Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZcZsE91LFZ6mQxQOXMwTV0QqLDc.roa
File: ZcZsE91LFZ6mQxQOXMwTV0QqLDc.roa (raw, json)
Hash identifier: j+Vc3+55tvogm7/uyeTJvEefeRUkI9Fg6OMGzOKwhWQ=
Subject key identifier: 65:C6:6C:13:DD:4B:15:9E:A6:43:14:0E:5C:CC:13:57:44:2A:2C:37
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1285
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZcZsE91LFZ6mQxQOXMwTV0QqLDc.roa
Signing time: Wed 29 Sep 2021 02:54:40 +0000
ROA not before: Wed 29 Sep 2021 02:54:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 45.64.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4741 (0x1285)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=65C66C13DD4B159EA643140E5CCC1357442A2C37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3f:2d:c5:cf:de:5a:e8:79:d8:52:cb:7a:a9:
65:de:3c:66:69:89:15:6d:ce:3f:f5:05:3a:20:0a:
43:ed:bc:9c:13:af:71:14:49:ba:ff:ea:cf:79:3a:
9d:44:82:61:c0:54:c3:8f:72:d4:e9:91:ca:e1:cb:
5a:db:58:b8:ce:c1:53:7c:df:13:d7:38:0a:38:b4:
4e:26:19:dc:c9:8b:d6:0a:40:96:71:4a:21:eb:db:
b0:b8:a3:f3:76:00:6c:97:18:4d:d2:5a:ef:ce:c7:
2f:1f:1a:66:e7:05:18:34:d9:f1:75:51:a1:da:9e:
ee:d1:cc:60:6c:a7:ce:92:e8:91:bc:c2:27:18:09:
da:66:d2:4e:72:ca:97:46:d2:f0:a2:7c:f7:d2:fe:
ac:b5:98:1c:76:0e:62:1d:b8:2a:86:0a:62:e3:5e:
70:19:71:25:e5:ce:6e:00:bb:ad:cf:7e:c6:65:2f:
ae:0e:0b:2a:c7:3c:53:7c:b6:b4:5c:04:2f:9f:b1:
7e:9a:8f:84:17:e3:0b:f9:cd:1a:e2:6e:3f:86:07:
0c:f7:ad:92:ee:88:75:f4:31:1d:16:36:7b:23:1e:
5f:14:90:15:9b:af:bd:b6:2a:74:f0:ea:dc:f4:9e:
40:46:39:b8:45:a0:81:dd:89:ea:e6:3c:70:04:14:
d9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:C6:6C:13:DD:4B:15:9E:A6:43:14:0E:5C:CC:13:57:44:2A:2C:37
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZcZsE91LFZ6mQxQOXMwTV0QqLDc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.35.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:0b:67:44:9d:23:a7:66:ce:d2:0b:3a:e5:6d:bc:bc:2b:ff:
84:3b:c3:6d:db:04:34:94:84:8e:36:c5:02:f3:91:b5:ab:5c:
24:d9:29:0f:13:d6:d2:5e:e0:55:d7:78:06:0e:18:de:54:f9:
6d:b4:bb:9a:b9:d9:f8:3c:bc:f7:d1:fd:53:22:fb:93:d1:3a:
d7:79:04:c2:06:70:93:25:0d:26:53:ab:ee:d6:67:8d:2b:0c:
f8:03:ac:81:52:d6:be:a6:69:2b:ce:bc:91:88:7d:af:b5:fe:
00:a4:31:5b:29:92:71:a3:fc:61:e7:b2:bc:76:e7:05:5d:c7:
53:ef:e5:56:03:06:4a:e4:ab:79:2d:dc:73:3d:58:80:fc:d6:
c4:bb:4c:d9:ef:04:af:61:b6:b2:50:54:12:97:67:8a:dc:c3:
35:49:7a:c8:42:c1:cb:d2:58:c0:e6:a5:b3:81:dd:c5:cf:ee:
3e:77:fc:12:37:6b:e1:1e:36:4a:da:95:ba:d4:fb:c0:a2:cc:
30:bb:e3:53:a9:d0:0d:e4:38:93:3d:f3:13:9b:b4:5e:96:0b:
05:c9:ae:6a:72:40:5d:04:e2:39:77:7a:1a:37:5f:be:32:ed:
05:56:52:5b:49:25:ea:ec:dc:96:12:df:e9:c5:80:9d:d5:0d:
36:b8:6e:10
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEoUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0NDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDY1QzY2QzEzREQ0QjE1
OUVBNjQzMTQwRTVDQ0MxMzU3NDQyQTJDMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKPy3Fz95a6HnYUst6qWXePGZpiRVtzj/1BTogCkPtvJwTr3EU
Sbr/6s95Op1EgmHAVMOPctTpkcrhy1rbWLjOwVN83xPXOAo4tE4mGdzJi9YKQJZx
SiHr27C4o/N2AGyXGE3SWu/Oxy8fGmbnBRg02fF1UaHanu7RzGBsp86S6JG8wicY
Cdpm0k5yypdG0vCifPfS/qy1mBx2DmIduCqGCmLjXnAZcSXlzm4Au63PfsZlL64O
CyrHPFN8trRcBC+fsX6aj4QX4wv5zRribj+GBwz3rZLuiHX0MR0WNnsjHl8UkBWb
r722KnTw6tz0nkBGObhFoIHdiermPHAEFNllAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUZcZsE91LFZ6mQxQOXMwTV0QqLDcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1pjWnNFOTFMRlo2bVF4UU9Y
TXdUVjBRcUxEYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt
QCMwDQYJKoZIhvcNAQELBQADggEBAIoLZ0SdI6dmztILOuVtvLwr/4Q7w23bBDSU
hI42xQLzkbWrXCTZKQ8T1tJe4FXXeAYOGN5U+W20u5q52fg8vPfR/VMi+5PROtd5
BMIGcJMlDSZTq+7WZ40rDPgDrIFS1r6maSvOvJGIfa+1/gCkMVspknGj/GHnsrx2
5wVdx1Pv5VYDBkrkq3kt3HM9WID81sS7TNnvBK9htrJQVBKXZ4rcwzVJeshCwcvS
WMDmpbOB3cXP7j53/BI3a+EeNkralbrU+8CizDC741Op0A3kOJM98xObtF6WCwXJ
rmpyQF0E4jl3eho3X74y7QVWUltJJers3JYS3+nFgJ3VDTa4bhA=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:49 2023 by rpki-client on console-fra.rpki-client.org