Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mhxFc7vbwlHykzR0s7L8QQcGFSU.roa
File: mhxFc7vbwlHykzR0s7L8QQcGFSU.roa (raw, json)
Hash identifier: StohW7xLLjbutYVqRJmtef7n0xWJJN4lnQFjbl/hqik=
Subject key identifier: 9A:1C:45:73:BB:DB:C2:51:F2:93:34:74:B3:B2:FC:41:07:06:15:25
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1B6F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mhxFc7vbwlHykzR0s7L8QQcGFSU.roa
Signing time: Fri 07 Apr 2023 07:31:15 +0000
ROA not before: Fri 07 Apr 2023 07:31:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 61.64.0.0/19 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7023 (0x1b6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Apr 7 07:31:15 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9A1C4573BBDBC251F2933474B3B2FC4107061525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:20:b4:74:31:db:5e:1a:12:6a:77:85:50:f2:
60:bb:db:7f:1a:f3:16:a4:40:1f:92:92:98:b5:d0:
4c:66:a3:09:71:36:ed:af:70:03:0b:4d:e8:70:0d:
34:1e:90:74:42:d7:7b:d5:54:0b:14:d6:1f:b9:b7:
55:2e:c8:22:0e:38:3d:c5:d4:e9:54:2a:0c:94:df:
69:2f:39:75:e7:18:17:d0:65:a4:2d:fc:b1:f7:d5:
14:c3:0e:e2:c1:75:cd:4c:47:b6:76:da:4b:8f:e3:
e9:df:06:40:e5:55:58:ba:2b:3e:99:82:48:40:23:
2e:b1:bd:5c:1a:d7:64:25:3d:9a:24:9b:15:05:59:
d7:d1:cb:cb:84:20:72:6b:06:3a:6d:cf:55:5f:08:
d6:d7:17:41:79:33:d5:58:82:fb:03:69:d8:67:99:
74:e1:06:bf:4a:80:ce:4a:f5:b3:e0:21:9d:61:59:
f7:cf:d1:67:8b:58:20:8b:e3:cc:17:dd:64:a9:46:
53:ad:85:e9:07:3b:cc:de:bb:15:17:ca:9f:d1:78:
f9:2e:aa:a5:4e:50:f1:3f:23:72:3e:bf:86:9b:3c:
e8:96:40:ff:61:54:f2:a3:2c:f3:32:6d:80:16:61:
0f:b9:c4:eb:a8:bc:f2:b2:b1:da:41:ee:c1:47:ff:
3a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:1C:45:73:BB:DB:C2:51:F2:93:34:74:B3:B2:FC:41:07:06:15:25
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/mhxFc7vbwlHykzR0s7L8QQcGFSU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.0.0/19
Signature Algorithm: sha256WithRSAEncryption
5c:30:70:b8:33:80:c4:2a:92:49:46:cf:65:36:eb:94:45:45:
db:2a:54:d4:71:ac:a0:43:5a:c3:ec:44:6a:36:0f:58:57:bb:
1b:2b:b8:b7:30:ea:6f:d2:0a:29:30:20:ca:44:de:a1:84:09:
6f:43:06:d0:47:a7:b3:57:25:55:32:af:35:5f:2d:a4:98:95:
c2:82:4c:5f:0d:c8:84:3d:ee:95:e1:66:7e:22:67:ca:f1:c0:
eb:a5:23:90:14:fc:85:b5:78:81:c2:4c:24:cd:b5:7e:65:10:
d7:f4:74:e3:f1:c0:a7:d2:b1:c7:f6:a3:5a:62:76:36:3d:4d:
e0:1e:a3:cd:ab:db:02:e5:28:09:19:1b:2f:bb:1d:f4:fb:90:
59:96:e4:42:6a:1b:f4:27:88:a0:c7:29:01:12:06:dc:fc:89:
90:31:db:b0:c6:37:bd:24:fc:12:55:2f:ec:a2:1c:a2:f5:35:
7e:28:3a:5c:b9:c4:01:89:b9:8c:45:a4:47:50:bf:0f:a6:1d:
19:a7:c6:f8:22:59:bc:9c:0f:81:94:4d:7e:39:39:e2:8b:22:
c5:95:fc:e0:c0:48:23:db:72:e2:40:11:96:af:df:fa:76:68:
40:a2:56:87:94:fb:87:31:8b:87:ff:60:53:64:6a:5d:06:47:
b7:e8:11:20
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICG28wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA0MDcw
NzMxMTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDlBMUM0NTczQkJEQkMy
NTFGMjkzMzQ3NEIzQjJGQzQxMDcwNjE1MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDoILR0MdteGhJqd4VQ8mC7238a8xakQB+Skpi10ExmowlxNu2v
cAMLTehwDTQekHRC13vVVAsU1h+5t1UuyCIOOD3F1OlUKgyU32kvOXXnGBfQZaQt
/LH31RTDDuLBdc1MR7Z22kuP4+nfBkDlVVi6Kz6ZgkhAIy6xvVwa12QlPZokmxUF
WdfRy8uEIHJrBjptz1VfCNbXF0F5M9VYgvsDadhnmXThBr9KgM5K9bPgIZ1hWffP
0WeLWCCL48wX3WSpRlOthekHO8zeuxUXyp/RePkuqqVOUPE/I3I+v4abPOiWQP9h
VPKjLPMybYAWYQ+5xOuovPKysdpB7sFH/zqbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUmhxFc7vbwlHykzR0s7L8QQcGFSUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL21oeEZjN3Zid2xIeWt6UjBz
N0w4UVFjR0ZTVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAU9
QAAwDQYJKoZIhvcNAQELBQADggEBAFwwcLgzgMQqkklGz2U265RFRdsqVNRxrKBD
WsPsRGo2D1hXuxsruLcw6m/SCikwIMpE3qGECW9DBtBHp7NXJVUyrzVfLaSYlcKC
TF8NyIQ97pXhZn4iZ8rxwOulI5AU/IW1eIHCTCTNtX5lENf0dOPxwKfSscf2o1pi
djY9TeAeo82r2wLlKAkZGy+7HfT7kFmW5EJqG/QniKDHKQESBtz8iZAx27DGN70k
/BJVL+yiHKL1NX4oOly5xAGJuYxFpEdQvw+mHRmnxvgiWbycD4GUTX45OeKLIsWV
/ODASCPbcuJAEZav3/p2aECiVoeU+4cxi4f/YFNkal0GR7foESA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org