Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jBM4YFFjn-Z6Q0kPNmbQDJ6EmWU.roa
File: jBM4YFFjn-Z6Q0kPNmbQDJ6EmWU.roa (raw, json)
Hash identifier: fO3wHNK8gTenquXskKJBlXBjEgfWRnptZZqFdviN+sY=
Subject key identifier: 8C:13:38:60:51:63:9F:E6:7A:43:49:0F:36:66:D0:0C:9E:84:99:65
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0D33
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jBM4YFFjn-Z6Q0kPNmbQDJ6EmWU.roa
Signing time: Thu 14 Jan 2021 07:23:50 +0000
ROA not before: Thu 14 Jan 2021 07:23:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 119.77.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3379 (0xd33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 14 07:23:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8C13386051639FE67A43490F3666D00C9E849965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0c:b6:97:63:34:0c:c2:ea:47:dd:14:44:0a:
1c:e7:22:cf:06:5d:0e:cc:c4:0d:43:f9:41:ad:65:
5e:9e:a7:01:d7:16:54:29:84:9b:43:88:56:eb:35:
89:68:8d:f9:cc:75:a2:d9:bc:0c:a6:3f:65:31:07:
c7:2c:e2:54:c4:95:db:55:4e:72:f9:43:56:fb:7a:
b0:11:8f:ab:cd:c9:cb:33:45:58:88:e5:7f:b0:44:
66:a1:d7:41:2d:c3:d3:cc:df:97:21:f2:64:93:d0:
00:5b:34:f1:fe:c3:8c:3c:dc:2a:41:6b:14:0a:7e:
e3:b6:ee:d9:4c:48:61:f5:77:81:cf:6a:b1:5e:53:
a0:cb:bd:cf:82:3c:b9:08:48:03:7d:78:c6:8c:46:
96:00:de:22:39:36:8b:47:af:a0:47:70:a4:86:fa:
2e:3d:c2:2c:11:2a:84:c2:c9:2d:0d:53:4b:de:ed:
9f:62:65:4d:e0:9c:d8:66:e7:0f:80:69:21:0f:5d:
b2:a1:99:8a:d0:cf:a7:ed:2b:53:bd:50:a9:82:c1:
b6:a4:ad:50:ff:57:8b:41:dd:14:b6:c0:60:2d:b5:
63:93:c6:a1:89:f9:6c:b6:f7:e5:15:c2:6d:64:b1:
f6:70:95:aa:9d:cb:ee:6f:02:f7:34:b3:58:2e:09:
99:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:13:38:60:51:63:9F:E6:7A:43:49:0F:36:66:D0:0C:9E:84:99:65
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jBM4YFFjn-Z6Q0kPNmbQDJ6EmWU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.191.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:fd:6e:07:f9:2f:b9:58:22:23:d5:74:df:c9:63:ec:ab:96:
37:a5:98:a9:16:83:2c:57:39:fd:ef:86:af:6e:51:b5:f2:8c:
85:5d:7e:5c:be:68:27:9d:c1:de:52:9e:02:d9:4a:8a:6e:52:
6f:55:af:1d:d3:a5:ed:af:a9:29:b3:97:9d:c0:83:54:a6:14:
c5:7a:67:d6:77:0b:bf:57:0a:df:3b:e4:63:14:c0:75:e1:fd:
b8:0c:da:c2:db:50:00:b3:80:1a:0a:36:89:fe:d8:68:0c:3f:
48:fb:74:1d:29:a5:f4:6d:52:ca:3d:6d:9b:06:32:8c:53:31:
42:c2:52:8e:0c:c6:ce:2f:65:19:e4:ba:0f:d7:45:8d:3c:e5:
49:3f:3b:ed:bd:09:e0:56:b7:34:f3:66:cd:c2:49:87:46:c4:
6e:9c:b1:82:e5:e9:eb:81:1f:87:b7:2e:33:bb:55:93:1a:33:
b6:ce:27:f6:e6:59:4c:27:c0:c4:cd:a2:5d:fd:af:66:92:60:
c3:7d:9a:8a:75:de:77:9d:c8:d5:76:14:32:8c:0a:18:06:a8:
fe:31:e5:30:e0:4b:08:ce:bb:19:26:8e:0d:f2:5c:70:18:1c:
12:d8:76:33:6c:c4:44:07:d2:b2:5a:ad:ac:3e:b8:20:17:f2:
d6:40:27:08
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDTMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAxMTQw
NzIzNTBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDhDMTMzODYwNTE2MzlG
RTY3QTQzNDkwRjM2NjZEMDBDOUU4NDk5NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUDLaXYzQMwupH3RREChznIs8GXQ7MxA1D+UGtZV6epwHXFlQp
hJtDiFbrNYlojfnMdaLZvAymP2UxB8cs4lTEldtVTnL5Q1b7erARj6vNycszRViI
5X+wRGah10Etw9PM35ch8mST0ABbNPH+w4w83CpBaxQKfuO27tlMSGH1d4HParFe
U6DLvc+CPLkISAN9eMaMRpYA3iI5NotHr6BHcKSG+i49wiwRKoTCyS0NU0ve7Z9i
ZU3gnNhm5w+AaSEPXbKhmYrQz6ftK1O9UKmCwbakrVD/V4tB3RS2wGAttWOTxqGJ
+Wy29+UVwm1ksfZwlaqdy+5vAvc0s1guCZk9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUjBM4YFFjn+Z6Q0kPNmbQDJ6EmWUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2pCTTRZRkZqbi1aNlEwa1BO
bWJRREo2RW1XVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3
Tb8wDQYJKoZIhvcNAQELBQADggEBAG39bgf5L7lYIiPVdN/JY+yrljelmKkWgyxX
Of3vhq9uUbXyjIVdfly+aCedwd5SngLZSopuUm9Vrx3Tpe2vqSmzl53Ag1SmFMV6
Z9Z3C79XCt875GMUwHXh/bgM2sLbUACzgBoKNon+2GgMP0j7dB0ppfRtUso9bZsG
MoxTMULCUo4Mxs4vZRnkug/XRY085Uk/O+29CeBWtzTzZs3CSYdGxG6csYLl6euB
H4e3LjO7VZMaM7bOJ/bmWUwnwMTNol39r2aSYMN9mop13nedyNV2FDKMChgGqP4x
5TDgSwjOuxkmjg3yXHAYHBLYdjNsxEQH0rJaraw+uCAX8tZAJwg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org