60:73:7f:0d:89:c6:df:e9:5b:31:af:a6:4c:67:d8:
ea:5e:b7:ca:46:5d:10:6d:53:fa:19:f3:a3:ca:20:93:6a:3a:
e2:18:f8:1d:c0:c9:de:ac:25:a4:ef:3e:53:1f:7e:1c:81:6a:
0c:67:bc:cb:91:61:b1:1b:7f:c4:a4:c7:4b:a8:4b:76:de:13:
18:d4:fc:4a:8d:d3:91:80:fe:b2:bf:a2:9b:65:6e:59:e7:3b:
3b:6b:11:ba:60:60:c3:f4:ce:80:f0:34:3c:bb:6a:60:e9:68:
db:7d:a8:b5:19:25:9e:87:50:cf:98:4e:10:24:6f:71:6d:53:
9d:07:e8:a7:bf:7c:37:5e:6e:95:aa:0b:6f:d2:87:5e:ed:b1:
21:b8:19:7b:a4:37:1d:f3:e2:f2:a4:b9:20:97:35:86:90:f7:
ab:5d:9f:14
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICElEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0MjdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDMxNjdDNkQ0NDAxNTFF
NUE3MjY2QTdCM0E5MTlBODE1QTVBRjFGNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+DzZTDjvCyFHq9hFMK+D0rsz7lcED3nNBtb66mZRRbthNg6jE
CIAQFzUvCywab4iMBU+GxrhuodLZS1D7GSE5tAfxcnFsMWwEN2s8iuWkFsjxotSH
0mxIfoupxKfFtoHaZMsquoB8y1ur7sCGq4Q7zyzj4YkIQ9rnw2J/+hKArDtVjSmm
/Zg7auHdfsVoNPY0fIR7Bpt4GLrgGsH4jcKyvmwd1ZDL3neIN04C4kYiveg2ysQI
nKfGUTJqiMnF7IQmH9lwmqCLM9vvN0/ZuEJbXefTNYfNb4mF1zxzUq14589VqzFC
Kzf5m6cSXf554bFtnS5G6bc/cJbQEWFrpseFAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUMWfG1EAVHlpyZqezqRmoFaWvH1wwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL01XZkcxRUFWSGxweVpxZXpx
Um1vRmFXdkgxdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ3
TYgwDQYJKoZIhvcNAQELBQADggEBAB7UZ7iJyKViclJ4ANFUOXCponT3yLWzyZnh
26eZky3MlxUceLh2zDt54QFa68U6h5dyCbAN68wj1EckBCUX4Eu2bRQjUUhLOnlw
px00jVkegUsi1hwqWt7PGl3iz2Bzfw2Jxt/pWzGvpkxn2Opet8pGXRBtU/oZ86PK
IJNqOuIY+B3Ayd6sJaTvPlMffhyBagxnvMuRYbEbf8Skx0uoS3beExjU/EqN05GA
/rK/optlblnnOztrEbpgYMP0zoDwNDy7amDpaNt9qLUZJZ6HUM+YThAkb3FtU50H
6Ke/fDdebpWqC2/Sh17tsSG4GXukNx3z4vKkuSCXNYaQ96tdnxQ=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:48 2023 by rpki-client on console-fra.rpki-client.org