Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/M4pUfvc-lu4x2xissFb48QMpuFo.roa
File: M4pUfvc-lu4x2xissFb48QMpuFo.roa (raw, json)
Hash identifier: xCVhqkkxzdNHVspFDOWGUaqrCl6oUrNXXtPuRRGyS44=
Subject key identifier: 33:8A:54:7E:F7:3E:96:EE:31:DB:18:AC:B0:56:F8:F1:03:29:B8:5A
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1413
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/M4pUfvc-lu4x2xissFb48QMpuFo.roa
Signing time: Fri 29 Apr 2022 10:23:02 +0000
ROA not before: Fri 29 Apr 2022 10:23:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5139 (0x1413)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Apr 29 10:23:02 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=338A547EF73E96EE31DB18ACB056F8F10329B85A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8c:3c:b3:c9:ec:71:93:65:eb:a1:1c:e4:df:
e0:fc:ca:49:c9:1c:cf:11:c6:d1:b3:00:d2:d0:12:
5a:df:82:ab:2f:7d:9d:69:94:71:a5:48:91:cf:a7:
56:6f:08:b8:c8:f1:b0:9a:40:b3:81:d4:d9:97:42:
a2:e2:1e:74:f9:ed:f6:f6:4e:32:de:42:cb:cb:c4:
7d:a2:20:19:25:20:3e:6f:20:d6:a5:e0:be:1d:a8:
ec:4b:35:ce:25:2d:f4:22:33:11:4c:20:bd:ce:3d:
bc:61:ce:2c:4c:50:2f:be:6e:d0:a4:b7:84:3d:eb:
fc:bc:38:99:81:67:dd:3c:4b:de:1b:70:2b:f5:d6:
8d:52:95:e1:87:f8:02:c5:92:b8:2b:16:e6:2a:44:
7a:89:81:79:ea:d1:92:df:bb:b5:c8:93:10:76:00:
20:72:76:ae:1b:21:b0:c3:0d:54:89:e0:71:84:76:
ce:b9:52:e0:50:a7:88:a4:d2:85:6f:ae:47:b0:17:
50:60:82:63:e4:44:95:af:ba:a1:3f:96:5f:fb:39:
9f:6f:1a:e5:b3:8f:3d:c7:f9:74:f8:6f:6e:33:25:
5d:a8:10:ad:3e:98:8e:75:d1:9e:8e:a1:39:90:48:
e1:04:21:5b:4b:b6:9f:81:cc:05:5b:78:3f:24:16:
17:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:8A:54:7E:F7:3E:96:EE:31:DB:18:AC:B0:56:F8:F1:03:29:B8:5A
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/M4pUfvc-lu4x2xissFb48QMpuFo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.72.0/21
Signature Algorithm: sha256WithRSAEncryption
75:bc:3b:fd:8f:a9:ba:01:fa:f6:a9:7f:96:12:64:2b:2d:25:
8b:4a:24:80:ee:60:93:2d:06:1e:b1:3d:45:5c:97:07:3d:13:
6a:94:22:f1:4a:bf:06:71:9d:ca:af:08:49:83:f7:40:e4:06:
53:54:ef:9a:e7:57:c6:d9:4f:3f:7a:cc:bb:42:fb:b8:f1:45:
b5:46:2f:3c:59:90:78:79:89:f5:89:cc:b8:f5:83:44:40:ea:
28:32:78:01:fc:80:c2:72:af:72:9c:30:20:c0:02:a0:72:aa:
14:a5:25:3f:2a:f5:d8:ab:d5:5d:b2:d7:02:6e:d4:5e:b5:3f:
ff:d6:42:55:a2:44:2c:3c:e2:e0:dd:8b:04:43:99:23:58:78:
10:24:2d:b4:95:d2:1d:57:26:af:e2:53:b2:70:f5:01:b2:38:
a0:e7:8a:1c:a9:34:58:f6:7f:7a:75:39:0a:4b:c9:6b:4d:a7:
09:0b:e6:2a:de:3f:66:90:6b:e7:6a:ab:0e:6d:34:56:fd:12:
3b:82:b3:1c:23:b9:2d:10:ec:20:31:c4:e1:0a:8d:fd:19:3a:
91:3f:85:83:12:ae:ac:53:b0:61:ab:cb:04:23:91:cc:bb:be:
e0:76:c3:ff:4f:83:56:86:54:5d:24:d3:62:7d:e1:ac:db:f7:
6f:f0:01:c3
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA0Mjkx
MDIzMDJaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDMzOEE1NDdFRjczRTk2
RUUzMURCMThBQ0IwNTZGOEYxMDMyOUI4NUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMjDyzyexxk2XroRzk3+D8yknJHM8RxtGzANLQElrfgqsvfZ1p
lHGlSJHPp1ZvCLjI8bCaQLOB1NmXQqLiHnT57fb2TjLeQsvLxH2iIBklID5vINal
4L4dqOxLNc4lLfQiMxFMIL3OPbxhzixMUC++btCkt4Q96/y8OJmBZ908S94bcCv1
1o1SleGH+ALFkrgrFuYqRHqJgXnq0ZLfu7XIkxB2ACBydq4bIbDDDVSJ4HGEds65
UuBQp4ik0oVvrkewF1BggmPkRJWvuqE/ll/7OZ9vGuWzjz3H+XT4b24zJV2oEK0+
mI510Z6OoTmQSOEEIVtLtp+BzAVbeD8kFhe1AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUM4pUfvc+lu4x2xissFb48QMpuFowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL000cFVmdmMtbHU0eDJ4aXNz
RmI0OFFNcHVGby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
nkgwDQYJKoZIhvcNAQELBQADggEBAHW8O/2PqboB+vapf5YSZCstJYtKJIDuYJMt
Bh6xPUVclwc9E2qUIvFKvwZxncqvCEmD90DkBlNU75rnV8bZTz96zLtC+7jxRbVG
LzxZkHh5ifWJzLj1g0RA6igyeAH8gMJyr3KcMCDAAqByqhSlJT8q9dir1V2y1wJu
1F61P//WQlWiRCw84uDdiwRDmSNYeBAkLbSV0h1XJq/iU7Jw9QGyOKDnihypNFj2
f3p1OQpLyWtNpwkL5ireP2aQa+dqqw5tNFb9EjuCsxwjuS0Q7CAxxOEKjf0ZOpE/
hYMSrqxTsGGrywQjkcy7vuB2w/9Pg1aGVF0k02J94azb92/wAcM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org