Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kFnFIlgiF4fyKiovmUiNh5Y4sjQ.roa
File: kFnFIlgiF4fyKiovmUiNh5Y4sjQ.roa (raw, json)
Hash identifier: TSlyWixVyS9tKpO3NzD+H0rKWEo7YipDergx57QmI7U=
Subject key identifier: 90:59:C5:22:58:22:17:87:F2:2A:2A:2F:99:48:8D:87:96:38:B2:34
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12D6
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kFnFIlgiF4fyKiovmUiNh5Y4sjQ.roa
Signing time: Wed 29 Sep 2021 02:55:03 +0000
ROA not before: Wed 29 Sep 2021 02:55:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 115.165.208.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4822 (0x12d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9059C52258221787F22A2A2F99488D879638B234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8f:af:4b:37:b0:e9:59:6b:e5:f7:07:b2:4d:
c5:1d:9a:15:c9:d3:52:95:42:1a:a6:6f:cb:3c:b3:
1b:29:d8:2c:4c:7e:30:35:c9:36:63:3a:9e:6e:15:
a8:69:a7:2d:3a:d4:eb:9f:1f:3f:cb:bf:a9:67:cb:
be:55:f8:d3:a2:57:fa:70:51:b1:87:34:c4:12:cb:
94:89:97:f8:12:6b:7d:c0:78:9c:00:21:0f:f8:4d:
9c:b0:92:de:4e:a0:f9:b2:aa:60:1f:2e:f7:86:3e:
1a:df:67:1f:ea:0f:29:8e:f2:5d:34:56:a4:35:10:
5d:b4:a8:81:2e:d7:f4:ca:92:e8:a1:da:17:05:5e:
66:56:7d:c4:4a:3a:93:51:a6:5e:90:94:12:5d:2a:
71:8d:74:aa:9e:bc:b9:b3:66:29:f7:41:6e:c1:d5:
99:85:fa:c1:10:f3:4f:84:8e:f0:d4:23:a9:a3:60:
80:3e:21:39:62:c9:bd:63:3c:4a:46:1a:b7:1f:d9:
ce:2e:74:d4:45:7e:98:a1:05:9f:63:68:a7:de:b8:
68:3d:ce:b0:07:90:67:9c:a0:48:3d:3a:b1:ef:e2:
83:55:a5:61:de:89:76:a8:fd:7f:66:4b:c4:63:b2:
0e:4d:83:ae:cd:19:69:90:9f:25:72:0a:8c:80:1a:
5c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:59:C5:22:58:22:17:87:F2:2A:2A:2F:99:48:8D:87:96:38:B2:34
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kFnFIlgiF4fyKiovmUiNh5Y4sjQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.165.208.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:cd:68:2c:af:28:89:c8:1c:76:f3:8c:ca:19:71:f5:bb:43:
af:0d:21:7e:68:fd:9c:21:de:4b:70:54:8f:f4:45:5f:68:e4:
af:b3:d1:3c:5d:98:79:5c:b6:00:51:2a:f8:ad:83:be:8c:e7:
c1:94:18:42:fa:46:2b:f7:e8:65:f4:74:60:04:32:5a:2e:c2:
96:a5:6c:1e:ce:5f:81:2a:82:5b:17:ca:e7:c9:6c:3a:0e:1f:
8b:ca:33:9c:d7:f0:69:7d:75:62:8e:55:f5:22:7d:ac:35:90:
4d:c3:f3:15:42:8c:bd:6c:e9:7e:86:af:bb:c5:0a:10:18:5b:
8c:92:1d:c7:16:b1:3c:5d:64:09:23:cd:88:04:50:d4:4b:55:
fa:b0:81:71:02:88:e6:e6:d7:c6:7c:d6:b9:2f:78:5d:81:c0:
63:9b:0b:48:f8:91:43:9c:fa:f1:e2:9b:ec:29:a2:08:ee:0a:
a3:4e:ec:cc:05:55:8f:ce:80:eb:30:7b:6c:1a:44:4e:19:c6:
6d:7e:6f:08:22:c4:08:b7:b3:1a:cd:69:6d:f4:43:50:bb:34:
90:f3:0f:10:ce:9a:fe:56:19:21:51:6f:fb:3f:1d:22:67:60:
a5:8c:dc:38:a6:0a:32:41:29:d5:d4:7d:bc:95:03:f0:60:1d:
70:1a:ce:96
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEtYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1MDNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDkwNTlDNTIyNTgyMjE3
ODdGMjJBMkEyRjk5NDg4RDg3OTYzOEIyMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFj69LN7DpWWvl9weyTcUdmhXJ01KVQhqmb8s8sxsp2CxMfjA1
yTZjOp5uFahppy061OufHz/Lv6lny75V+NOiV/pwUbGHNMQSy5SJl/gSa33AeJwA
IQ/4TZywkt5OoPmyqmAfLveGPhrfZx/qDymO8l00VqQ1EF20qIEu1/TKkuih2hcF
XmZWfcRKOpNRpl6QlBJdKnGNdKqevLmzZin3QW7B1ZmF+sEQ80+EjvDUI6mjYIA+
ITliyb1jPEpGGrcf2c4udNRFfpihBZ9jaKfeuGg9zrAHkGecoEg9OrHv4oNVpWHe
iXao/X9mS8Rjsg5Ng67NGWmQnyVyCoyAGlxPAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUkFnFIlgiF4fyKiovmUiNh5Y4sjQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2tGbkZJbGdpRjRmeUtpb3Zt
VWlOaDVZNHNqUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFz
pdAwDQYJKoZIhvcNAQELBQADggEBABrNaCyvKInIHHbzjMoZcfW7Q68NIX5o/Zwh
3ktwVI/0RV9o5K+z0TxdmHlctgBRKvitg76M58GUGEL6Riv36GX0dGAEMlouwpal
bB7OX4EqglsXyufJbDoOH4vKM5zX8Gl9dWKOVfUifaw1kE3D8xVCjL1s6X6Gr7vF
ChAYW4ySHccWsTxdZAkjzYgEUNRLVfqwgXECiObm18Z81rkveF2BwGObC0j4kUOc
+vHim+wpogjuCqNO7MwFVY/OgOswe2waRE4Zxm1+bwgixAi3sxrNaW30Q1C7NJDz
DxDOmv5WGSFRb/s/HSJnYKWM3DimCjJBKdXUfbyVA/BgHXAazpY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org