Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iTCnY74jzoKui4sWY9TOKl_Uu2Q.roa
File: iTCnY74jzoKui4sWY9TOKl_Uu2Q.roa (raw, json)
Hash identifier: pegaGz5gisAlhEmjewbWphhvDEx9xeT4wF6uY5qpCLY=
Subject key identifier: 89:30:A7:63:BE:23:CE:82:AE:8B:8B:16:63:D4:CE:2A:5F:D4:BB:64
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 13FC
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iTCnY74jzoKui4sWY9TOKl_Uu2Q.roa
Signing time: Mon 25 Apr 2022 08:57:35 +0000
ROA not before: Mon 25 Apr 2022 08:57:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 114.198.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5116 (0x13fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Apr 25 08:57:35 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8930A763BE23CE82AE8B8B1663D4CE2A5FD4BB64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4a:57:1d:07:a7:a5:02:9f:2d:59:e4:c4:5a:
74:6a:83:80:f1:cf:98:f8:a1:5c:ce:a0:b2:ed:6c:
22:be:3e:47:58:b0:a3:0d:41:ed:71:ca:11:f6:0e:
1b:cb:de:de:d8:63:66:b9:83:83:a7:b9:0e:1e:e9:
cb:f7:d7:1b:82:01:76:d6:7a:87:50:12:35:bb:4e:
64:4e:70:cb:00:b7:02:42:61:15:45:4e:11:2d:26:
06:1b:8b:42:4a:16:07:7e:37:41:59:c3:d7:3b:1c:
28:28:f9:fb:46:7f:d1:57:be:d9:fa:44:2a:c1:24:
cf:9b:94:41:d7:04:40:ab:4c:d0:68:74:01:e4:40:
93:65:b4:a9:6a:7c:7f:7f:5b:b0:86:8a:04:50:2c:
17:02:1e:02:56:73:3e:e4:6f:85:5c:14:33:96:75:
ac:48:2a:f3:a6:db:0d:4e:e8:13:4e:6e:76:81:0d:
72:7a:43:f6:20:65:19:d1:94:4a:dc:37:82:a5:d9:
56:7f:d5:96:23:27:e3:33:f3:ef:b9:06:64:f2:a4:
d2:33:c4:c4:ce:66:43:c5:19:03:78:db:6b:69:2d:
4d:d2:3a:96:72:56:f8:f2:6e:6e:6b:34:81:c0:a5:
4a:65:eb:a5:6d:b8:27:36:78:41:e8:99:88:03:0b:
f0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:30:A7:63:BE:23:CE:82:AE:8B:8B:16:63:D4:CE:2A:5F:D4:BB:64
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iTCnY74jzoKui4sWY9TOKl_Uu2Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.184.0/21
Signature Algorithm: sha256WithRSAEncryption
61:d7:61:73:7b:2d:e4:42:4e:bb:4f:71:c7:11:28:0b:7f:88:
f1:5f:ac:c4:a4:ab:37:da:46:65:b1:70:85:30:a9:8f:21:08:
db:b2:76:e9:6a:2a:e9:f2:a0:af:2a:05:44:6c:73:67:e5:fb:
c8:7e:6b:85:02:12:c4:e9:53:51:7e:33:25:24:8b:19:06:33:
49:19:26:ff:57:88:2c:69:78:c0:e4:24:0c:d9:33:71:7c:e4:
f8:b8:86:b6:82:1a:78:80:06:3c:ca:9e:ee:cc:bd:27:ec:be:
54:ba:37:80:a6:30:3a:f9:7f:40:45:f9:1a:09:c8:61:e2:f0:
c0:e6:ee:f1:0b:45:21:39:30:27:29:f0:07:2f:de:ec:d6:67:
c3:a8:82:b9:24:09:7d:2c:c4:e9:86:b0:7a:3f:88:06:21:2b:
80:41:8b:1f:73:81:38:b2:94:0f:d3:58:d2:06:20:23:00:52:
ca:51:3e:55:90:59:4e:d2:3b:69:3d:c7:db:4b:53:ea:26:c7:
cf:e0:68:fa:2c:01:c1:e5:e4:f8:6e:bc:91:d1:c3:7b:f4:84:
e8:41:4a:d9:c8:aa:67:6d:0a:ec:0b:e3:d1:10:cc:af:bc:80:
03:dc:09:ac:15:96:86:eb:00:b8:31:a4:a5:04:29:36:8c:25:
a5:05:f2:99
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICE/wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA0MjUw
ODU3MzVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDg5MzBBNzYzQkUyM0NF
ODJBRThCOEIxNjYzRDRDRTJBNUZENEJCNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6SlcdB6elAp8tWeTEWnRqg4Dxz5j4oVzOoLLtbCK+PkdYsKMN
Qe1xyhH2DhvL3t7YY2a5g4OnuQ4e6cv31xuCAXbWeodQEjW7TmROcMsAtwJCYRVF
ThEtJgYbi0JKFgd+N0FZw9c7HCgo+ftGf9FXvtn6RCrBJM+blEHXBECrTNBodAHk
QJNltKlqfH9/W7CGigRQLBcCHgJWcz7kb4VcFDOWdaxIKvOm2w1O6BNObnaBDXJ6
Q/YgZRnRlErcN4Kl2VZ/1ZYjJ+Mz8++5BmTypNIzxMTOZkPFGQN422tpLU3SOpZy
Vvjybm5rNIHApUpl66VtuCc2eEHomYgDC/DfAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUiTCnY74jzoKui4sWY9TOKl/Uu2QwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2lUQ25ZNzRqem9LdWk0c1dZ
OVRPS2xfVXUyUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANy
xrgwDQYJKoZIhvcNAQELBQADggEBAGHXYXN7LeRCTrtPcccRKAt/iPFfrMSkqzfa
RmWxcIUwqY8hCNuydulqKunyoK8qBURsc2fl+8h+a4UCEsTpU1F+MyUkixkGM0kZ
Jv9XiCxpeMDkJAzZM3F85Pi4hraCGniABjzKnu7MvSfsvlS6N4CmMDr5f0BF+RoJ
yGHi8MDm7vELRSE5MCcp8Acv3uzWZ8OogrkkCX0sxOmGsHo/iAYhK4BBix9zgTiy
lA/TWNIGICMAUspRPlWQWU7SO2k9x9tLU+omx8/gaPosAcHl5PhuvJHRw3v0hOhB
StnIqmdtCuwL49EQzK+8gAPcCawVlobrALgxpKUEKTaMJaUF8pk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org