Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qg_d-k9gueJig7tQyyJGLpMrUDY.roa
File: qg_d-k9gueJig7tQyyJGLpMrUDY.roa (raw, json)
Hash identifier: rzKA9jgz0rixCHB5KsK8nFgI5OvTSXZCTEeQVvSEVS4=
Subject key identifier: AA:0F:DD:FA:4F:60:B9:E2:62:83:BB:50:CB:22:46:2E:93:2B:50:36
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 127C
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qg_d-k9gueJig7tQyyJGLpMrUDY.roa
Signing time: Wed 29 Sep 2021 02:54:38 +0000
ROA not before: Wed 29 Sep 2021 02:54:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 211.76.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4732 (0x127c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AA0FDDFA4F60B9E26283BB50CB22462E932B5036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:53:41:07:e6:6f:f4:91:14:f1:1c:13:f6:5c:
cf:dc:18:f6:bc:f0:24:48:ef:87:81:60:36:7d:00:
47:e8:e3:e9:e8:94:ab:36:cb:32:6e:78:42:85:78:
18:4a:34:1f:16:ba:ac:17:0d:40:55:7e:73:1c:e8:
4b:24:6e:b3:79:da:38:67:28:33:55:22:d5:b5:e1:
5f:13:8e:bf:c6:70:d6:4b:e7:8d:02:48:35:3d:f6:
f0:94:1b:41:c5:c5:99:fd:c7:cc:6c:b0:84:fc:f7:
45:4a:3c:d2:0d:10:45:0f:0e:f3:75:7b:9c:f7:c0:
26:71:3a:b0:06:dd:f8:4d:10:3d:b5:29:09:1e:ed:
90:af:e6:0f:10:9a:cf:3e:63:08:ef:b5:39:44:9a:
3d:9a:3f:7b:b3:56:d3:71:12:f8:4c:17:94:b2:c4:
2a:ca:2f:31:85:54:ad:1c:e0:01:c4:f9:14:91:27:
5d:f9:65:20:26:72:f4:7b:52:5a:cd:47:eb:0a:2f:
3d:4a:68:d6:c3:32:62:46:61:1b:05:0c:3f:05:c9:
80:5e:bd:65:15:d8:79:54:8f:c9:02:1d:f4:ec:a2:
c3:21:66:68:66:4d:6f:47:d2:aa:4d:b2:f2:c8:1c:
ac:b1:be:a0:dc:df:24:6d:1f:6b:83:3b:fa:4e:9a:
7b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:0F:DD:FA:4F:60:B9:E2:62:83:BB:50:CB:22:46:2E:93:2B:50:36
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qg_d-k9gueJig7tQyyJGLpMrUDY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.56.0/22
Signature Algorithm: sha256WithRSAEncryption
94:39:e5:e0:33:b3:bf:ec:d3:b9:2d:3a:14:38:3f:ae:fa:98:
a3:0b:13:19:eb:45:9a:46:f0:46:8a:fd:30:09:83:19:c6:df:
47:e7:7a:5d:3c:30:1b:0e:1c:9d:1c:fb:b3:6b:31:ad:68:2b:
30:be:f0:1d:63:03:0c:e8:d6:5d:61:66:38:28:c0:ca:1f:0c:
82:d8:c6:30:6f:12:b4:37:c0:42:43:f3:51:93:49:2e:f1:f7:
85:19:ef:22:0b:a0:e3:e3:69:6c:ec:32:f5:29:9c:a0:e8:09:
f1:3b:33:51:9d:7e:87:4d:e1:df:33:dc:45:13:93:45:ab:48:
b7:46:cb:34:8d:af:f8:7b:57:00:a8:b2:91:aa:f9:9c:2c:df:
bd:eb:c7:d6:c7:7b:ee:36:f5:38:fe:28:8e:4c:6b:84:5d:7a:
e1:11:fe:e3:5f:ed:15:0d:29:22:46:52:3f:23:59:88:03:15:
4c:c2:91:c3:7f:2f:60:d5:fc:98:db:ff:56:b7:6f:39:ec:4a:
98:86:1d:31:80:fa:ec:41:3d:c5:b6:9a:28:f5:e6:a2:eb:df:
5c:da:cf:df:e5:f7:6c:66:82:02:c5:c4:bc:e6:81:99:c0:4a:
6b:42:12:c7:02:41:5a:5e:9f:ad:66:99:a8:4a:7a:c3:5b:fc:
11:31:6c:a8
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEnwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0MzhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEFBMEZEREZBNEY2MEI5
RTI2MjgzQkI1MENCMjI0NjJFOTMyQjUwMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSU0EH5m/0kRTxHBP2XM/cGPa88CRI74eBYDZ9AEfo4+nolKs2
yzJueEKFeBhKNB8WuqwXDUBVfnMc6EskbrN52jhnKDNVItW14V8Tjr/GcNZL540C
SDU99vCUG0HFxZn9x8xssIT890VKPNINEEUPDvN1e5z3wCZxOrAG3fhNED21KQke
7ZCv5g8Qms8+YwjvtTlEmj2aP3uzVtNxEvhMF5SyxCrKLzGFVK0c4AHE+RSRJ135
ZSAmcvR7UlrNR+sKLz1KaNbDMmJGYRsFDD8FyYBevWUV2HlUj8kCHfTsosMhZmhm
TW9H0qpNsvLIHKyxvqDc3yRtH2uDO/pOmns/AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUqg/d+k9gueJig7tQyyJGLpMrUDYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3FnX2QtazlndWVKaWc3dFF5
eUpHTHBNclVEWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALT
TDgwDQYJKoZIhvcNAQELBQADggEBAJQ55eAzs7/s07ktOhQ4P676mKMLExnrRZpG
8EaK/TAJgxnG30fnel08MBsOHJ0c+7NrMa1oKzC+8B1jAwzo1l1hZjgowMofDILY
xjBvErQ3wEJD81GTSS7x94UZ7yILoOPjaWzsMvUpnKDoCfE7M1GdfodN4d8z3EUT
k0WrSLdGyzSNr/h7VwCospGq+Zws373rx9bHe+429Tj+KI5Ma4RdeuER/uNf7RUN
KSJGUj8jWYgDFUzCkcN/L2DV/Jjb/1a3bznsSpiGHTGA+uxBPcW2mij15qLr31za
z9/l92xmggLFxLzmgZnASmtCEscCQVpen61mmahKesNb/BExbKg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:50 2024 by rpki-client on console-ams.rpki-client.org