Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QUvAfVjzwP3EdLdLl7r0MGgF6_w.roa
File: QUvAfVjzwP3EdLdLl7r0MGgF6_w.roa (raw, json)
Hash identifier: hvFCp9soixfXPugAV4Pt79BnWsVrjWdZdG/Kp97+9/g=
Subject key identifier: 41:4B:C0:7D:58:F3:C0:FD:C4:74:B7:4B:97:BA:F4:30:68:05:EB:FC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12D5
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QUvAfVjzwP3EdLdLl7r0MGgF6_w.roa
Signing time: Wed 29 Sep 2021 02:55:03 +0000
ROA not before: Wed 29 Sep 2021 02:55:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 61.64.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4821 (0x12d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=414BC07D58F3C0FDC474B74B97BAF4306805EBFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:be:16:f3:db:aa:63:9c:0e:d6:06:3f:d3:04:
41:62:a7:aa:29:87:45:e5:53:35:d6:e7:11:29:12:
6e:9b:76:e8:2e:a6:14:c5:e2:b0:0b:b5:71:d2:88:
b2:16:15:5f:ca:8d:2e:6e:31:00:71:64:99:71:d2:
89:2c:e2:77:8d:03:89:39:11:f1:2a:a9:4a:24:3a:
48:fd:d3:48:87:9f:f2:d9:bf:d0:57:51:14:56:aa:
83:27:bc:f4:e7:20:9a:ef:d8:b1:bf:00:05:b4:89:
fa:4b:2e:6e:59:db:e1:58:39:ce:37:16:6b:7d:62:
c7:23:17:2c:30:e6:73:33:88:0b:d2:cb:92:7d:22:
e4:b2:12:23:70:5f:5f:ce:00:24:e7:18:f8:c3:ab:
72:12:88:dc:bd:b5:28:17:6f:05:1c:ea:53:e7:49:
f9:cf:89:d1:e0:d2:c8:6b:1e:1f:fb:cb:7a:48:b9:
32:a9:38:ec:86:3a:91:3f:0c:f9:e9:ea:43:61:c8:
b0:74:59:c3:99:12:3a:ae:00:2f:1c:3e:e7:77:2d:
dc:d3:ae:ef:67:ba:3a:9d:d9:b7:a0:91:62:b0:b9:
0a:74:ef:f6:61:63:41:70:94:dc:3e:44:35:83:af:
5c:7b:82:33:4e:95:6b:e8:a8:86:23:78:90:3e:d9:
cc:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4B:C0:7D:58:F3:C0:FD:C4:74:B7:4B:97:BA:F4:30:68:05:EB:FC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/QUvAfVjzwP3EdLdLl7r0MGgF6_w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.8.0/21
Signature Algorithm: sha256WithRSAEncryption
19:62:8e:28:c0:14:8a:0a:45:0d:1e:17:3f:63:c8:90:13:6a:
85:2f:8f:e2:4b:14:99:53:d1:32:c1:6a:66:81:ec:70:ee:b3:
bd:d2:f6:d7:aa:af:b6:a8:54:f4:04:41:d1:bd:c0:82:9c:53:
00:a3:ea:a3:bf:c7:be:0d:52:26:6e:65:61:b2:69:f3:df:56:
3b:c2:83:d2:93:f7:2d:5f:bd:7d:76:78:4e:dd:9a:2e:ff:35:
d8:9f:79:56:cc:bc:10:b8:69:0a:7d:52:f9:3c:61:56:8b:85:
3f:8f:3c:f6:81:ba:a5:1f:ee:e0:08:3e:8a:d8:95:3d:17:24:
db:2f:a2:de:b8:4c:f1:0b:e8:31:3c:4e:4d:49:6f:9b:0c:e0:
1d:fe:36:69:c3:e8:cd:a0:0e:d0:9d:77:84:c3:ba:af:15:2b:
cc:e4:87:45:6f:89:79:fd:54:3a:da:b2:22:56:84:d3:ec:42:
df:04:31:5a:05:73:dd:96:bd:27:5e:9a:55:46:b4:51:ed:5d:
fa:83:4a:26:e8:78:ae:94:8d:80:69:fd:da:51:54:ad:c7:a8:
e8:70:cb:c2:b9:29:be:9b:c9:c1:e9:87:60:01:37:1f:1a:e5:
76:75:db:28:d8:8a:67:91:57:61:7d:07:cd:bc:59:5d:03:0f:
3e:d7:1e:ad
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEtUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1MDNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDQxNEJDMDdENThGM0Mw
RkRDNDc0Qjc0Qjk3QkFGNDMwNjgwNUVCRkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4vhbz26pjnA7WBj/TBEFip6oph0XlUzXW5xEpEm6bduguphTF
4rALtXHSiLIWFV/KjS5uMQBxZJlx0oks4neNA4k5EfEqqUokOkj900iHn/LZv9BX
URRWqoMnvPTnIJrv2LG/AAW0ifpLLm5Z2+FYOc43Fmt9YscjFyww5nMziAvSy5J9
IuSyEiNwX1/OACTnGPjDq3ISiNy9tSgXbwUc6lPnSfnPidHg0shrHh/7y3pIuTKp
OOyGOpE/DPnp6kNhyLB0WcOZEjquAC8cPud3LdzTru9nujqd2begkWKwuQp07/Zh
Y0FwlNw+RDWDr1x7gjNOlWvoqIYjeJA+2cwNAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUQUvAfVjzwP3EdLdLl7r0MGgF6/wwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1FVdkFmVmp6d1AzRWRMZExs
N3IwTUdnRjZfdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9
QAgwDQYJKoZIhvcNAQELBQADggEBABlijijAFIoKRQ0eFz9jyJATaoUvj+JLFJlT
0TLBamaB7HDus73S9teqr7aoVPQEQdG9wIKcUwCj6qO/x74NUiZuZWGyafPfVjvC
g9KT9y1fvX12eE7dmi7/NdifeVbMvBC4aQp9Uvk8YVaLhT+PPPaBuqUf7uAIPorY
lT0XJNsvot64TPEL6DE8Tk1Jb5sM4B3+NmnD6M2gDtCdd4TDuq8VK8zkh0VviXn9
VDrasiJWhNPsQt8EMVoFc92WvSdemlVGtFHtXfqDSiboeK6UjYBp/dpRVK3HqOhw
y8K5Kb6bycHph2ABNx8a5XZ12yjYimeRV2F9B828WV0DDz7XHq0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org