Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cApMOOoB8_vFJkvn3i2sMvSwhh8.roa
File: cApMOOoB8_vFJkvn3i2sMvSwhh8.roa (raw, json)
Hash identifier: Ly4Z8CJDF10Im+9J0jAjrUbv0XNt5z1s2bMVfPFNvu0=
Subject key identifier: 70:0A:4C:38:EA:01:F3:FB:C5:26:4B:E7:DE:2D:AC:32:F4:B0:86:1F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F1F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cApMOOoB8_vFJkvn3i2sMvSwhh8.roa
Signing time: Sun 07 Feb 2021 12:32:57 +0000
ROA not before: Sun 07 Feb 2021 12:32:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 114.198.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3871 (0xf1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:32:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=700A4C38EA01F3FBC5264BE7DE2DAC32F4B0861F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:22:95:21:81:83:9c:51:1f:6d:a7:6f:6d:c4:
3f:eb:cf:d3:a8:9a:75:e2:6d:31:2f:b1:88:73:3e:
d1:13:91:0b:33:42:14:ab:49:e1:9d:d0:23:5c:1d:
79:90:91:53:b3:ca:73:99:80:17:f6:5c:ee:8e:87:
a4:ba:9b:21:4e:61:35:fa:92:38:21:60:a9:7c:ad:
03:84:c8:b4:63:6d:02:5f:0b:e0:41:62:69:c0:e5:
9f:e2:92:d5:30:01:92:68:25:1c:64:a2:a1:dc:4d:
84:ee:d1:55:f5:3d:b4:68:f4:d0:54:2f:15:bd:2d:
8f:da:ee:8a:21:b6:9f:88:ed:8a:12:8e:c2:3a:d8:
43:23:62:5d:ca:8a:fe:ea:81:98:ec:f9:2b:85:ea:
42:12:40:ac:2f:b7:93:14:78:c4:df:80:28:fb:d6:
a5:ac:2b:74:29:7e:44:6a:a1:28:e1:39:3f:b0:f9:
b2:ad:ad:bf:7f:f9:93:0d:03:a4:6f:11:69:6a:c2:
8a:63:0a:29:52:f1:a6:ac:f6:10:2f:20:94:b8:73:
b0:33:42:eb:09:62:a2:2f:02:06:8a:1f:0f:9f:1f:
0d:c3:81:ef:40:73:69:77:06:e7:09:d0:be:19:4c:
82:95:34:90:42:15:46:d5:7c:c0:a9:2d:c3:89:fa:
a8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:0A:4C:38:EA:01:F3:FB:C5:26:4B:E7:DE:2D:AC:32:F4:B0:86:1F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cApMOOoB8_vFJkvn3i2sMvSwhh8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.172.0/22
Signature Algorithm: sha256WithRSAEncryption
99:da:04:da:55:f8:d7:80:c3:a1:e7:dd:6b:fd:e1:a4:0b:8b:
44:19:8a:9c:3f:32:25:94:f1:42:23:62:b7:45:70:b3:cb:f3:
c6:52:ac:7e:55:34:de:45:73:b2:cd:e1:a5:e8:af:27:30:57:
ca:d7:f6:d0:ba:aa:81:ac:16:7b:53:39:c4:9e:62:12:05:41:
f5:af:da:cc:b0:3a:be:e4:bb:58:cd:e7:b4:e9:db:b2:7b:c2:
40:6d:97:66:c2:4e:d1:21:ce:bb:4e:da:eb:90:b2:ba:b3:2a:
20:d0:c6:4b:97:c7:f7:78:b8:d9:60:21:2b:8f:9e:ee:a7:d5:
e3:f7:0b:4d:d9:ee:0b:25:36:76:bc:35:ca:14:28:73:5c:a9:
47:8e:d2:7b:f7:c4:d2:25:14:68:77:8a:10:6e:cd:75:4e:9e:
c6:ff:39:4a:b1:49:eb:e7:91:6d:92:cf:0d:66:f7:5d:3a:e4:
24:bd:34:de:78:4d:a5:fc:f2:73:fb:e3:5e:36:e2:94:51:1e:
bc:15:a2:75:29:05:c2:ba:61:1a:33:14:64:c8:31:4b:71:5e:
34:59:d4:23:ed:84:e5:c0:2c:49:a9:8a:27:63:e6:d2:b2:13:
37:ad:ed:6d:cc:2e:b5:8b:10:eb:b0:8b:fb:8d:dd:91:df:8c:
fc:3f:58:03
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDx8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjMyNTdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDcwMEE0QzM4RUEwMUYz
RkJDNTI2NEJFN0RFMkRBQzMyRjRCMDg2MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1IpUhgYOcUR9tp29txD/rz9OomnXibTEvsYhzPtETkQszQhSr
SeGd0CNcHXmQkVOzynOZgBf2XO6Oh6S6myFOYTX6kjghYKl8rQOEyLRjbQJfC+BB
YmnA5Z/iktUwAZJoJRxkoqHcTYTu0VX1PbRo9NBULxW9LY/a7oohtp+I7YoSjsI6
2EMjYl3Kiv7qgZjs+SuF6kISQKwvt5MUeMTfgCj71qWsK3QpfkRqoSjhOT+w+bKt
rb9/+ZMNA6RvEWlqwopjCilS8aas9hAvIJS4c7AzQusJYqIvAgaKHw+fHw3Dge9A
c2l3BucJ0L4ZTIKVNJBCFUbVfMCpLcOJ+qjzAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUcApMOOoB8/vFJkvn3i2sMvSwhh8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2NBcE1PT29COF92Rkprdm4z
aTJzTXZTd2hoOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJy
xqwwDQYJKoZIhvcNAQELBQADggEBAJnaBNpV+NeAw6Hn3Wv94aQLi0QZipw/MiWU
8UIjYrdFcLPL88ZSrH5VNN5Fc7LN4aXorycwV8rX9tC6qoGsFntTOcSeYhIFQfWv
2sywOr7ku1jN57Tp27J7wkBtl2bCTtEhzrtO2uuQsrqzKiDQxkuXx/d4uNlgISuP
nu6n1eP3C03Z7gslNna8NcoUKHNcqUeO0nv3xNIlFGh3ihBuzXVOnsb/OUqxSevn
kW2Szw1m91065CS9NN54TaX88nP741424pRRHrwVonUpBcK6YRozFGTIMUtxXjRZ
1CPthOXALEmpiidj5tKyEzet7W3MLrWLEOuwi/uN3ZHfjPw/WAM=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:38 2023 by rpki-client on console-ams.rpki-client.org