Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WOCCKvGCJFqTm8jy4-c_IC8XJfs.roa
File: WOCCKvGCJFqTm8jy4-c_IC8XJfs.roa (raw, json)
Hash identifier: xOYtbkT53dUHzwkjofvcfjkk27wEJ7UyLvVVyI0HmAs=
Subject key identifier: 58:E0:82:2A:F1:82:24:5A:93:9B:C8:F2:E3:E7:3F:20:2F:17:25:FB
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1D57
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WOCCKvGCJFqTm8jy4-c_IC8XJfs.roa
Signing time: Fri 01 Sep 2023 10:14:42 +0000
ROA not before: Fri 01 Sep 2023 10:14:42 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 114.198.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7511 (0x1d57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 1 10:14:42 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=58E0822AF182245A939BC8F2E3E73F202F1725FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:17:2f:8c:82:e6:f2:6f:32:85:94:26:96:d3:
a1:1a:1f:80:cc:cc:c6:c1:88:af:a0:30:bf:67:a7:
9b:a7:02:5e:b8:5d:21:ce:57:55:32:f0:c7:db:6a:
06:92:8d:b7:e2:25:79:44:e6:02:26:fe:79:47:60:
72:33:4e:c1:37:e5:b8:d3:ec:5b:8c:ac:0a:13:bf:
87:fb:ee:fa:35:f0:18:38:87:45:22:bd:08:a9:b8:
20:e2:32:13:30:0a:9c:f4:0c:68:cb:72:18:8c:e6:
ab:5c:11:b2:70:53:88:3a:54:b0:46:fd:a8:f2:72:
46:70:29:0e:fd:8f:8c:05:9e:71:58:26:9e:18:d3:
f4:6d:aa:f6:a4:96:ec:7b:bb:9f:f6:15:3e:10:f7:
f6:d9:ae:46:96:ae:85:96:18:80:c7:cc:13:78:f6:
a5:92:9e:67:52:0e:80:57:1c:6d:1d:f9:ab:df:9b:
f0:c9:4c:60:d4:ff:8e:2e:06:3b:53:f6:d4:84:f3:
04:f2:5f:55:b9:43:ee:21:5b:d4:f7:c4:0d:72:64:
2d:55:9c:f3:f2:a1:f1:d3:50:0c:9b:c7:f0:8c:b2:
41:a0:d6:0f:cb:d8:55:bb:f5:9e:21:38:f4:04:3b:
bd:fb:62:fc:94:e3:81:70:42:27:22:27:14:85:b3:
9b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:E0:82:2A:F1:82:24:5A:93:9B:C8:F2:E3:E7:3F:20:2F:17:25:FB
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WOCCKvGCJFqTm8jy4-c_IC8XJfs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.176.0/20
Signature Algorithm: sha256WithRSAEncryption
9f:51:ce:df:fc:08:24:1a:66:12:94:ef:59:62:b9:18:bf:b4:
12:47:dc:c8:61:3c:d4:06:91:a0:19:57:48:e7:a6:8c:64:b0:
d2:c7:11:27:1e:25:ee:59:a2:d1:4a:27:0b:da:3f:dc:bf:33:
5c:be:4f:89:ce:f9:c9:f0:e1:04:b3:12:5c:e7:a3:37:98:73:
5d:67:94:ae:4f:5c:6f:69:a2:20:ce:a6:2e:b8:d7:e7:d9:38:
11:ba:25:03:9d:a6:24:e0:0e:5a:cb:e4:19:f9:01:de:11:4f:
12:28:d7:3b:4b:14:6d:81:06:e2:7e:38:94:a1:4f:69:7c:a1:
ba:c0:d3:16:f8:40:c3:24:d8:17:63:c0:27:9f:20:aa:69:50:
75:e1:9c:37:0d:d7:7d:da:63:ce:dd:2f:60:84:d9:f6:c4:07:
20:25:03:9d:1e:c4:e0:28:4b:92:c2:55:d3:df:6d:b7:72:6b:
a6:b9:08:9d:e8:2e:8c:83:fc:b4:ae:83:0c:12:79:95:1b:3b:
ad:fa:a9:1f:b1:1a:26:06:50:34:80:ba:99:5f:05:46:66:86:
0b:9b:c1:0f:e6:e6:b3:a2:e1:83:42:a5:95:77:79:4e:2c:b4:
9a:b2:a0:49:28:1b:62:dd:c4:07:b0:98:5d:d8:c2:7d:ca:bc:
59:78:17:4d
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHVcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx
MDE0NDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDU4RTA4MjJBRjE4MjI0
NUE5MzlCQzhGMkUzRTczRjIwMkYxNzI1RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9Fy+MgubybzKFlCaW06EaH4DMzMbBiK+gML9np5unAl64XSHO
V1Uy8MfbagaSjbfiJXlE5gIm/nlHYHIzTsE35bjT7FuMrAoTv4f77vo18Bg4h0Ui
vQipuCDiMhMwCpz0DGjLchiM5qtcEbJwU4g6VLBG/ajyckZwKQ79j4wFnnFYJp4Y
0/Rtqvaklux7u5/2FT4Q9/bZrkaWroWWGIDHzBN49qWSnmdSDoBXHG0d+avfm/DJ
TGDU/44uBjtT9tSE8wTyX1W5Q+4hW9T3xA1yZC1VnPPyofHTUAybx/CMskGg1g/L
2FW79Z4hOPQEO737YvyU44FwQiciJxSFs5slAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUWOCCKvGCJFqTm8jy4+c/IC8XJfswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1dPQ0NLdkdDSkZxVG04ank0
LWNfSUM4WEpmcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy
xrAwDQYJKoZIhvcNAQELBQADggEBAJ9Rzt/8CCQaZhKU71liuRi/tBJH3MhhPNQG
kaAZV0jnpoxksNLHESceJe5ZotFKJwvaP9y/M1y+T4nO+cnw4QSzElznozeYc11n
lK5PXG9poiDOpi641+fZOBG6JQOdpiTgDlrL5Bn5Ad4RTxIo1ztLFG2BBuJ+OJSh
T2l8obrA0xb4QMMk2BdjwCefIKppUHXhnDcN133aY87dL2CE2fbEByAlA50exOAo
S5LCVdPfbbdya6a5CJ3oLoyD/LSugwwSeZUbO636qR+xGiYGUDSAuplfBUZmhgub
wQ/m5rOi4YNCpZV3eU4stJqyoEkoG2LdxAewmF3Ywn3KvFl4F00=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:01:32 2025 by rpki-client