Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/duGd7X0XwECocxN6blr_FeOdstw.roa
File: duGd7X0XwECocxN6blr_FeOdstw.roa (raw, json)
Hash identifier: 2ZdbFsw0FnwaCsvDZYhP+O69D5+H0Qt0ATYdUMWtdiI=
Subject key identifier: 76:E1:9D:ED:7D:17:C0:40:A8:73:13:7A:6E:5A:FF:15:E3:9D:B2:DC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 102B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/duGd7X0XwECocxN6blr_FeOdstw.roa
Signing time: Sun 07 Feb 2021 12:37:57 +0000
ROA not before: Sun 07 Feb 2021 12:37:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 61.64.8.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4139 (0x102b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:37:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=76E19DED7D17C040A873137A6E5AFF15E39DB2DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a8:1f:b9:63:8f:b9:31:c9:01:24:71:1f:30:
33:5b:8f:9f:63:d7:0a:9a:85:f6:40:ae:62:bb:5c:
18:fe:60:7c:e6:68:fc:d0:ba:4e:a5:92:0a:6a:21:
36:4e:b3:b2:e0:1f:cb:32:3c:29:7a:cc:9f:05:a4:
1d:6a:1a:66:22:eb:95:62:32:c9:0e:7f:d3:00:1c:
61:3e:86:02:dc:73:2e:4a:4a:19:91:2d:31:80:f7:
3e:7e:6c:22:b4:68:71:be:cd:1b:aa:b0:b1:ce:5d:
05:a2:7d:54:c3:56:a2:1e:56:61:14:b0:94:a6:3d:
cb:25:a1:51:db:f7:ba:da:d2:e2:f1:3a:cb:ec:bc:
73:ef:8e:56:50:da:a4:1b:52:5a:e7:71:bb:a1:f0:
f6:f7:3d:18:2c:63:82:d8:51:1f:c2:de:13:fd:91:
ec:a0:1b:d6:a7:12:ed:dc:99:d7:30:1b:f7:35:98:
46:fd:d5:bf:59:5f:f1:82:25:aa:f9:39:f9:1b:13:
d6:2b:2c:f3:78:68:db:79:a0:19:3d:e6:75:24:89:
c9:40:0f:29:62:de:8a:ae:35:36:44:bc:08:6c:0e:
41:74:f5:30:18:58:0d:c7:c6:b5:ff:21:94:8c:0a:
20:3d:35:78:c2:ed:a5:ba:ec:f3:cc:92:cc:f5:e3:
61:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E1:9D:ED:7D:17:C0:40:A8:73:13:7A:6E:5A:FF:15:E3:9D:B2:DC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/duGd7X0XwECocxN6blr_FeOdstw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.8.0/21
Signature Algorithm: sha256WithRSAEncryption
5a:91:24:0a:17:e7:81:3c:c7:b3:de:d8:15:ee:9b:a8:3f:22:
fe:7a:74:69:e0:80:29:c9:4a:1a:04:db:49:2a:35:04:32:72:
2b:6b:8f:3d:4c:86:77:55:87:32:6c:ed:fd:b3:9e:82:1c:73:
f2:cc:c9:ef:dc:aa:a5:31:e5:49:48:cd:31:3a:6a:00:96:e3:
2b:99:e2:a6:37:bf:31:c6:8b:f5:d1:20:f4:2e:5e:57:b0:1e:
cc:de:d0:50:f1:49:e5:b4:8d:a1:a8:1a:8c:d1:77:11:cf:b9:
d7:08:8a:89:4f:16:40:29:06:2c:f5:ef:c7:c2:d2:9b:bb:41:
1e:d4:08:ef:1a:c9:3f:31:6c:d4:43:71:cb:1e:97:84:24:fb:
58:30:24:87:79:8f:51:33:c2:ac:d8:a4:49:e8:ac:93:96:75:
73:bd:db:da:19:a9:8f:07:01:35:3f:73:1c:9e:90:73:1d:a9:
aa:5f:c9:9d:12:85:30:d8:14:d4:9d:52:e9:3a:87:6b:b1:69:
5e:b1:c6:0f:61:82:74:07:eb:7d:17:fe:ab:1c:c4:f8:2b:65:
e4:e7:47:0d:2b:5a:9b:d3:5a:d0:b0:29:11:0a:06:56:f1:b2:
05:a0:06:0b:fd:51:91:65:d0:7c:4e:bb:42:dc:ea:db:ec:89:
69:81:b7:eb
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICECswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjM3NTdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDc2RTE5REVEN0QxN0Mw
NDBBODczMTM3QTZFNUFGRjE1RTM5REIyREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDnqB+5Y4+5MckBJHEfMDNbj59j1wqahfZArmK7XBj+YHzmaPzQ
uk6lkgpqITZOs7LgH8syPCl6zJ8FpB1qGmYi65ViMskOf9MAHGE+hgLccy5KShmR
LTGA9z5+bCK0aHG+zRuqsLHOXQWifVTDVqIeVmEUsJSmPcsloVHb97ra0uLxOsvs
vHPvjlZQ2qQbUlrncbuh8Pb3PRgsY4LYUR/C3hP9keygG9anEu3cmdcwG/c1mEb9
1b9ZX/GCJar5OfkbE9YrLPN4aNt5oBk95nUkiclADyli3oquNTZEvAhsDkF09TAY
WA3HxrX/IZSMCiA9NXjC7aW67PPMksz142ExAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUduGd7X0XwECocxN6blr/FeOdstwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2R1R2Q3WDBYd0VDb2N4TjZi
bHJfRmVPZHN0dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9
QAgwDQYJKoZIhvcNAQELBQADggEBAFqRJAoX54E8x7Pe2BXum6g/Iv56dGnggCnJ
ShoE20kqNQQycitrjz1MhndVhzJs7f2znoIcc/LMye/cqqUx5UlIzTE6agCW4yuZ
4qY3vzHGi/XRIPQuXlewHsze0FDxSeW0jaGoGozRdxHPudcIiolPFkApBiz178fC
0pu7QR7UCO8ayT8xbNRDccsel4Qk+1gwJId5j1EzwqzYpEnorJOWdXO929oZqY8H
ATU/cxyekHMdqapfyZ0ShTDYFNSdUuk6h2uxaV6xxg9hgnQH630X/qscxPgrZeTn
Rw0rWpvTWtCwKREKBlbxsgWgBgv9UZFl0HxOu0Lc6tvsiWmBt+s=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org