Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O9an_5wnMPv4WOJLFotwpYIHWIw.roa
File: O9an_5wnMPv4WOJLFotwpYIHWIw.roa (raw, json)
Hash identifier: EI6jbX3vnSjU7cwKHarUJ4xjq5rx5RPRZk6vlJ1MIx8=
Subject key identifier: 3B:D6:A7:FF:9C:27:30:FB:F8:58:E2:4B:16:8B:70:A5:82:07:58:8C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0BB8
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O9an_5wnMPv4WOJLFotwpYIHWIw.roa
Signing time: Tue 29 Sep 2020 10:08:45 +0000
ROA not before: Tue 29 Sep 2020 10:08:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 119.77.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3000 (0xbb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3BD6A7FF9C2730FBF858E24B168B70A58207588C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6a:c3:12:60:74:57:06:64:2a:ea:fb:6e:3c:
32:6d:95:df:08:ac:de:23:04:9c:c2:51:a1:9c:40:
3a:59:03:43:5f:5a:7f:b6:a7:b3:ba:50:d6:9e:c4:
2a:63:8a:31:04:07:fb:77:f8:bd:8e:79:41:8c:ad:
79:cc:d3:bb:77:a7:da:e5:5f:71:7b:76:75:c9:72:
32:84:3b:12:46:0b:0b:fd:d9:cc:5d:45:1c:64:2f:
38:b5:c5:c3:de:35:d7:26:d7:61:b7:38:1d:c9:5b:
72:18:65:25:00:d7:4b:ee:60:12:69:b9:83:3d:9f:
c8:9f:90:12:52:f5:3d:8f:3d:8d:a5:ae:d2:89:a1:
f9:d1:af:14:16:43:c3:f9:9a:46:7e:e1:5c:09:05:
27:50:90:54:1b:2e:39:53:21:38:3c:ea:15:a1:a9:
f9:f3:12:49:97:bb:09:ec:7a:05:ae:72:f5:04:22:
c5:88:5c:6a:0e:9c:47:42:0b:6c:c4:ca:f2:b7:b7:
41:d7:7d:9f:a7:29:e3:29:93:e0:ac:d3:7b:76:23:
bc:81:c6:4d:01:33:dd:36:6d:07:45:98:ae:b0:eb:
f2:28:70:19:ce:34:ec:1a:d6:90:63:bb:94:96:6a:
a9:21:5a:fb:60:3f:1b:51:89:20:07:26:dc:61:a5:
02:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D6:A7:FF:9C:27:30:FB:F8:58:E2:4B:16:8B:70:A5:82:07:58:8C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O9an_5wnMPv4WOJLFotwpYIHWIw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.192.0/24
Signature Algorithm: sha256WithRSAEncryption
90:3c:bb:6d:ea:31:84:d6:cc:dd:d8:e8:35:dc:30:c6:37:ad:
02:d8:2e:95:ae:49:7c:2b:69:72:7b:8a:1a:8e:cf:b5:ce:21:
94:48:ee:8a:64:f9:11:e2:48:13:f4:3f:b5:ff:26:4b:65:6b:
4d:58:05:28:c7:bd:43:42:25:77:30:6c:c1:cd:d1:dd:75:2c:
4b:88:9c:9f:b5:7c:0e:e0:e2:c3:ce:06:81:9d:f6:cc:9a:25:
b7:85:17:1a:46:00:d3:ae:a1:83:48:18:45:d1:57:7e:44:1c:
f1:ad:13:05:d1:70:98:79:19:ef:03:f8:56:ff:18:ee:f9:0b:
39:67:dd:9f:84:cc:63:38:d9:c4:f5:56:fa:ae:36:55:ef:62:
7c:cb:3b:9d:93:0f:2a:05:0f:1b:fe:80:66:76:a4:82:84:42:
f0:0b:7b:33:07:bb:2e:1b:25:e6:19:be:1b:10:de:6b:70:c7:
4d:4f:a7:a0:e8:fb:13:a6:0b:9d:62:68:21:67:78:ee:c8:1c:
54:40:d4:5f:c4:81:ac:42:6a:1f:01:13:53:82:ee:eb:89:83:
f8:36:c5:53:7d:ed:b7:ae:89:3e:98:c0:f7:08:87:89:bf:7d:
cf:29:4f:f4:89:25:89:78:45:8b:e5:1b:e7:2e:80:e1:10:b5:
69:fa:d6:25
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICC7gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMDA5Mjkx
MDA4NDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDNCRDZBN0ZGOUMyNzMw
RkJGODU4RTI0QjE2OEI3MEE1ODIwNzU4OEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCasMSYHRXBmQq6vtuPDJtld8IrN4jBJzCUaGcQDpZA0NfWn+2
p7O6UNaexCpjijEEB/t3+L2OeUGMrXnM07t3p9rlX3F7dnXJcjKEOxJGCwv92cxd
RRxkLzi1xcPeNdcm12G3OB3JW3IYZSUA10vuYBJpuYM9n8ifkBJS9T2PPY2lrtKJ
ofnRrxQWQ8P5mkZ+4VwJBSdQkFQbLjlTITg86hWhqfnzEkmXuwnsegWucvUEIsWI
XGoOnEdCC2zEyvK3t0HXfZ+nKeMpk+Cs03t2I7yBxk0BM902bQdFmK6w6/IocBnO
NOwa1pBju5SWaqkhWvtgPxtRiSAHJtxhpQIJAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUO9an/5wnMPv4WOJLFotwpYIHWIwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL085YW5fNXduTVB2NFdPSkxG
b3R3cFlJSFdJdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3
TcAwDQYJKoZIhvcNAQELBQADggEBAJA8u23qMYTWzN3Y6DXcMMY3rQLYLpWuSXwr
aXJ7ihqOz7XOIZRI7opk+RHiSBP0P7X/Jktla01YBSjHvUNCJXcwbMHN0d11LEuI
nJ+1fA7g4sPOBoGd9syaJbeFFxpGANOuoYNIGEXRV35EHPGtEwXRcJh5Ge8D+Fb/
GO75Czln3Z+EzGM42cT1VvquNlXvYnzLO52TDyoFDxv+gGZ2pIKEQvALezMHuy4b
JeYZvhsQ3mtwx01Pp6Do+xOmC51iaCFneO7IHFRA1F/EgaxCah8BE1OC7uuJg/g2
xVN97beuiT6YwPcIh4m/fc8pT/SJJYl4RYvlG+cugOEQtWn61iU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org