Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NSp8wENTGriZcvmUy4KBqS1pKhA.roa
File: NSp8wENTGriZcvmUy4KBqS1pKhA.roa (raw, json)
Hash identifier: heQvkBe+U6wTxWVMA7BvOXgHS26Pb5BAnBUlcYSLf/0=
Subject key identifier: 35:2A:7C:C0:43:53:1A:B8:99:72:F9:94:CB:82:81:A9:2D:69:2A:10
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0FF9
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NSp8wENTGriZcvmUy4KBqS1pKhA.roa
Signing time: Sun 07 Feb 2021 12:36:54 +0000
ROA not before: Sun 07 Feb 2021 12:36:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24165
IP address blocks: 49.159.218.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4089 (0xff9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:36:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=352A7CC043531AB89972F994CB8281A92D692A10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5f:3c:37:17:45:d7:84:e7:ee:b9:54:59:b3:
9b:52:28:0e:0a:63:49:d1:37:1b:f0:34:7e:d9:25:
01:ba:ff:15:b7:0f:64:dd:de:2b:97:8c:a1:16:c5:
d3:7d:94:fe:d8:07:98:18:8e:8f:37:55:8e:6a:a8:
2e:89:06:91:17:b7:fe:1e:6f:8f:4d:d0:85:50:28:
4b:95:86:8e:35:b0:74:a1:eb:0b:61:6e:26:e0:b1:
14:0a:5f:4a:5f:d4:7c:12:c3:7d:b6:22:fc:f4:de:
b6:59:10:11:7d:3c:cd:e0:ab:d4:36:e8:c0:41:4a:
da:12:66:53:6b:b2:65:36:e4:b4:6a:5d:d8:69:e6:
6d:69:fb:9c:87:a5:02:25:10:1e:ae:66:0e:47:a8:
a7:b2:a1:4a:8b:1d:d9:03:e6:b5:24:1d:48:76:d1:
28:0c:e9:d1:3d:25:94:cb:4b:52:72:dc:75:8b:03:
e7:31:ef:8f:8f:46:31:1f:d3:ab:1e:69:6e:50:1e:
48:13:10:f6:d7:39:dc:d7:da:0c:da:94:a7:3f:75:
1b:1a:79:4c:78:e8:d1:4f:12:29:6a:8c:8c:ca:53:
b8:4d:94:90:63:3e:0e:be:c6:71:c1:97:95:3d:3f:
2c:58:b9:3a:99:6e:26:8b:88:72:97:18:42:05:b1:
c5:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:2A:7C:C0:43:53:1A:B8:99:72:F9:94:CB:82:81:A9:2D:69:2A:10
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NSp8wENTGriZcvmUy4KBqS1pKhA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.218.0/23
Signature Algorithm: sha256WithRSAEncryption
69:62:c0:c5:64:7a:4d:38:fe:18:cb:75:b6:eb:45:3c:58:b2:
ff:b3:32:e7:07:3b:54:8b:cd:25:45:aa:78:c3:2c:d2:f1:e9:
4b:af:fb:85:60:9a:6a:a4:58:0e:8a:dc:ef:1c:55:87:ba:c4:
4e:53:c4:05:50:fe:6c:87:76:05:94:80:29:f3:ec:af:28:45:
bb:c2:b6:9f:a7:75:c5:8f:70:58:40:9b:06:21:d6:13:10:ed:
d3:6b:cd:7b:63:c3:70:c7:2a:48:ef:79:b9:9d:0d:69:ed:48:
7e:62:eb:34:bf:a9:1f:f8:8b:23:8a:98:11:13:5c:1c:26:fe:
3f:56:4f:38:19:72:53:64:11:46:5e:8a:d1:0c:d5:26:5d:ae:
80:9c:a9:b6:73:00:d3:b0:32:e7:1e:75:35:f0:49:71:29:2e:
7c:28:ec:7e:76:9e:c4:f6:7f:21:86:ab:62:f4:38:51:70:bf:
04:1f:1e:65:b0:43:fd:79:e1:5f:39:14:74:20:29:82:bd:93:
dc:c6:5b:40:58:ef:19:28:6f:c6:4a:a3:86:f5:52:f6:72:e9:
93:44:8e:a2:5b:cd:bb:1a:19:1d:d6:70:64:e4:62:2e:4a:e9:
9e:f3:65:d5:61:e5:87:e4:73:c4:23:ef:82:54:70:78:04:36:
03:5e:4b:a4
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICD/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjM2NTRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM1MkE3Q0MwNDM1MzFB
Qjg5OTcyRjk5NENCODI4MUE5MkQ2OTJBMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDZXzw3F0XXhOfuuVRZs5tSKA4KY0nRNxvwNH7ZJQG6/xW3D2Td
3iuXjKEWxdN9lP7YB5gYjo83VY5qqC6JBpEXt/4eb49N0IVQKEuVho41sHSh6wth
bibgsRQKX0pf1HwSw322Ivz03rZZEBF9PM3gq9Q26MBBStoSZlNrsmU25LRqXdhp
5m1p+5yHpQIlEB6uZg5HqKeyoUqLHdkD5rUkHUh20SgM6dE9JZTLS1Jy3HWLA+cx
74+PRjEf06seaW5QHkgTEPbXOdzX2gzalKc/dRsaeUx46NFPEilqjIzKU7hNlJBj
Pg6+xnHBl5U9PyxYuTqZbiaLiHKXGEIFscVzAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUNSp8wENTGriZcvmUy4KBqS1pKhAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL05TcDh3RU5UR3JpWmN2bVV5
NEtCcVMxcEtoQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEx
n9owDQYJKoZIhvcNAQELBQADggEBAGliwMVkek04/hjLdbbrRTxYsv+zMucHO1SL
zSVFqnjDLNLx6Uuv+4VgmmqkWA6K3O8cVYe6xE5TxAVQ/myHdgWUgCnz7K8oRbvC
tp+ndcWPcFhAmwYh1hMQ7dNrzXtjw3DHKkjvebmdDWntSH5i6zS/qR/4iyOKmBET
XBwm/j9WTzgZclNkEUZeitEM1SZdroCcqbZzANOwMucedTXwSXEpLnwo7H52nsT2
fyGGq2L0OFFwvwQfHmWwQ/154V85FHQgKYK9k9zGW0BY7xkob8ZKo4b1UvZy6ZNE
jqJbzbsaGR3WcGTkYi5K6Z7zZdVh5Yfkc8Qj74JUcHgENgNeS6Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org