Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SdMHVb1F08a6x0zkJ1r9HXswVCc.roa
File: SdMHVb1F08a6x0zkJ1r9HXswVCc.roa (raw, json)
Hash identifier: 2EqTewuk/iiXpoAs3sZ6vVrO0CBx9472rSynv0Lf+eA=
Subject key identifier: 49:D3:07:55:BD:45:D3:C6:BA:C7:4C:E4:27:5A:FD:1D:7B:30:54:27
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F83
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SdMHVb1F08a6x0zkJ1r9HXswVCc.roa
Signing time: Sun 07 Feb 2021 12:34:28 +0000
ROA not before: Sun 07 Feb 2021 12:34:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 211.76.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3971 (0xf83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:34:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=49D30755BD45D3C6BAC74CE4275AFD1D7B305427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d5:32:59:b8:44:b7:e7:e0:31:f1:87:5d:58:
90:4d:5b:e4:31:78:7c:55:7c:52:fe:68:41:63:8c:
54:64:f9:fd:54:e1:c9:2b:88:56:cf:50:01:ce:63:
0b:90:6c:de:e4:64:86:78:4b:41:5d:3d:5e:a2:0e:
19:50:a0:d1:bf:5b:4b:1d:f5:0c:10:2b:79:e3:43:
d0:26:db:95:24:06:e3:0c:3d:88:92:37:7e:14:39:
0f:16:58:ad:37:57:3d:2b:7c:7f:57:b8:2e:28:d7:
45:0f:e8:3f:2c:c0:da:90:08:ef:70:aa:ea:de:68:
0f:3d:0a:03:5f:ae:ca:f5:e7:33:75:ee:c0:90:6c:
e0:82:34:8e:62:73:43:5d:74:77:e6:6f:0f:d3:55:
f9:ca:c6:2a:79:f6:0e:cf:1c:1f:8b:3a:73:52:b1:
78:bd:1f:c9:69:87:8c:2b:3d:b3:e2:be:f3:61:0a:
ba:87:5d:21:8b:56:6a:25:ec:41:76:83:47:1e:46:
d2:c5:ed:e8:09:67:b1:75:af:4f:5f:94:73:c8:b4:
ae:78:f7:e1:0c:d3:6c:0f:95:6f:42:ff:88:bf:4a:
95:cd:30:d5:a2:75:10:76:fe:41:94:fa:e1:10:82:
cc:90:56:3d:83:bf:38:5c:7d:b7:54:90:b4:42:6f:
39:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:D3:07:55:BD:45:D3:C6:BA:C7:4C:E4:27:5A:FD:1D:7B:30:54:27
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SdMHVb1F08a6x0zkJ1r9HXswVCc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.53.0/24
Signature Algorithm: sha256WithRSAEncryption
93:c2:5d:ec:af:75:3d:7a:c4:37:29:b0:f5:52:55:7c:e0:34:
90:52:56:61:80:7e:e9:18:2d:27:e0:cb:22:13:22:50:ac:c2:
ed:86:65:31:cd:72:8e:e4:29:4a:12:15:92:aa:89:7e:17:d4:
cb:c9:ec:d6:9a:69:be:97:96:35:c0:0f:e2:53:d6:a2:4a:0a:
07:26:02:fa:88:fc:25:9a:c9:80:1a:64:4c:43:74:b0:56:ee:
96:9d:30:69:25:4a:42:d0:98:ce:8e:2c:65:74:9b:2e:5c:11:
e1:c7:76:3b:ff:e4:92:05:b6:85:bf:ac:f7:27:d1:c7:1e:3a:
43:02:64:a3:87:b9:80:96:56:8a:c3:03:57:12:c0:fe:66:70:
45:40:8d:57:a7:3c:e7:c9:7a:aa:6a:77:f1:6d:85:d9:80:6b:
84:66:7a:65:a2:d3:0d:d6:61:1d:a6:ec:31:d9:ea:88:dd:f9:
26:02:77:16:13:4e:28:9d:5c:1b:0d:45:7c:a1:5f:42:fc:ff:
7a:23:2c:59:c2:a0:9f:a4:ed:eb:0c:6b:ca:ff:e0:52:bd:04:
8b:90:8d:c4:9b:d4:67:cf:56:c2:f8:1a:fb:da:bb:b6:92:40:
1f:de:a0:42:1f:cc:76:78:b8:51:b6:fd:4e:32:8c:ad:b9:ff:
e9:87:3a:5d
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICD4MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjM0MjhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDQ5RDMwNzU1QkQ0NUQz
QzZCQUM3NENFNDI3NUFGRDFEN0IzMDU0MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCs1TJZuES35+Ax8YddWJBNW+QxeHxVfFL+aEFjjFRk+f1U4ckr
iFbPUAHOYwuQbN7kZIZ4S0FdPV6iDhlQoNG/W0sd9QwQK3njQ9Am25UkBuMMPYiS
N34UOQ8WWK03Vz0rfH9XuC4o10UP6D8swNqQCO9wqureaA89CgNfrsr15zN17sCQ
bOCCNI5ic0NddHfmbw/TVfnKxip59g7PHB+LOnNSsXi9H8lph4wrPbPivvNhCrqH
XSGLVmol7EF2g0ceRtLF7egJZ7F1r09flHPItK549+EM02wPlW9C/4i/SpXNMNWi
dRB2/kGU+uEQgsyQVj2DvzhcfbdUkLRCbznbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUSdMHVb1F08a6x0zkJ1r9HXswVCcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1NkTUhWYjFGMDhhNngwemtK
MXI5SFhzd1ZDYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT
TDUwDQYJKoZIhvcNAQELBQADggEBAJPCXeyvdT16xDcpsPVSVXzgNJBSVmGAfukY
LSfgyyITIlCswu2GZTHNco7kKUoSFZKqiX4X1MvJ7Naaab6XljXAD+JT1qJKCgcm
AvqI/CWayYAaZExDdLBW7padMGklSkLQmM6OLGV0my5cEeHHdjv/5JIFtoW/rPcn
0cceOkMCZKOHuYCWVorDA1cSwP5mcEVAjVenPOfJeqpqd/FthdmAa4RmemWi0w3W
YR2m7DHZ6ojd+SYCdxYTTiidXBsNRXyhX0L8/3ojLFnCoJ+k7esMa8r/4FK9BIuQ
jcSb1GfPVsL4Gvvau7aSQB/eoEIfzHZ4uFG2/U4yjK25/+mHOl0=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:48 2023 by rpki-client on console-fra.rpki-client.org