Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Qa93cq32o0zPjhZNJrSaMLm6Tfw.roa
File: Qa93cq32o0zPjhZNJrSaMLm6Tfw.roa (raw, json)
Hash identifier: eXr9JiypNpZ3fNVl9akR17SLqVlZIVKCB3lEr1TgFxQ=
Subject key identifier: 41:AF:77:72:AD:F6:A3:4C:CF:8E:16:4D:26:B4:9A:30:B9:BA:4D:FC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1824
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Qa93cq32o0zPjhZNJrSaMLm6Tfw.roa
Signing time: Sat 22 Oct 2022 05:51:47 +0000
ROA not before: Sat 22 Oct 2022 05:51:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 211.76.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6180 (0x1824)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 05:51:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=41AF7772ADF6A34CCF8E164D26B49A30B9BA4DFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:9c:c5:c2:09:87:dd:d7:e4:f3:eb:52:03:d5:
3a:d0:27:cb:a4:c2:7e:44:94:1d:a7:09:b4:5b:95:
0a:4f:a6:ac:5d:a6:54:8a:29:14:0d:3d:d7:61:78:
cc:e6:ce:a2:b1:ef:a7:f8:a1:c8:a1:b3:87:f4:26:
35:cf:cd:3f:a6:55:3c:b4:a5:5c:fa:fd:a1:c1:4b:
b9:26:27:45:95:2d:9d:c9:08:dc:6a:6f:11:ff:29:
01:8c:59:f2:5c:23:b3:bb:25:ea:dc:54:a3:5f:52:
45:58:bd:29:2d:ed:44:01:b8:d8:46:e5:39:aa:6f:
91:c2:d4:af:34:89:66:d9:4b:da:3f:9e:3d:c8:5a:
c7:b0:ca:1d:04:1e:f3:f6:fb:1e:76:1f:f4:f2:fd:
9b:83:ee:16:5f:36:5b:a8:35:30:04:31:11:46:da:
b9:9d:a4:fd:2e:50:aa:ab:a0:9f:e8:a8:9a:50:bc:
23:6a:62:d6:84:af:55:a7:0c:61:b8:0f:a8:f2:e1:
5f:08:03:58:c0:92:ff:29:4c:20:28:1a:0a:b1:9a:
20:71:55:18:1f:4f:89:52:60:4d:6e:0b:09:4f:d4:
a0:3b:24:ce:c9:8c:da:5d:45:bf:60:9f:20:be:b4:
a2:47:15:44:f2:e3:00:9c:cb:05:9d:9f:4a:56:a5:
b0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:AF:77:72:AD:F6:A3:4C:CF:8E:16:4D:26:B4:9A:30:B9:BA:4D:FC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Qa93cq32o0zPjhZNJrSaMLm6Tfw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.72.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:d4:5a:fa:fd:56:d8:4c:99:06:cc:ad:6b:67:7e:87:27:05:
53:20:e0:68:39:08:1f:fe:5e:05:47:24:43:29:04:be:0f:90:
2d:19:17:18:1e:24:c9:68:bf:8e:c9:48:00:6e:38:e9:64:ff:
06:63:5e:b7:76:f0:8c:86:17:f1:d2:52:2a:ae:c8:2e:80:c7:
75:01:c0:e7:fc:5a:8c:2e:2c:a7:74:61:50:d4:fb:6b:92:df:
da:f1:b4:31:b5:1c:f7:d8:47:a5:87:6f:bd:35:aa:9a:30:42:
85:e7:40:a0:6d:13:6b:d0:39:ec:26:b8:5e:3f:93:27:19:8c:
2c:bb:96:55:85:64:73:6d:2f:e9:f5:2d:f8:8a:e9:bd:e9:c4:
90:7d:fa:b1:32:54:e8:94:c2:aa:f8:14:ab:9a:7e:fd:97:06:
7a:26:68:7a:33:22:11:13:09:ef:98:63:7e:b3:55:4a:72:cb:
3c:ad:34:04:6b:33:8d:64:c7:58:7e:b4:17:80:f4:7f:ef:94:
c4:37:d2:9b:9b:ba:e8:c6:43:92:32:26:df:4f:f0:21:cf:42:
2c:42:61:90:76:15:d9:01:d6:7c:fa:52:92:f3:e0:4e:7b:ca:
34:52:a6:22:cc:88:c8:2e:90:38:eb:06:36:27:b5:6b:f3:03:
d5:f9:f0:46
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGCQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NTUxNDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQxQUY3NzcyQURGNkEz
NENDRjhFMTY0RDI2QjQ5QTMwQjlCQTRERkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDsnMXCCYfd1+Tz61ID1TrQJ8ukwn5ElB2nCbRblQpPpqxdplSK
KRQNPddheMzmzqKx76f4ocihs4f0JjXPzT+mVTy0pVz6/aHBS7kmJ0WVLZ3JCNxq
bxH/KQGMWfJcI7O7JercVKNfUkVYvSkt7UQBuNhG5Tmqb5HC1K80iWbZS9o/nj3I
Wsewyh0EHvP2+x52H/Ty/ZuD7hZfNluoNTAEMRFG2rmdpP0uUKqroJ/oqJpQvCNq
YtaEr1WnDGG4D6jy4V8IA1jAkv8pTCAoGgqxmiBxVRgfT4lSYE1uCwlP1KA7JM7J
jNpdRb9gnyC+tKJHFUTy4wCcywWdn0pWpbB1AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUQa93cq32o0zPjhZNJrSaMLm6TfwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1FhOTNjcTMybzB6UGpoWk5K
clNhTUxtNlRmdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALT
TEgwDQYJKoZIhvcNAQELBQADggEBAJrUWvr9VthMmQbMrWtnfocnBVMg4Gg5CB/+
XgVHJEMpBL4PkC0ZFxgeJMlov47JSABuOOlk/wZjXrd28IyGF/HSUiquyC6Ax3UB
wOf8WowuLKd0YVDU+2uS39rxtDG1HPfYR6WHb701qpowQoXnQKBtE2vQOewmuF4/
kycZjCy7llWFZHNtL+n1LfiK6b3pxJB9+rEyVOiUwqr4FKuafv2XBnomaHozIhET
Ce+YY36zVUpyyzytNARrM41kx1h+tBeA9H/vlMQ30pubuujGQ5IyJt9P8CHPQixC
YZB2FdkB1nz6UpLz4E57yjRSpiLMiMgukDjrBjYntWvzA9X58EY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org