Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ORN5t9nEiCe6vm0NDriMkJfQsdo.roa
File: ORN5t9nEiCe6vm0NDriMkJfQsdo.roa (raw, json)
Hash identifier: Bt1eIdJcmXUgOtDUH02iu/dqlzo808/AjSaumduAkFY=
Subject key identifier: 39:13:79:B7:D9:C4:88:27:BA:BE:6D:0D:0E:B8:8C:90:97:D0:B1:DA
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F65
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ORN5t9nEiCe6vm0NDriMkJfQsdo.roa
Signing time: Sun 07 Feb 2021 12:33:59 +0000
ROA not before: Sun 07 Feb 2021 12:33:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 122.254.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3941 (0xf65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:33:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=391379B7D9C48827BABE6D0D0EB88C9097D0B1DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d7:80:8a:96:8e:00:02:39:71:ff:4f:25:77:
62:13:9a:24:ef:16:31:f4:8c:b5:6a:cb:41:74:67:
ca:91:94:8b:fa:ee:84:93:4b:89:49:ae:ec:da:a2:
77:21:5a:31:ef:5b:ea:78:e9:06:1e:f6:38:47:17:
ef:d8:1d:49:aa:c0:44:b5:b1:8b:f2:6d:a8:f1:37:
d2:f2:55:76:55:42:e5:48:cc:94:0d:da:3d:be:42:
fe:04:95:94:2a:f8:be:ca:44:ed:10:a6:74:5b:81:
00:b7:7b:72:08:70:30:86:06:41:3e:58:6e:22:b2:
1e:47:d0:49:5f:1c:8f:ea:87:a0:c8:87:43:37:f8:
f5:43:52:dc:f4:7c:85:05:3f:7f:a4:36:c9:09:3d:
a5:0b:d7:39:17:6e:51:25:35:71:2a:7f:9a:34:55:
48:ce:17:8e:0b:36:00:53:3f:eb:10:53:7e:1d:3a:
eb:b4:1e:07:b6:99:5f:80:28:42:53:ea:a7:da:67:
2a:5f:d0:ae:98:af:79:c1:3b:5f:b8:0a:e5:e3:68:
ac:33:49:41:f6:e0:96:ef:0e:74:40:57:a5:6c:3e:
65:c5:e3:d2:b9:5d:cd:d0:c1:f6:c0:bc:7d:ab:24:
cc:a7:02:a8:e6:13:61:13:85:e2:6a:e6:82:82:2f:
33:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:13:79:B7:D9:C4:88:27:BA:BE:6D:0D:0E:B8:8C:90:97:D0:B1:DA
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ORN5t9nEiCe6vm0NDriMkJfQsdo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.254.40.0/21
Signature Algorithm: sha256WithRSAEncryption
28:3f:99:22:6a:d1:66:41:81:6f:a4:9c:ad:eb:f0:28:a3:8a:
db:d5:8e:62:75:41:32:40:2a:4e:28:ad:28:50:2c:42:5c:a7:
e8:9d:88:f5:82:8c:38:30:a7:07:77:97:db:b8:0b:82:b0:f0:
8b:a6:9c:97:67:9c:a6:ef:d6:4e:ac:6b:31:19:ea:a3:63:31:
8d:20:aa:0c:e4:50:06:41:f2:d3:e6:cc:ea:e2:6d:5d:e2:1b:
94:3d:c3:58:b6:cf:92:37:89:c7:e8:4e:2d:57:8c:db:3f:bf:
b7:0a:a9:50:ca:bf:1f:e6:8c:1f:4b:f6:39:62:aa:72:8c:ca:
c9:21:4e:5d:ff:74:23:3e:2d:f1:82:d3:d1:ef:71:09:10:23:
6d:d1:4e:cb:cc:35:b7:a4:5a:63:f7:ec:8d:b0:74:16:48:4d:
e3:80:f8:48:64:fa:1d:f7:52:0e:2e:4d:0f:4e:eb:6b:ca:d0:
0b:bb:37:97:8b:06:27:c6:b8:2c:a6:c5:40:33:2a:09:53:b6:
cc:75:1e:49:bc:2e:8f:02:bb:de:03:08:ff:27:06:01:28:9b:
41:08:0d:84:31:29:50:22:14:10:7e:f3:45:93:da:f4:74:4f:
01:57:3e:6e:11:ba:ba:2d:42:bd:a7:97:72:b2:ea:05:5e:da:
de:81:ea:c9
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICD2UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjMzNTlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM5MTM3OUI3RDlDNDg4
MjdCQUJFNkQwRDBFQjg4QzkwOTdEMEIxREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDI14CKlo4AAjlx/08ld2ITmiTvFjH0jLVqy0F0Z8qRlIv67oST
S4lJruzaonchWjHvW+p46QYe9jhHF+/YHUmqwES1sYvybajxN9LyVXZVQuVIzJQN
2j2+Qv4ElZQq+L7KRO0QpnRbgQC3e3IIcDCGBkE+WG4ish5H0ElfHI/qh6DIh0M3
+PVDUtz0fIUFP3+kNskJPaUL1zkXblElNXEqf5o0VUjOF44LNgBTP+sQU34dOuu0
Hge2mV+AKEJT6qfaZypf0K6Yr3nBO1+4CuXjaKwzSUH24JbvDnRAV6VsPmXF49K5
Xc3QwfbAvH2rJMynAqjmE2ETheJq5oKCLzO1AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUORN5t9nEiCe6vm0NDriMkJfQsdowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL09STjV0OW5FaUNlNnZtME5E
cmlNa0pmUXNkby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6
/igwDQYJKoZIhvcNAQELBQADggEBACg/mSJq0WZBgW+knK3r8CijitvVjmJ1QTJA
Kk4orShQLEJcp+idiPWCjDgwpwd3l9u4C4Kw8IumnJdnnKbv1k6sazEZ6qNjMY0g
qgzkUAZB8tPmzOribV3iG5Q9w1i2z5I3icfoTi1XjNs/v7cKqVDKvx/mjB9L9jli
qnKMyskhTl3/dCM+LfGC09HvcQkQI23RTsvMNbekWmP37I2wdBZITeOA+Ehk+h33
Ug4uTQ9O62vK0Au7N5eLBifGuCymxUAzKglTtsx1Hkm8Lo8Cu94DCP8nBgEom0EI
DYQxKVAiFBB+80WT2vR0TwFXPm4RurotQr2nl3Ky6gVe2t6B6sk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org