Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xTkggopmdSfeLvkU-Bw3sUSZI0E.roa
File: xTkggopmdSfeLvkU-Bw3sUSZI0E.roa (raw, json)
Hash identifier: O/GScBTKAy44gdDjY82ebZkt3/kEoNdkwRGwBYd08J0=
Subject key identifier: C5:39:20:82:8A:66:75:27:DE:2E:F9:14:F8:1C:37:B1:44:99:23:41
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0AAC
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xTkggopmdSfeLvkU-Bw3sUSZI0E.roa
Signing time: Tue 29 Sep 2020 10:07:29 +0000
ROA not before: Tue 29 Sep 2020 10:07:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 211.76.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2732 (0xaac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 10:07:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C53920828A667527DE2EF914F81C37B144992341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:33:a9:20:52:63:a1:25:bf:f9:3c:fb:28:42:
72:3b:00:0b:9e:d4:d4:4b:e8:96:37:76:13:f1:de:
9c:03:98:31:3a:e6:7d:5f:33:26:ae:12:6f:ee:fd:
a0:41:80:f5:16:40:45:49:b2:01:2c:7a:1e:70:cf:
dd:7b:89:46:41:9f:34:8c:ee:12:af:9c:05:06:8c:
fe:91:d6:39:f4:f4:c3:0b:69:cc:08:3a:95:2d:0e:
62:0b:fe:bf:e5:8e:c5:f3:51:0c:33:eb:5c:fe:71:
f7:2f:37:ec:85:92:f1:5b:02:b3:08:ac:ee:58:36:
ea:43:a2:1a:6c:1f:e6:c0:e0:49:91:b2:be:aa:2b:
35:5e:5c:c0:69:3e:b1:a8:36:df:5e:f8:57:15:e1:
cb:31:e6:86:7e:0d:39:cb:0d:8d:54:8e:1c:85:1b:
21:9f:28:d8:4b:49:6c:2b:b2:47:5f:c9:bc:4f:04:
41:0a:3d:13:9a:c0:db:31:a5:16:1a:2c:12:78:dd:
57:31:15:f4:ae:d2:d5:5d:f7:d9:be:42:d0:82:67:
d5:39:df:aa:14:bb:40:08:bb:af:fd:d6:ee:35:89:
d9:38:ea:8f:62:ba:be:b2:10:ee:1c:39:ee:dc:16:
3b:79:01:d2:9c:b2:98:5a:5a:86:54:7a:78:77:0f:
57:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:39:20:82:8A:66:75:27:DE:2E:F9:14:F8:1C:37:B1:44:99:23:41
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xTkggopmdSfeLvkU-Bw3sUSZI0E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.43.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:a9:40:87:a8:d8:79:17:57:c1:4f:3a:8e:a8:8f:df:f6:d6:
df:a1:cf:17:9c:48:3b:b9:7d:88:68:a2:14:2e:23:05:61:8f:
68:51:7b:93:34:e3:8f:02:e1:d3:6f:41:32:a8:1b:38:3c:8f:
a9:55:fc:db:32:2f:ba:55:3f:ea:cb:d8:96:6b:f2:3f:f4:f8:
59:58:fb:78:f3:f7:49:ac:b4:e6:64:f9:28:db:1e:0d:7c:ae:
0b:61:de:1e:51:a5:f2:0f:6f:f4:c4:c0:61:30:21:70:2e:09:
d9:e3:49:c4:da:ca:67:86:c7:f0:56:1e:ad:bd:bf:b7:96:81:
3c:ef:15:66:c6:79:6b:47:f5:a0:df:04:b8:c8:56:fc:2f:d0:
a5:45:b7:93:2b:33:c0:9a:1b:59:bc:91:11:b7:c5:ca:8d:62:
b0:10:7d:c7:59:c6:e5:1a:90:61:8f:95:44:df:06:99:d4:72:
e1:2f:2b:4a:64:6e:67:3a:05:7f:1b:45:5a:73:6d:38:6c:1e:
80:ae:dc:36:dd:b7:4e:64:ef:c0:32:5c:41:0e:8e:b3:8c:e4:
bd:00:a9:4b:ae:84:45:cb:80:f7:eb:05:0c:71:3a:07:c2:ed:
15:6d:aa:45:41:65:81:a0:c8:d1:fd:03:af:66:68:97:0e:7c:
c5:c6:84:be
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCqwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMDA5Mjkx
MDA3MjlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEM1MzkyMDgyOEE2Njc1
MjdERTJFRjkxNEY4MUMzN0IxNDQ5OTIzNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4M6kgUmOhJb/5PPsoQnI7AAue1NRL6JY3dhPx3pwDmDE65n1f
MyauEm/u/aBBgPUWQEVJsgEseh5wz917iUZBnzSM7hKvnAUGjP6R1jn09MMLacwI
OpUtDmIL/r/ljsXzUQwz61z+cfcvN+yFkvFbArMIrO5YNupDohpsH+bA4EmRsr6q
KzVeXMBpPrGoNt9e+FcV4csx5oZ+DTnLDY1UjhyFGyGfKNhLSWwrskdfybxPBEEK
PROawNsxpRYaLBJ43VcxFfSu0tVd99m+QtCCZ9U536oUu0AIu6/91u41idk46o9i
ur6yEO4cOe7cFjt5AdKcsphaWoZUenh3D1cBAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUxTkggopmdSfeLvkU+Bw3sUSZI0EwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3hUa2dnb3BtZFNmZUx2a1Ut
Qnczc1VTWkkwRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT
TCswDQYJKoZIhvcNAQELBQADggEBAIqpQIeo2HkXV8FPOo6oj9/21t+hzxecSDu5
fYhoohQuIwVhj2hRe5M0448C4dNvQTKoGzg8j6lV/NsyL7pVP+rL2JZr8j/0+FlY
+3jz90mstOZk+SjbHg18rgth3h5RpfIPb/TEwGEwIXAuCdnjScTaymeGx/BWHq29
v7eWgTzvFWbGeWtH9aDfBLjIVvwv0KVFt5MrM8CaG1m8kRG3xcqNYrAQfcdZxuUa
kGGPlUTfBpnUcuEvK0pkbmc6BX8bRVpzbThsHoCu3Dbdt05k78AyXEEOjrOM5L0A
qUuuhEXLgPfrBQxxOgfC7RVtqkVBZYGgyNH9A69maJcOfMXGhL4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:50 2024 by rpki-client on console-ams.rpki-client.org