Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qNmke5fBJObsxy7rpPuptZoalzs.roa
File: qNmke5fBJObsxy7rpPuptZoalzs.roa (raw, json)
Hash identifier: KpkprTL36mHS8xIjmXOoSKyw02wRb5ZBDfttdS84umU=
Subject key identifier: A8:D9:A4:7B:97:C1:24:E6:EC:C7:2E:EB:A4:FB:A9:B5:9A:1A:97:3B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qNmke5fBJObsxy7rpPuptZoalzs.roa
Signing time: Thu 15 Sep 2022 02:36:01 +0000
ROA not before: Thu 15 Sep 2022 02:36:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 103.225.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A8D9A47B97C124E6ECC72EEBA4FBA9B59A1A973B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:07:0c:3e:dc:32:30:fe:aa:fc:8d:46:1a:6a:
47:08:22:7b:58:5a:64:fb:bb:38:20:e1:b8:ea:0c:
8e:0e:7b:57:e3:0b:cf:1c:1e:37:0d:80:96:d6:d4:
8f:f6:81:06:00:2d:ed:1a:00:bb:84:80:8d:fd:17:
da:5b:19:68:05:51:82:8c:b3:1f:2e:4e:b0:31:08:
4e:30:4c:9c:93:4f:f4:0e:45:0f:08:71:10:8b:f0:
73:51:f7:27:dc:e3:51:bb:6e:03:5b:82:30:25:e1:
9c:44:0e:85:3f:b8:c4:00:c0:5c:00:f6:33:70:87:
b6:64:ec:a7:0f:7b:95:f0:2f:cb:91:8f:92:ef:2d:
f2:a6:82:9b:4f:ee:40:8f:84:99:d6:89:82:db:b8:
1d:e6:3d:7d:19:08:5a:88:09:ba:d4:7e:55:4d:ff:
b4:db:7a:e4:f4:22:d5:53:5b:01:12:a7:b1:e6:50:
54:a7:9d:bb:15:2a:30:40:71:66:72:b5:7f:61:e7:
e2:3c:1c:71:09:84:82:0d:c6:75:eb:f3:c5:16:53:
e9:92:25:c5:c6:7e:cf:72:21:0d:b4:98:b1:b2:5f:
83:bd:19:d2:10:20:7f:39:04:15:d4:cf:96:ca:9f:
31:b2:cc:71:ed:49:92:b8:19:30:af:ed:74:dd:5a:
25:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:D9:A4:7B:97:C1:24:E6:EC:C7:2E:EB:A4:FB:A9:B5:9A:1A:97:3B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qNmke5fBJObsxy7rpPuptZoalzs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.225.3.0/24
Signature Algorithm: sha256WithRSAEncryption
41:0f:3b:5c:27:dc:99:7e:08:0e:dc:ee:d7:79:2f:9b:6b:cd:
e7:6c:dc:1c:6f:31:96:03:7b:05:e3:7c:08:c0:3d:c3:9d:f1:
3d:32:a9:85:5c:ee:98:bf:4a:0a:41:c6:d5:53:98:63:28:3a:
d7:70:d8:f7:4c:c9:28:dd:74:5b:24:55:cb:c5:84:e2:23:ff:
64:e4:0b:25:6c:64:74:d8:b1:61:09:fa:09:13:39:ac:44:4f:
d3:fc:c0:6d:f2:89:19:fa:2e:57:4b:f2:23:1c:95:b4:d0:50:
af:57:c9:c6:70:55:5e:b2:9a:9e:3a:54:df:52:44:f0:b0:32:
24:74:0a:9f:54:d8:93:8a:0a:ee:7e:cd:10:b4:fc:95:2f:3d:
dc:4f:e3:5b:a9:a4:b2:f8:05:20:92:65:2d:d5:71:0b:89:a1:
6c:61:5d:62:95:5f:f6:b9:2b:0d:55:20:30:b5:d1:7e:de:04:
49:47:f5:83:52:bb:5a:38:eb:00:17:3a:e9:bd:89:18:e5:75:
29:16:27:f0:83:68:52:0c:ba:44:54:51:e0:70:b4:eb:70:d7:
60:8f:c3:b4:48:82:c8:8b:3c:65:90:61:66:6d:96:f2:73:e1:
a8:e3:3f:53:90:f4:3a:d0:0e:ec:af:81:96:13:ab:f9:09:79:
7a:99:b1:c0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA5MTUw
MjM2MDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE4RDlBNDdCOTdDMTI0
RTZFQ0M3MkVFQkE0RkJBOUI1OUExQTk3M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDiBww+3DIw/qr8jUYaakcIIntYWmT7uzgg4bjqDI4Oe1fjC88c
HjcNgJbW1I/2gQYALe0aALuEgI39F9pbGWgFUYKMsx8uTrAxCE4wTJyTT/QORQ8I
cRCL8HNR9yfc41G7bgNbgjAl4ZxEDoU/uMQAwFwA9jNwh7Zk7KcPe5XwL8uRj5Lv
LfKmgptP7kCPhJnWiYLbuB3mPX0ZCFqICbrUflVN/7TbeuT0ItVTWwESp7HmUFSn
nbsVKjBAcWZytX9h5+I8HHEJhIINxnXr88UWU+mSJcXGfs9yIQ20mLGyX4O9GdIQ
IH85BBXUz5bKnzGyzHHtSZK4GTCv7XTdWiXTAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUqNmke5fBJObsxy7rpPuptZoalzswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3FObWtlNWZCSk9ic3h5N3Jw
UHVwdFpvYWx6cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
4QMwDQYJKoZIhvcNAQELBQADggEBAEEPO1wn3Jl+CA7c7td5L5trzeds3BxvMZYD
ewXjfAjAPcOd8T0yqYVc7pi/SgpBxtVTmGMoOtdw2PdMySjddFskVcvFhOIj/2Tk
CyVsZHTYsWEJ+gkTOaxET9P8wG3yiRn6LldL8iMclbTQUK9XycZwVV6ymp46VN9S
RPCwMiR0Cp9U2JOKCu5+zRC0/JUvPdxP41uppLL4BSCSZS3VcQuJoWxhXWKVX/a5
Kw1VIDC10X7eBElH9YNSu1o46wAXOum9iRjldSkWJ/CDaFIMukRUUeBwtOtw12CP
w7RIgsiLPGWQYWZtlvJz4ajjP1OQ9DrQDuyvgZYTq/kJeXqZscA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org