Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VBythw7QD1Jfpgl4BGsWc8MNjz0.roa
File: VBythw7QD1Jfpgl4BGsWc8MNjz0.roa (raw, json)
Hash identifier: Uae4fjOy7eQXfhbiOZP0qd8NGNaAegC7BLtx1n0iu4E=
Subject key identifier: 54:1C:AD:87:0E:D0:0F:52:5F:A6:09:78:04:6B:16:73:C3:0D:8F:3D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 18D9
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VBythw7QD1Jfpgl4BGsWc8MNjz0.roa
Signing time: Sat 22 Oct 2022 06:05:48 +0000
ROA not before: Sat 22 Oct 2022 06:05:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 114.198.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6361 (0x18d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:05:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=541CAD870ED00F525FA60978046B1673C30D8F3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:94:b3:b9:e0:25:41:68:9f:8c:69:6d:4c:ee:
a5:54:5c:57:ac:76:cd:54:68:62:d5:61:fa:25:9d:
ce:ae:79:65:6b:01:2a:fa:63:64:f3:d2:b4:21:b9:
b6:b6:2e:17:ee:9c:52:81:57:61:03:f6:bc:69:62:
99:3a:30:7b:1c:4d:8a:83:1f:e0:d8:ba:5d:bc:b3:
eb:8d:e0:8e:81:24:f6:cf:8e:41:e7:be:f1:8e:54:
54:bf:4f:c3:79:6e:d1:3e:68:2d:54:ee:da:e3:6f:
3d:db:e5:a9:0e:b0:a1:13:95:e0:65:8f:3e:13:bc:
40:b7:5e:88:0e:d0:b4:d2:dd:fa:f0:ce:5c:04:aa:
de:27:00:b0:08:9f:b9:23:42:fc:d6:69:51:7b:97:
a3:78:2d:72:de:2c:e3:ac:da:ac:cc:e7:95:b9:70:
ed:93:ad:59:1e:d4:0b:0d:08:71:b5:0d:ce:23:52:
65:69:68:4f:3f:bd:d5:74:3c:c6:74:61:18:dc:cf:
d9:bc:0e:41:87:7c:7d:ab:92:f6:18:ac:c1:6c:f4:
51:e5:37:c2:1b:82:cf:06:4c:c4:ad:81:a8:06:c9:
8c:74:13:40:d9:ed:a8:fa:d0:4e:e9:65:7e:76:ef:
b2:d5:19:f4:f9:90:08:e6:09:ae:21:8c:59:b8:3c:
72:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1C:AD:87:0E:D0:0F:52:5F:A6:09:78:04:6B:16:73:C3:0D:8F:3D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VBythw7QD1Jfpgl4BGsWc8MNjz0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.163.0/24
Signature Algorithm: sha256WithRSAEncryption
78:e0:7a:67:c6:f5:0d:4e:7e:24:f9:8d:e2:42:54:ce:6b:90:
04:47:ce:68:d9:9f:d0:05:02:ae:4c:2b:28:1c:eb:ab:0a:9b:
4c:77:fc:dd:44:cd:5a:26:fc:12:65:8e:2e:0f:0f:32:12:f4:
45:55:64:02:0f:a2:86:37:f5:97:ec:3b:76:f3:bf:86:16:76:
95:cc:82:d2:3b:63:b1:ed:9c:41:c4:87:f7:8f:f4:e4:e0:e4:
55:d2:45:b7:f4:c2:af:72:d5:ad:a6:b0:5c:fe:17:4c:b8:b7:
e1:38:ba:cc:d2:da:0b:05:bf:5f:60:73:3c:e3:d0:a1:47:ae:
4f:58:ff:65:67:0e:18:66:72:c7:3a:84:3d:c1:e9:69:59:19:
bb:70:e0:fd:e6:cf:bc:5f:ef:e8:f0:03:02:60:aa:99:43:61:
13:c4:b6:df:a0:6c:6d:42:59:40:b4:68:e5:b7:3c:19:35:5f:
3b:a3:b6:fb:c1:32:ec:c6:19:6d:58:46:e8:97:fc:63:ac:85:
ae:4a:ca:75:36:37:07:b4:a5:4f:ad:b2:45:8d:05:aa:cb:63:
fe:85:b0:77:d9:89:38:fe:a9:4e:7f:2a:e4:37:0f:a9:c2:2a:
69:d1:50:cb:f9:5d:f4:19:01:f5:48:ae:47:81:6f:71:45:de:
00:42:0f:21
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGNkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NjA1NDhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDU0MUNBRDg3MEVEMDBG
NTI1RkE2MDk3ODA0NkIxNjczQzMwRDhGM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtlLO54CVBaJ+MaW1M7qVUXFesds1UaGLVYfolnc6ueWVrASr6
Y2Tz0rQhuba2LhfunFKBV2ED9rxpYpk6MHscTYqDH+DYul28s+uN4I6BJPbPjkHn
vvGOVFS/T8N5btE+aC1U7trjbz3b5akOsKETleBljz4TvEC3XogO0LTS3frwzlwE
qt4nALAIn7kjQvzWaVF7l6N4LXLeLOOs2qzM55W5cO2TrVke1AsNCHG1Dc4jUmVp
aE8/vdV0PMZ0YRjcz9m8DkGHfH2rkvYYrMFs9FHlN8Ibgs8GTMStgagGyYx0E0DZ
7aj60E7pZX5277LVGfT5kAjmCa4hjFm4PHLbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUVBythw7QD1Jfpgl4BGsWc8MNjz0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1ZCeXRodzdRRDFKZnBnbDRC
R3NXYzhNTmp6MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABy
xqMwDQYJKoZIhvcNAQELBQADggEBAHjgemfG9Q1OfiT5jeJCVM5rkARHzmjZn9AF
Aq5MKygc66sKm0x3/N1EzVom/BJlji4PDzIS9EVVZAIPooY39ZfsO3bzv4YWdpXM
gtI7Y7HtnEHEh/eP9OTg5FXSRbf0wq9y1a2msFz+F0y4t+E4uszS2gsFv19gczzj
0KFHrk9Y/2VnDhhmcsc6hD3B6WlZGbtw4P3mz7xf7+jwAwJgqplDYRPEtt+gbG1C
WUC0aOW3PBk1XzujtvvBMuzGGW1YRuiX/GOsha5KynU2Nwe0pU+tskWNBarLY/6F
sHfZiTj+qU5/KuQ3D6nCKmnRUMv5XfQZAfVIrkeBb3FF3gBCDyE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org