Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gxZWu7p5D6-dU9aUJBxKNDxIp0M.roa
File: gxZWu7p5D6-dU9aUJBxKNDxIp0M.roa (raw, json)
Hash identifier: WUcUyREHExKuj/WwQgWM3PYysyznEdx4pEOmHH4Vznw=
Subject key identifier: 83:16:56:BB:BA:79:0F:AF:9D:53:D6:94:24:1C:4A:34:3C:48:A7:43
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1958
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gxZWu7p5D6-dU9aUJBxKNDxIp0M.roa
Signing time: Sat 22 Oct 2022 06:06:25 +0000
ROA not before: Sat 22 Oct 2022 06:06:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.159.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6488 (0x1958)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=831656BBBA790FAF9D53D694241C4A343C48A743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c2:c4:3a:aa:08:43:f5:c4:c2:56:c9:6f:d2:
b3:1e:49:7a:6f:44:39:5b:58:3a:b4:31:33:0c:8d:
1a:d0:c6:d9:24:6d:e5:95:b6:a9:3a:36:d4:85:d8:
6c:6e:cc:28:d9:47:36:96:25:54:02:1a:b7:26:f1:
56:fa:77:6c:fa:5c:56:c4:c5:d2:f7:af:2e:a5:33:
6d:4e:14:47:1b:52:ce:ba:bb:cb:b1:60:08:73:63:
a5:c9:b6:d4:d1:54:82:35:62:60:26:3a:19:86:0b:
56:e9:70:08:f8:28:e5:f4:29:6c:7e:32:e1:7c:fa:
1b:f6:a7:e1:d7:e1:01:e9:1b:7c:bd:18:53:1d:ea:
b1:9f:2c:1b:a7:eb:1b:01:5b:dd:3a:7c:99:93:86:
21:d3:83:43:24:31:0e:dc:24:a5:17:fa:32:f5:9e:
04:3f:dc:e2:30:cf:a3:19:bd:87:08:54:94:e6:95:
03:e0:54:3c:83:8b:7c:08:dd:d9:02:c5:99:8a:4c:
35:e3:21:82:7a:04:09:4f:27:97:00:ac:e2:75:24:
28:02:34:50:70:09:93:b0:b0:da:f9:a0:b1:71:43:
c1:00:6f:68:28:1f:e2:97:cf:65:9a:d1:45:c1:fd:
1e:01:bb:9f:04:94:82:e7:25:ff:10:32:3a:b9:2c:
1b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:16:56:BB:BA:79:0F:AF:9D:53:D6:94:24:1C:4A:34:3C:48:A7:43
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gxZWu7p5D6-dU9aUJBxKNDxIp0M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.16.0/20
Signature Algorithm: sha256WithRSAEncryption
9c:d1:94:48:dd:ec:41:be:7a:f6:0f:c3:f6:0b:51:20:a9:5a:
42:61:2b:a6:c2:d0:e9:72:b4:94:f8:5c:2d:5d:88:17:47:99:
03:50:54:1f:a5:87:37:cb:1b:5f:c9:29:66:a3:e5:ba:dd:5d:
1e:80:32:db:6e:13:15:57:e7:c5:a2:e4:f7:37:fc:17:8b:8c:
34:1c:d6:be:ac:5d:ff:9e:c9:cf:cf:19:f2:d5:f3:e2:a4:4b:
30:e5:44:b6:52:a3:8b:10:1f:e4:81:4c:f4:ea:e4:3b:4c:cf:
15:f7:75:06:07:c3:2c:ec:a5:ef:e8:0d:9f:2f:2c:91:65:92:
7e:83:a7:18:d2:60:39:76:cf:5d:ea:21:bd:6f:39:96:c7:f7:
48:98:e3:84:1a:3b:9a:a3:3f:8a:b4:53:4f:4c:a0:27:f5:82:
f9:3e:62:45:2c:64:b0:a3:20:6e:aa:ee:50:82:ff:20:32:af:
6a:a0:50:6a:47:da:c0:05:25:0a:44:df:66:b6:ab:5e:be:2d:
1c:6a:36:28:86:e3:9b:79:60:84:1b:db:38:1d:a8:46:07:31:
b5:a0:a0:f3:f5:44:5f:4c:fd:fb:76:29:9f:30:6c:c9:6a:9e:
19:cf:07:29:59:cc:38:61:ad:04:e5:34:0f:5e:49:f0:48:f4:
bc:c9:59:7a
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGVgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NjA2MjVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDgzMTY1NkJCQkE3OTBG
QUY5RDUzRDY5NDI0MUM0QTM0M0M0OEE3NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwwsQ6qghD9cTCVslv0rMeSXpvRDlbWDq0MTMMjRrQxtkkbeWV
tqk6NtSF2GxuzCjZRzaWJVQCGrcm8Vb6d2z6XFbExdL3ry6lM21OFEcbUs66u8ux
YAhzY6XJttTRVII1YmAmOhmGC1bpcAj4KOX0KWx+MuF8+hv2p+HX4QHpG3y9GFMd
6rGfLBun6xsBW906fJmThiHTg0MkMQ7cJKUX+jL1ngQ/3OIwz6MZvYcIVJTmlQPg
VDyDi3wI3dkCxZmKTDXjIYJ6BAlPJ5cArOJ1JCgCNFBwCZOwsNr5oLFxQ8EAb2go
H+KXz2Wa0UXB/R4Bu58ElILnJf8QMjq5LBujAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUgxZWu7p5D6+dU9aUJBxKNDxIp0MwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2d4Wld1N3A1RDYtZFU5YVVK
QnhLTkR4SXAwTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQx
nxAwDQYJKoZIhvcNAQELBQADggEBAJzRlEjd7EG+evYPw/YLUSCpWkJhK6bC0Oly
tJT4XC1diBdHmQNQVB+lhzfLG1/JKWaj5brdXR6AMttuExVX58Wi5Pc3/BeLjDQc
1r6sXf+eyc/PGfLV8+KkSzDlRLZSo4sQH+SBTPTq5DtMzxX3dQYHwyzspe/oDZ8v
LJFlkn6DpxjSYDl2z13qIb1vOZbH90iY44QaO5qjP4q0U09MoCf1gvk+YkUsZLCj
IG6q7lCC/yAyr2qgUGpH2sAFJQpE32a2q16+LRxqNiiG45t5YIQb2zgdqEYHMbWg
oPP1RF9M/ft2KZ8wbMlqnhnPBylZzDhhrQTlNA9eSfBI9LzJWXo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org