Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/may__cKwrq_w0KgBVqq39pUfoL0.roa
File: may__cKwrq_w0KgBVqq39pUfoL0.roa (raw, json)
Hash identifier: fHbzsFoVzb6UqhTAwrI+cK3qpeKPfFN2YfSZsZNhTy8=
Subject key identifier: 99:AC:BF:FD:C2:B0:AE:AF:F0:D0:A8:01:56:AA:B7:F6:95:1F:A0:BD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12D0
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/may__cKwrq_w0KgBVqq39pUfoL0.roa
Signing time: Wed 29 Sep 2021 02:55:01 +0000
ROA not before: Wed 29 Sep 2021 02:55:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 61.61.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4816 (0x12d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:55:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=99ACBFFDC2B0AEAFF0D0A80156AAB7F6951FA0BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d7:3e:c3:c2:3c:45:58:6c:f2:82:d3:47:84:
4f:68:2e:e4:be:6b:3b:36:8c:23:37:db:1d:66:5c:
97:1c:70:ec:f3:2b:ba:35:aa:da:8f:9d:1c:a1:2e:
df:58:33:a5:06:bd:f4:62:a7:ed:90:18:3d:23:a3:
93:ea:46:e0:2f:0a:f7:fe:98:d5:8c:eb:32:09:9f:
a7:9b:8f:d8:68:0e:42:2f:76:24:22:8e:d4:1a:54:
12:3d:ec:35:35:6a:1f:9f:67:3d:20:a1:46:5a:38:
bd:ad:36:d3:59:3a:50:52:cf:96:65:1a:09:c1:28:
1f:f0:16:e0:ee:de:66:5b:b8:50:db:89:60:7e:bb:
cf:0f:20:99:f0:6f:f9:3a:37:f8:32:41:75:b4:8d:
bd:16:d7:00:3e:cf:70:64:79:d4:cd:ed:57:0b:13:
ec:d2:50:c6:9d:e2:95:46:c6:71:5b:32:89:05:5a:
f2:86:fb:f4:f9:f5:0b:95:7b:27:20:36:f8:62:79:
f3:be:74:da:59:a2:7f:48:4f:e1:62:5f:c7:00:e7:
e6:82:d8:4e:4e:23:65:99:42:4a:bb:cc:92:b4:5e:
a7:4b:32:cd:61:ee:ad:07:a3:68:87:6d:e0:dc:50:
a7:66:92:3f:ad:02:8e:e2:47:08:79:bc:84:a9:bf:
e5:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:AC:BF:FD:C2:B0:AE:AF:F0:D0:A8:01:56:AA:B7:F6:95:1F:A0:BD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/may__cKwrq_w0KgBVqq39pUfoL0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.208.0/21
Signature Algorithm: sha256WithRSAEncryption
23:94:30:59:87:53:c1:e0:f9:78:8c:0b:d3:b3:2a:01:91:50:
76:b3:ca:3c:35:3c:22:b0:25:4a:64:ca:21:39:ca:60:1a:ad:
7d:70:3e:b9:f3:6e:bd:1a:bd:6c:16:4b:47:0a:b9:75:47:43:
a7:0a:82:56:37:a4:f8:28:b9:61:c2:bf:48:28:52:d2:fc:a2:
84:0a:00:2f:09:5e:47:58:20:54:1d:df:7a:00:6d:58:8d:1e:
9a:b8:98:45:3f:19:58:56:a6:23:4e:a4:3f:bb:30:c2:12:5b:
ea:af:3c:46:c4:4f:5f:81:95:f4:27:fe:73:25:90:c7:41:64:
60:bc:69:da:55:84:47:ce:25:35:d1:38:5e:62:2b:85:65:37:
c7:de:94:f0:ef:28:5f:be:7a:65:48:03:7d:59:66:90:69:ac:
5b:41:23:9f:11:24:dd:ab:df:d9:31:47:d2:ed:8e:77:cd:db:
24:cf:7b:25:05:63:bf:0c:3d:09:ce:35:22:bb:e1:84:cd:70:
61:76:9d:37:7a:cf:86:37:d0:8c:84:2d:47:94:73:6c:35:1e:
01:29:a4:ab:9e:07:86:66:02:eb:82:8f:b3:be:ae:df:16:9b:
15:63:05:9c:89:37:a6:da:85:76:d5:f0:f2:d5:0c:ca:ee:86:
8a:e7:de:f7
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEtAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1MDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDk5QUNCRkZEQzJCMEFF
QUZGMEQwQTgwMTU2QUFCN0Y2OTUxRkEwQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDV1z7DwjxFWGzygtNHhE9oLuS+azs2jCM32x1mXJcccOzzK7o1
qtqPnRyhLt9YM6UGvfRip+2QGD0jo5PqRuAvCvf+mNWM6zIJn6ebj9hoDkIvdiQi
jtQaVBI97DU1ah+fZz0goUZaOL2tNtNZOlBSz5ZlGgnBKB/wFuDu3mZbuFDbiWB+
u88PIJnwb/k6N/gyQXW0jb0W1wA+z3BkedTN7VcLE+zSUMad4pVGxnFbMokFWvKG
+/T59QuVeycgNvhiefO+dNpZon9IT+FiX8cA5+aC2E5OI2WZQkq7zJK0XqdLMs1h
7q0Ho2iHbeDcUKdmkj+tAo7iRwh5vISpv+VnAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUmay//cKwrq/w0KgBVqq39pUfoL0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL21heV9fY0t3cnFfdzBLZ0JW
cXEzOXBVZm9MMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9
PdAwDQYJKoZIhvcNAQELBQADggEBACOUMFmHU8Hg+XiMC9OzKgGRUHazyjw1PCKw
JUpkyiE5ymAarX1wPrnzbr0avWwWS0cKuXVHQ6cKglY3pPgouWHCv0goUtL8ooQK
AC8JXkdYIFQd33oAbViNHpq4mEU/GVhWpiNOpD+7MMISW+qvPEbET1+BlfQn/nMl
kMdBZGC8adpVhEfOJTXROF5iK4VlN8felPDvKF++emVIA31ZZpBprFtBI58RJN2r
39kxR9LtjnfN2yTPeyUFY78MPQnONSK74YTNcGF2nTd6z4Y30IyELUeUc2w1HgEp
pKueB4ZmAuuCj7O+rt8WmxVjBZyJN6bahXbV8PLVDMruhorn3vc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org