Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ad5pJE87uv5HBWzbhqMs5K7T36E.roa
File: ad5pJE87uv5HBWzbhqMs5K7T36E.roa (raw, json)
Hash identifier: Pufv2IAe8GM4HwGDr5Eh9GrXmdjkl0d7ctz1G5RG2fs=
Subject key identifier: 69:DE:69:24:4F:3B:BA:FE:47:05:6C:DB:86:A3:2C:E4:AE:D3:DF:A1
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F81
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ad5pJE87uv5HBWzbhqMs5K7T36E.roa
Signing time: Sun 07 Feb 2021 12:34:27 +0000
ROA not before: Sun 07 Feb 2021 12:34:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 211.76.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3969 (0xf81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:34:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=69DE69244F3BBAFE47056CDB86A32CE4AED3DFA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6f:a4:9c:3c:ed:9a:6f:96:d4:5f:da:90:f9:
1a:25:b4:87:12:2a:ad:91:1a:31:01:d0:3a:d7:fa:
87:7d:30:2a:65:17:ab:20:56:77:d0:0a:09:60:5c:
cc:05:65:cc:da:58:22:f3:53:5b:8d:f4:9b:0d:2c:
68:2f:1f:5f:7f:36:ad:c4:31:32:ab:23:76:9a:0d:
b9:b2:0e:c2:74:c6:3a:04:69:2b:e1:1c:37:47:0b:
78:f0:38:a7:c3:f4:00:68:00:66:4a:53:f9:fe:fa:
c9:fe:b2:c7:a5:13:7f:59:82:92:9b:be:b7:53:7d:
0d:92:59:fc:0c:d8:22:ba:19:87:85:a8:99:9a:9f:
12:08:0a:f7:b2:d0:3f:e4:f8:00:8e:78:46:91:f1:
80:28:98:46:f3:53:3f:0e:76:c6:99:66:e8:3d:48:
80:87:51:86:9b:57:12:a6:04:9b:b0:ac:e3:6f:26:
1a:f7:38:39:2f:c7:79:b5:a5:34:37:4e:90:76:a2:
8e:d7:62:9e:b2:49:27:91:8d:c4:88:e5:c6:39:b8:
f8:48:46:c2:87:4e:67:b7:92:cd:e5:68:01:5d:ab:
19:08:39:c2:9e:c2:33:4c:9a:a2:cc:bd:18:a6:bb:
4a:82:72:88:68:d0:30:d2:fd:5f:6e:03:36:eb:74:
46:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:DE:69:24:4F:3B:BA:FE:47:05:6C:DB:86:A3:2C:E4:AE:D3:DF:A1
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ad5pJE87uv5HBWzbhqMs5K7T36E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.52.0/24
Signature Algorithm: sha256WithRSAEncryption
93:ee:9d:da:5f:fe:c6:f3:13:0e:8d:32:44:7a:20:a8:b1:18:
6a:6b:fd:7d:9c:1c:3c:ab:af:be:dd:df:15:a4:0d:b2:d2:da:
9b:e5:63:4c:b4:6b:1c:61:da:14:a0:42:30:a3:e4:3f:86:e9:
12:4b:20:f4:2b:09:72:48:31:36:b2:4d:67:7b:06:71:f2:2f:
20:82:b2:9f:b3:85:0e:30:74:52:c7:1e:f4:6c:24:3c:30:75:
c7:5c:1c:dc:49:a9:a7:4f:f6:ef:d2:89:e0:45:d2:a7:ad:2e:
f6:44:3f:49:75:20:b9:8c:3e:e2:7a:c7:a8:c3:d0:0c:77:a9:
ae:c1:d2:ae:ca:53:b8:78:5f:07:1f:74:52:6f:f5:df:6e:ed:
2c:91:d1:c2:90:5e:ed:20:12:4e:79:e2:5d:da:44:cf:92:c2:
8b:86:a9:71:06:7f:a9:13:c6:f0:20:f7:75:a7:80:3f:ab:d1:
02:33:53:42:59:eb:35:5a:16:5b:c2:db:e1:21:22:45:b9:0e:
1d:d4:d3:06:16:9a:da:da:a5:3d:fb:5e:7a:e7:4e:d0:b6:fa:
c5:d8:04:e9:7c:3f:f6:ee:5f:ab:d6:5a:51:e5:aa:97:b6:db:
41:69:0d:1e:fe:18:cb:b2:e7:f5:56:0b:31:b2:98:a0:69:1a:
63:20:46:0b
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICD4EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjM0MjdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDY5REU2OTI0NEYzQkJB
RkU0NzA1NkNEQjg2QTMyQ0U0QUVEM0RGQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2b6ScPO2ab5bUX9qQ+RoltIcSKq2RGjEB0DrX+od9MCplF6sg
VnfQCglgXMwFZczaWCLzU1uN9JsNLGgvH19/Nq3EMTKrI3aaDbmyDsJ0xjoEaSvh
HDdHC3jwOKfD9ABoAGZKU/n++sn+sselE39ZgpKbvrdTfQ2SWfwM2CK6GYeFqJma
nxIICvey0D/k+ACOeEaR8YAomEbzUz8OdsaZZug9SICHUYabVxKmBJuwrONvJhr3
ODkvx3m1pTQ3TpB2oo7XYp6ySSeRjcSI5cY5uPhIRsKHTme3ks3laAFdqxkIOcKe
wjNMmqLMvRimu0qCcoho0DDS/V9uAzbrdEZNAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUad5pJE87uv5HBWzbhqMs5K7T36EwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2FkNXBKRTg3dXY1SEJXemJo
cU1zNUs3VDM2RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT
TDQwDQYJKoZIhvcNAQELBQADggEBAJPundpf/sbzEw6NMkR6IKixGGpr/X2cHDyr
r77d3xWkDbLS2pvlY0y0axxh2hSgQjCj5D+G6RJLIPQrCXJIMTayTWd7BnHyLyCC
sp+zhQ4wdFLHHvRsJDwwdcdcHNxJqadP9u/SieBF0qetLvZEP0l1ILmMPuJ6x6jD
0Ax3qa7B0q7KU7h4XwcfdFJv9d9u7SyR0cKQXu0gEk554l3aRM+SwouGqXEGf6kT
xvAg93WngD+r0QIzU0JZ6zVaFlvC2+EhIkW5Dh3U0wYWmtrapT37XnrnTtC2+sXY
BOl8P/buX6vWWlHlqpe220FpDR7+GMuy5/VWCzGymKBpGmMgRgs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org