Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/l3N5ebZaAer1PB8hAeaej8O9zXc.roa
File: l3N5ebZaAer1PB8hAeaej8O9zXc.roa (raw, json)
Hash identifier: EacZUjQ0qkUxOYfTjLHw7sjJRYkcPPZxOi6tp415wGQ=
Subject key identifier: 97:73:79:79:B6:5A:01:EA:F5:3C:1F:21:01:E6:9E:8F:C3:BD:CD:77
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F8F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/l3N5ebZaAer1PB8hAeaej8O9zXc.roa
Signing time: Sun 07 Feb 2021 12:34:46 +0000
ROA not before: Sun 07 Feb 2021 12:34:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24163
IP address blocks: 211.76.64.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3983 (0xf8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:34:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=97737979B65A01EAF53C1F2101E69E8FC3BDCD77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:14:47:f6:51:62:83:8d:66:65:22:e1:1e:ee:
53:f0:8b:88:25:98:46:35:51:a5:07:83:e0:67:a2:
51:ae:24:de:89:40:f8:d7:23:3e:01:d3:e5:7f:a3:
f3:02:93:49:d7:d8:45:f0:80:92:83:eb:be:8e:a5:
af:d9:f8:ba:d7:9a:bc:1b:f2:9e:1d:8e:6d:d0:90:
9a:ed:95:d2:11:81:c5:df:3d:83:6c:66:0c:1a:39:
69:86:4a:08:00:2c:aa:a5:24:1c:f9:60:d8:0c:1e:
ee:67:ee:be:41:2a:9f:ac:3a:60:96:07:31:be:e4:
50:d3:42:26:84:33:fa:f9:03:50:bc:21:39:29:52:
6e:de:17:5b:ab:0f:23:85:70:79:13:10:2c:e9:b8:
f1:9e:f9:31:38:45:fd:b9:2b:cd:85:36:09:2e:ff:
4d:90:33:96:9e:cd:0b:05:bd:2d:5e:9c:12:c4:ba:
6a:7e:a2:0c:6d:c8:86:21:03:e2:8e:fe:3e:27:76:
78:d5:ce:1f:1f:fa:89:4a:16:4a:42:13:e0:e3:ee:
12:12:c3:44:b7:a1:e2:df:39:e7:6b:58:b1:46:c6:
f6:ad:06:f1:1d:a8:91:f4:d6:96:e7:f7:e1:95:c1:
cf:42:61:c2:6f:99:20:2e:cd:9d:b3:a2:1a:e0:f7:
81:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:73:79:79:B6:5A:01:EA:F5:3C:1F:21:01:E6:9E:8F:C3:BD:CD:77
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/l3N5ebZaAer1PB8hAeaej8O9zXc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.64.0/21
Signature Algorithm: sha256WithRSAEncryption
97:e6:4c:54:5e:87:46:ed:5e:c6:81:22:0c:13:31:51:e3:0c:
bd:41:55:c0:f5:5e:25:a9:67:06:dc:d8:68:de:46:d7:88:be:
e9:74:87:fa:77:62:20:ff:db:1c:59:59:1d:a3:69:70:05:d5:
18:40:b1:62:a0:1b:6e:a5:ec:11:d6:05:5a:bb:a9:ad:6f:61:
d7:97:54:d9:50:61:e2:44:1a:0e:ca:cb:14:13:23:b0:07:ca:
fe:06:a7:eb:98:c8:2a:b9:d8:10:fe:c2:93:bf:4d:02:32:a9:
ab:92:96:62:8e:95:db:28:62:7a:f9:c0:41:98:0e:1b:ee:1c:
ab:eb:4c:d1:d0:1c:3b:d9:c1:36:9f:30:67:7a:7c:2a:b7:57:
43:fc:80:dc:3b:31:88:f6:09:76:60:49:43:bb:5f:94:03:25:
a1:43:15:2f:61:f9:08:17:aa:f1:bc:0e:c6:01:e2:4f:5d:00:
fb:d2:6e:7e:f4:b5:24:6e:d6:b0:89:20:6f:85:6b:69:1d:fb:
44:44:7a:ac:d1:b7:41:b3:0a:af:5c:e2:1d:fd:85:1c:4e:e5:
91:f1:70:d8:2c:5d:1e:f9:0b:67:d1:bc:ed:c3:75:e4:db:4b:
6b:b3:96:e3:0c:b2:13:5b:97:c0:8f:a4:f8:97:0d:05:25:a0:
91:1e:77:41
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICD48wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjM0NDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk3NzM3OTc5QjY1QTAx
RUFGNTNDMUYyMTAxRTY5RThGQzNCRENENzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEFEf2UWKDjWZlIuEe7lPwi4glmEY1UaUHg+BnolGuJN6JQPjX
Iz4B0+V/o/MCk0nX2EXwgJKD676Opa/Z+LrXmrwb8p4djm3QkJrtldIRgcXfPYNs
ZgwaOWmGSggALKqlJBz5YNgMHu5n7r5BKp+sOmCWBzG+5FDTQiaEM/r5A1C8ITkp
Um7eF1urDyOFcHkTECzpuPGe+TE4Rf25K82FNgku/02QM5aezQsFvS1enBLEump+
ogxtyIYhA+KO/j4ndnjVzh8f+olKFkpCE+Dj7hISw0S3oeLfOedrWLFGxvatBvEd
qJH01pbn9+GVwc9CYcJvmSAuzZ2zohrg94G1AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUl3N5ebZaAer1PB8hAeaej8O9zXcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2wzTjVlYlphQWVyMVBCOGhB
ZWFlajhPOXpYYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPT
TEAwDQYJKoZIhvcNAQELBQADggEBAJfmTFReh0btXsaBIgwTMVHjDL1BVcD1XiWp
Zwbc2GjeRteIvul0h/p3YiD/2xxZWR2jaXAF1RhAsWKgG26l7BHWBVq7qa1vYdeX
VNlQYeJEGg7KyxQTI7AHyv4Gp+uYyCq52BD+wpO/TQIyqauSlmKOldsoYnr5wEGY
DhvuHKvrTNHQHDvZwTafMGd6fCq3V0P8gNw7MYj2CXZgSUO7X5QDJaFDFS9h+QgX
qvG8DsYB4k9dAPvSbn70tSRu1rCJIG+Fa2kd+0REeqzRt0GzCq9c4h39hRxO5ZHx
cNgsXR75C2fRvO3DdeTbS2uzluMMshNbl8CPpPiXDQUloJEed0E=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org