Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/l8zHTjCHAIBidandN_rrg9Twur0.roa
File: l8zHTjCHAIBidandN_rrg9Twur0.roa (raw, json)
Hash identifier: Jvpiv9qR15N/6eSv++1uXN7DroNtP+u0yCv+BKRAlPk=
Subject key identifier: 97:CC:C7:4E:30:87:00:80:62:75:A9:DD:37:FA:EB:83:D4:F0:BA:BD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0EC9
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/l8zHTjCHAIBidandN_rrg9Twur0.roa
Signing time: Sun 07 Feb 2021 11:56:04 +0000
ROA not before: Sun 07 Feb 2021 11:56:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 103.225.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3785 (0xec9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 11:56:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=97CCC74E308700806275A9DD37FAEB83D4F0BABD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9f:36:34:1d:26:32:3f:e6:b5:de:a6:1e:2a:
4a:1f:ca:b6:54:b5:36:ab:8b:9c:0c:fd:ac:4b:96:
f1:35:ed:d3:23:1f:78:a9:c0:c5:b3:78:d8:df:e8:
f6:94:b3:1c:47:d8:9f:ba:1f:e1:57:62:0a:1b:c7:
cb:58:2c:36:66:af:4d:ea:97:ab:5b:90:b3:92:5c:
1f:84:75:81:0d:1d:1c:7b:bd:07:3b:e9:52:5a:ed:
a1:e4:43:81:7c:e7:b0:27:b4:9b:35:ea:f0:67:ff:
47:d5:93:cd:26:c9:06:30:fb:0d:bd:dc:8d:d6:be:
40:d2:04:fe:e2:a0:9a:af:ac:c3:79:f1:3c:57:ba:
50:6f:a9:63:40:a0:72:65:ae:b0:e2:4c:61:06:64:
7f:7a:5e:9f:31:f6:cf:df:71:2d:cf:62:91:46:a2:
42:af:09:73:ac:f9:37:d5:30:88:bb:c6:d9:db:a0:
38:fe:5d:64:e4:88:ec:2c:5b:8c:84:84:f5:53:e7:
96:6b:f1:e7:5d:0f:4e:92:3f:4d:c4:64:89:e1:c6:
4e:3d:c3:6d:07:4b:57:6b:f8:23:eb:b4:d8:ae:40:
39:c4:53:71:f4:70:45:2d:3c:f3:a2:64:47:18:40:
db:6d:28:82:b0:65:06:73:64:ec:c5:92:7f:41:c0:
58:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:CC:C7:4E:30:87:00:80:62:75:A9:DD:37:FA:EB:83:D4:F0:BA:BD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/l8zHTjCHAIBidandN_rrg9Twur0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.225.3.0/24
Signature Algorithm: sha256WithRSAEncryption
70:e3:2f:e3:78:b4:6f:25:fd:e9:df:0c:29:c3:91:90:25:1e:
c4:68:06:84:8b:3d:48:7a:1b:08:e5:69:98:73:e6:bf:5f:95:
65:7d:08:70:51:bb:69:a8:4f:fe:b6:7c:3c:10:a2:da:ff:c2:
d6:75:43:57:3d:62:b1:8f:f1:c7:a4:74:2f:b9:41:ce:ee:f7:
f8:9f:fb:c0:9f:d5:bb:c5:c0:40:cd:1c:cd:c8:f2:cf:71:fe:
e6:9b:f4:75:77:0e:fe:8b:ed:34:81:ba:88:04:8a:3b:d4:0e:
ab:38:14:02:25:43:48:df:40:ad:9f:a0:04:f5:5e:09:7a:6c:
7b:fa:67:ca:37:86:94:05:c0:b5:09:70:6f:58:97:64:a4:42:
2e:d5:53:57:f6:47:00:3a:d6:3e:93:81:11:ad:7e:ad:8d:2c:
46:a4:92:e2:0a:2e:f1:2b:81:75:43:15:bb:bf:87:39:11:3e:
ba:48:54:05:f2:68:5b:b4:51:5a:ce:ed:bd:9f:22:05:41:12:
44:14:ea:ac:e8:0a:1a:67:44:ad:73:1c:a1:64:d7:60:14:21:
16:e1:39:3d:d4:4c:53:bb:5a:98:11:2f:d4:80:d3:c0:64:83:
97:cc:57:37:53:84:3c:85:bd:a9:9e:be:72:bb:88:4d:6b:37:
e4:92:ec:62
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDskwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MTU2MDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk3Q0NDNzRFMzA4NzAw
ODA2Mjc1QTlERDM3RkFFQjgzRDRGMEJBQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRnzY0HSYyP+a13qYeKkofyrZUtTari5wM/axLlvE17dMjH3ip
wMWzeNjf6PaUsxxH2J+6H+FXYgobx8tYLDZmr03ql6tbkLOSXB+EdYENHRx7vQc7
6VJa7aHkQ4F857AntJs16vBn/0fVk80myQYw+w293I3WvkDSBP7ioJqvrMN58TxX
ulBvqWNAoHJlrrDiTGEGZH96Xp8x9s/fcS3PYpFGokKvCXOs+TfVMIi7xtnboDj+
XWTkiOwsW4yEhPVT55Zr8eddD06SP03EZInhxk49w20HS1dr+CPrtNiuQDnEU3H0
cEUtPPOiZEcYQNttKIKwZQZzZOzFkn9BwFgNAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUl8zHTjCHAIBidandN/rrg9Twur0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2w4ekhUakNIQUlCaWRhbmRO
X3JyZzlUd3VyMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
4QMwDQYJKoZIhvcNAQELBQADggEBAHDjL+N4tG8l/enfDCnDkZAlHsRoBoSLPUh6
GwjlaZhz5r9flWV9CHBRu2moT/62fDwQotr/wtZ1Q1c9YrGP8cekdC+5Qc7u9/if
+8Cf1bvFwEDNHM3I8s9x/uab9HV3Dv6L7TSBuogEijvUDqs4FAIlQ0jfQK2foAT1
Xgl6bHv6Z8o3hpQFwLUJcG9Yl2SkQi7VU1f2RwA61j6TgRGtfq2NLEakkuIKLvEr
gXVDFbu/hzkRPrpIVAXyaFu0UVrO7b2fIgVBEkQU6qzoChpnRK1zHKFk12AUIRbh
OT3UTFO7WpgRL9SA08Bkg5fMVzdThDyFvamevnK7iE1rN+SS7GI=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:51 2023 by rpki-client on console-fra.rpki-client.org