Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ifmRPOYlvEF-5xlnMNEWSRs7JhE.roa
File: ifmRPOYlvEF-5xlnMNEWSRs7JhE.roa (raw, json)
Hash identifier: vjTIXYUbkOHm7C587o9BFzOfZRxHxceu6aOiu0Ngsk8=
Subject key identifier: 89:F9:91:3C:E6:25:BC:41:7E:E7:19:67:30:D1:16:49:1B:3B:26:11
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1367
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ifmRPOYlvEF-5xlnMNEWSRs7JhE.roa
Signing time: Wed 29 Sep 2021 02:55:44 +0000
ROA not before: Wed 29 Sep 2021 02:55:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 61.64.8.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4967 (0x1367)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=89F9913CE625BC417EE7196730D116491B3B2611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a0:9e:78:90:1f:5a:4a:37:68:33:70:5b:f1:
a0:2a:91:3c:c4:c6:6c:0a:71:81:94:11:92:f8:7a:
45:7e:13:61:37:c9:9b:67:61:fc:1b:05:2e:a5:1e:
82:55:50:fb:e2:fc:80:64:36:83:2c:4a:94:9f:9b:
c7:f8:f9:52:d2:df:fe:ff:b0:f5:d7:6d:d4:8f:5d:
b7:04:69:20:a8:e9:58:a2:79:fd:0a:7b:5d:52:b0:
b2:4d:c7:af:08:66:e0:e8:eb:dc:3c:98:ab:fb:3d:
bf:62:02:ab:ae:be:f0:ff:92:30:fd:1d:7e:30:94:
cf:d6:ef:86:d3:e0:d0:80:ce:11:f3:9a:ba:21:23:
34:c3:1a:2e:8d:5f:ba:11:91:5d:e1:9e:11:ab:f6:
78:c4:63:96:bb:ca:0a:a2:2b:28:19:ef:c2:17:24:
66:4d:3d:54:60:a8:51:96:70:e9:fe:5b:0a:9b:73:
75:d8:cf:f8:da:de:0c:8e:0d:94:34:5f:d4:fd:43:
27:dc:57:be:ff:57:b7:68:cd:01:4b:b0:42:85:ad:
b2:c0:72:46:f2:9c:ef:c7:4c:5b:9b:27:22:5e:b6:
52:75:43:3d:ea:30:1f:dc:af:ce:c8:7b:d3:a3:9a:
42:3c:41:62:f7:57:37:f2:a1:8b:52:55:c4:0d:e8:
98:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F9:91:3C:E6:25:BC:41:7E:E7:19:67:30:D1:16:49:1B:3B:26:11
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ifmRPOYlvEF-5xlnMNEWSRs7JhE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.8.0/22
Signature Algorithm: sha256WithRSAEncryption
50:57:39:f5:fc:47:7e:61:9f:40:78:53:1f:8b:a5:40:a4:e9:
bc:a9:f0:19:b2:6f:41:69:aa:19:37:fc:13:35:4c:52:48:0b:
7e:50:e3:7e:cd:de:40:b9:2c:75:e6:c3:85:36:01:13:6d:63:
06:8f:61:7f:47:ca:e6:09:9f:50:63:c8:63:c1:84:56:b9:d0:
e5:a2:8e:41:bf:be:8f:d9:d1:44:f3:99:98:2c:2d:58:2f:49:
16:cf:56:1e:b6:a7:43:3e:8c:9f:51:38:a9:18:02:17:d4:c5:
ca:04:c4:5d:93:62:8d:66:df:ca:aa:04:1e:0c:00:59:87:8f:
7a:af:d1:1b:3c:cc:97:c7:5b:16:da:44:72:d1:3c:80:f3:02:
b1:ab:34:fa:68:dd:21:c7:10:9d:d9:74:c8:71:f1:b3:fe:2c:
2f:31:8c:a6:99:35:c3:dd:19:02:50:f4:91:e0:16:c7:63:01:
a4:08:ec:ac:76:a1:58:c8:d5:d5:2f:74:39:a1:60:ee:ae:c3:
9b:08:1d:c5:8d:51:ea:e2:4a:cc:28:00:5b:12:e9:8e:ff:cf:
14:bf:a9:56:65:2c:ad:82:87:15:b4:fa:83:60:6c:0d:32:07:
47:63:82:e3:fd:19:77:e6:22:53:59:9a:02:90:d6:67:f2:37:
3c:27:12:de
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICE2cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1NDRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDg5Rjk5MTNDRTYyNUJD
NDE3RUU3MTk2NzMwRDExNjQ5MUIzQjI2MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdoJ54kB9aSjdoM3Bb8aAqkTzExmwKcYGUEZL4ekV+E2E3yZtn
YfwbBS6lHoJVUPvi/IBkNoMsSpSfm8f4+VLS3/7/sPXXbdSPXbcEaSCo6Viief0K
e11SsLJNx68IZuDo69w8mKv7Pb9iAquuvvD/kjD9HX4wlM/W74bT4NCAzhHzmroh
IzTDGi6NX7oRkV3hnhGr9njEY5a7ygqiKygZ78IXJGZNPVRgqFGWcOn+Wwqbc3XY
z/ja3gyODZQ0X9T9QyfcV77/V7dozQFLsEKFrbLAckbynO/HTFubJyJetlJ1Qz3q
MB/cr87Ie9OjmkI8QWL3VzfyoYtSVcQN6JgZAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUifmRPOYlvEF+5xlnMNEWSRs7JhEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2lmbVJQT1lsdkVGLTV4bG5N
TkVXU1JzN0poRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9
QAgwDQYJKoZIhvcNAQELBQADggEBAFBXOfX8R35hn0B4Ux+LpUCk6byp8Bmyb0Fp
qhk3/BM1TFJIC35Q437N3kC5LHXmw4U2ARNtYwaPYX9HyuYJn1BjyGPBhFa50OWi
jkG/vo/Z0UTzmZgsLVgvSRbPVh62p0M+jJ9ROKkYAhfUxcoExF2TYo1m38qqBB4M
AFmHj3qv0Rs8zJfHWxbaRHLRPIDzArGrNPpo3SHHEJ3ZdMhx8bP+LC8xjKaZNcPd
GQJQ9JHgFsdjAaQI7Kx2oVjI1dUvdDmhYO6uw5sIHcWNUeriSswoAFsS6Y7/zxS/
qVZlLK2ChxW0+oNgbA0yB0djguP9GXfmIlNZmgKQ1mfyNzwnEt4=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:39 2023 by rpki-client on console-ams.rpki-client.org