Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XOAN5zDa59El2KeHW40mZ7y0d9U.roa
File: XOAN5zDa59El2KeHW40mZ7y0d9U.roa (raw, json)
Hash identifier: GFhDgZ60usw010Z6CVkzG67MoqCuqtNljLxBmox0UEc=
Subject key identifier: 5C:E0:0D:E7:30:DA:E7:D1:25:D8:A7:87:5B:8D:26:67:BC:B4:77:D5
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0B7A
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XOAN5zDa59El2KeHW40mZ7y0d9U.roa
Signing time: Tue 29 Sep 2020 10:08:28 +0000
ROA not before: Tue 29 Sep 2020 10:08:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 61.61.232.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2938 (0xb7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:08:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5CE00DE730DAE7D125D8A7875B8D2667BCB477D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:37:0b:76:a0:ce:c2:4d:00:3c:f3:dd:23:b2:
b5:bf:26:45:00:a9:50:4a:16:7d:83:bf:0a:f6:8d:
54:05:70:b4:bc:95:0d:b2:c3:4c:a8:45:36:5d:90:
2f:3a:d2:6d:17:ec:9b:31:64:cb:01:f6:12:a1:c1:
a4:06:cd:64:b2:bd:0c:ea:3a:6b:a0:7b:02:02:17:
ee:7e:d1:76:be:49:5d:9c:8e:cc:bf:13:be:71:01:
6e:2a:0c:81:e5:e6:22:d8:1b:24:03:91:30:3f:dd:
c0:3d:4c:42:55:ff:43:10:19:ac:b9:b6:65:61:c9:
a6:5f:82:11:17:88:37:c5:06:87:61:8f:35:a4:09:
57:72:dc:64:47:a7:27:80:8b:1d:aa:48:a0:8b:20:
05:09:16:a7:d9:0c:11:cc:75:18:ec:46:8a:81:2d:
d9:58:b8:63:b3:0c:05:44:27:42:77:f2:40:5c:9c:
87:17:f8:0b:b5:96:c4:d6:59:2b:a7:4e:7f:e2:e9:
24:43:90:f7:d2:25:55:7f:08:23:1f:b7:14:c2:97:
23:7f:22:36:f4:d8:91:fc:fd:d7:c7:cc:29:82:98:
15:d7:63:2c:76:20:2f:7d:5d:f5:e0:a8:a9:b7:23:
a1:1b:f3:89:94:5e:97:54:78:7e:74:26:8a:af:24:
03:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E0:0D:E7:30:DA:E7:D1:25:D8:A7:87:5B:8D:26:67:BC:B4:77:D5
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XOAN5zDa59El2KeHW40mZ7y0d9U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.232.0/21
Signature Algorithm: sha256WithRSAEncryption
3e:f9:21:96:66:1e:79:40:83:18:45:1a:fb:4f:53:09:28:e1:
1d:37:76:71:89:4f:c7:be:0e:87:b6:c6:63:39:33:b3:2e:60:
88:96:58:3e:4a:4b:b7:f3:40:3f:c8:f1:8e:76:58:18:35:7b:
cf:45:39:28:fe:05:70:58:a2:b5:70:14:61:89:6c:14:a0:24:
13:a3:de:a4:13:b4:73:25:4a:5c:6a:c2:b4:e5:f6:c9:3e:28:
d2:10:0b:0c:0e:c1:78:3a:cf:25:d4:69:66:b5:05:f1:a7:60:
43:de:a6:cc:ec:05:7e:45:80:dd:4e:48:2c:91:98:23:7e:de:
00:4f:45:13:82:04:07:e5:aa:b8:4d:d9:d8:44:0b:31:f6:88:
d5:f6:88:c4:38:bd:ed:f6:b7:ca:7d:0f:d2:51:f8:df:62:e1:
8b:93:98:ca:6b:f4:2c:69:7d:49:19:2f:72:fa:53:2d:ef:42:
81:93:ec:d5:a2:81:85:34:a4:35:1f:8b:e6:21:e2:b2:f5:58:
42:e5:cc:55:83:85:69:f5:e8:9e:53:67:cc:c6:7f:94:6a:99:
20:6b:83:26:74:f1:40:df:c2:c5:ae:76:77:79:51:7f:da:c3:
e6:05:b9:fc:e2:24:b2:8c:d7:13:8b:42:9e:ad:f9:fe:26:7d:
4a:31:02:3c
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICC3owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMDA5Mjkx
MDA4MjhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDVDRTAwREU3MzBEQUU3
RDEyNUQ4QTc4NzVCOEQyNjY3QkNCNDc3RDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxNwt2oM7CTQA8890jsrW/JkUAqVBKFn2Dvwr2jVQFcLS8lQ2y
w0yoRTZdkC860m0X7JsxZMsB9hKhwaQGzWSyvQzqOmugewICF+5+0Xa+SV2cjsy/
E75xAW4qDIHl5iLYGyQDkTA/3cA9TEJV/0MQGay5tmVhyaZfghEXiDfFBodhjzWk
CVdy3GRHpyeAix2qSKCLIAUJFqfZDBHMdRjsRoqBLdlYuGOzDAVEJ0J38kBcnIcX
+Au1lsTWWSunTn/i6SRDkPfSJVV/CCMftxTClyN/Ijb02JH8/dfHzCmCmBXXYyx2
IC99XfXgqKm3I6Eb84mUXpdUeH50JoqvJAMxAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUXOAN5zDa59El2KeHW40mZ7y0d9UwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1hPQU41ekRhNTlFbDJLZUhX
NDBtWjd5MGQ5VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9
PegwDQYJKoZIhvcNAQELBQADggEBAD75IZZmHnlAgxhFGvtPUwko4R03dnGJT8e+
Doe2xmM5M7MuYIiWWD5KS7fzQD/I8Y52WBg1e89FOSj+BXBYorVwFGGJbBSgJBOj
3qQTtHMlSlxqwrTl9sk+KNIQCwwOwXg6zyXUaWa1BfGnYEPepszsBX5FgN1OSCyR
mCN+3gBPRROCBAflqrhN2dhECzH2iNX2iMQ4ve32t8p9D9JR+N9i4YuTmMpr9Cxp
fUkZL3L6Uy3vQoGT7NWigYU0pDUfi+Yh4rL1WELlzFWDhWn16J5TZ8zGf5RqmSBr
gyZ08UDfwsWudnd5UX/aw+YFufziJLKM1xOLQp6t+f4mfUoxAjw=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:37 2023 by rpki-client on console-ams.rpki-client.org