Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NNrBVXsYRgPZ25M0YDYI870ehqM.roa
File: NNrBVXsYRgPZ25M0YDYI870ehqM.roa (raw, json)
Hash identifier: EMSeuGvH1pFGghj39lSBdIomN7bhBqiBdQylO6+aLDs=
Subject key identifier: 34:DA:C1:55:7B:18:46:03:D9:DB:93:34:60:36:08:F3:BD:1E:86:A3
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 10F5
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NNrBVXsYRgPZ25M0YDYI870ehqM.roa
Signing time: Sun 07 Feb 2021 12:49:57 +0000
ROA not before: Sun 07 Feb 2021 12:49:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 114.198.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4341 (0x10f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:49:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=34DAC1557B184603D9DB9334603608F3BD1E86A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:c9:7d:60:0a:88:89:09:a0:8d:f3:77:2a:f3:
d6:16:85:5b:8f:6c:80:70:ff:84:47:de:85:ab:91:
3b:44:95:b7:1a:75:5b:58:af:85:bc:89:6d:75:f6:
03:37:d8:a0:73:b6:0a:20:cf:4f:df:d9:1f:8c:c4:
d5:0b:14:41:0a:20:90:27:19:4b:4a:f0:f4:71:30:
67:46:bf:32:00:a2:43:4f:9c:19:c5:ba:9f:0b:1d:
b4:8c:3b:95:9b:b9:47:29:06:79:73:c6:2e:05:dd:
f3:01:7a:30:da:fd:d4:d5:6c:77:c9:13:0d:7c:45:
aa:d8:78:d3:44:f8:bc:8e:fe:15:e2:cb:c7:51:3f:
0c:97:8b:a7:83:07:93:46:0b:57:9a:aa:11:ec:0b:
7d:74:2f:86:b9:92:db:fb:75:87:35:e4:c7:88:98:
08:7b:d5:54:84:65:9f:a5:c0:12:7a:d3:69:6a:7d:
30:f5:fb:e8:9b:6c:eb:d5:b5:f6:99:8d:de:6f:e2:
40:3a:f0:d2:d9:00:2a:56:30:76:39:41:0c:24:7b:
16:9f:91:c1:b6:16:f9:92:ca:b0:c1:5d:cc:07:c4:
f9:98:18:de:a1:0a:06:a5:2a:f1:ae:44:0e:e0:48:
58:04:f5:bf:cc:44:bc:3d:84:0f:95:eb:30:2e:10:
6d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:DA:C1:55:7B:18:46:03:D9:DB:93:34:60:36:08:F3:BD:1E:86:A3
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NNrBVXsYRgPZ25M0YDYI870ehqM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.160.0/20
Signature Algorithm: sha256WithRSAEncryption
5c:ff:ba:c7:25:92:e7:2d:7a:02:6e:a6:e0:a0:37:2b:19:ac:
3d:7f:cb:06:52:3b:30:a4:00:06:b2:2c:45:7e:a3:e6:84:e2:
bd:59:b4:31:ee:d7:6d:6a:19:89:96:db:c9:bf:1a:e4:08:89:
34:ad:92:ec:cd:d3:b8:f0:4d:17:e4:23:81:cd:c6:52:61:70:
9f:a7:a8:dd:22:21:99:fc:e5:83:38:e1:01:78:a0:7e:41:41:
07:df:2b:81:f8:f5:a1:e5:79:92:94:c3:64:05:82:92:94:ae:
61:80:d9:be:06:d2:3a:a3:97:5b:ef:96:36:4a:5a:19:13:ae:
f8:24:62:3c:c3:44:66:1c:14:88:00:72:37:9f:4e:ee:b4:b0:
02:74:e0:81:c8:51:a7:67:4b:e6:87:ef:b6:b0:ce:9a:f3:cd:
8a:f7:13:d1:f2:c9:c6:df:80:d2:47:3e:04:95:5f:a5:e3:8f:
95:ff:16:c5:12:7f:16:49:43:f7:51:f3:92:61:a6:9e:42:b7:
2e:05:b0:62:aa:29:7a:e8:d8:eb:84:4e:ec:bd:15:b1:85:d1:
8e:c9:c2:33:d1:1c:6a:b2:b6:5e:50:14:0d:1a:ad:bf:69:a0:
09:c0:6e:60:7b:e1:b4:df:8f:22:6f:30:15:13:3e:95:af:18:
fe:35:70:59
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEPUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjQ5NTdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM0REFDMTU1N0IxODQ2
MDNEOURCOTMzNDYwMzYwOEYzQkQxRTg2QTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDwyX1gCoiJCaCN83cq89YWhVuPbIBw/4RH3oWrkTtElbcadVtY
r4W8iW119gM32KBztgogz0/f2R+MxNULFEEKIJAnGUtK8PRxMGdGvzIAokNPnBnF
up8LHbSMO5WbuUcpBnlzxi4F3fMBejDa/dTVbHfJEw18RarYeNNE+LyO/hXiy8dR
PwyXi6eDB5NGC1eaqhHsC310L4a5ktv7dYc15MeImAh71VSEZZ+lwBJ602lqfTD1
++ibbOvVtfaZjd5v4kA68NLZACpWMHY5QQwkexafkcG2FvmSyrDBXcwHxPmYGN6h
CgalKvGuRA7gSFgE9b/MRLw9hA+V6zAuEG3tAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUNNrBVXsYRgPZ25M0YDYI870ehqMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL05OckJWWHNZUmdQWjI1TTBZ
RFlJODcwZWhxTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy
xqAwDQYJKoZIhvcNAQELBQADggEBAFz/usclkuctegJupuCgNysZrD1/ywZSOzCk
AAayLEV+o+aE4r1ZtDHu121qGYmW28m/GuQIiTStkuzN07jwTRfkI4HNxlJhcJ+n
qN0iIZn85YM44QF4oH5BQQffK4H49aHleZKUw2QFgpKUrmGA2b4G0jqjl1vvljZK
WhkTrvgkYjzDRGYcFIgAcjefTu60sAJ04IHIUadnS+aH77awzprzzYr3E9Hyycbf
gNJHPgSVX6Xjj5X/FsUSfxZJQ/dR85Jhpp5Cty4FsGKqKXro2OuETuy9FbGF0Y7J
wjPRHGqytl5QFA0arb9poAnAbmB74bTfjyJvMBUTPpWvGP41cFk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org