Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0USsSU0siEEx4fppfVNnklZMG40.roa
File: 0USsSU0siEEx4fppfVNnklZMG40.roa (raw, json)
Hash identifier: e5/3xPd1B96fAqN0NylDlAMJud8SdFgfLaTnQTwJ0rE=
Subject key identifier: D1:44:AC:49:4D:2C:88:41:31:E1:FA:69:7D:53:67:92:56:4C:1B:8D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12AA
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0USsSU0siEEx4fppfVNnklZMG40.roa
Signing time: Wed 29 Sep 2021 02:54:50 +0000
ROA not before: Wed 29 Sep 2021 02:54:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 49.158.240.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4778 (0x12aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D144AC494D2C884131E1FA697D536792564C1B8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:bc:62:9d:70:9a:ce:64:d6:9f:65:9f:c7:c7:
ae:2e:d2:62:c2:0f:cc:b1:86:de:cb:04:b1:c3:4c:
22:26:84:df:1b:58:67:ef:58:13:f6:01:82:5b:69:
5e:1d:eb:95:f0:cd:98:62:07:f7:d3:89:a9:c4:20:
c2:d4:67:e3:ff:c1:c8:bf:70:10:b2:2f:bf:0c:48:
87:4b:82:26:98:8f:ec:05:85:b0:be:6e:9d:05:ce:
71:00:15:79:a1:ec:83:a4:b6:9e:c8:17:09:78:33:
b5:44:0e:b3:07:dc:98:39:f6:8a:32:8d:41:0f:b6:
e2:e5:95:98:89:48:32:d4:b1:76:61:ff:66:29:34:
af:2c:99:b9:89:91:80:95:e3:c7:da:92:45:29:63:
10:cb:76:95:61:4b:79:d6:3c:19:77:48:f8:b8:e3:
c3:4a:87:bf:9f:b0:1f:25:1c:f8:c5:76:f0:ad:0c:
eb:bc:66:68:05:56:f5:28:68:80:7b:de:96:fd:0e:
e2:26:ae:c3:77:5e:3d:b7:17:a8:e7:72:4e:c6:e9:
26:e1:49:e0:dd:f3:e9:85:d8:cf:c3:4d:90:31:93:
47:2b:f5:8a:50:8f:ac:fe:ac:cb:18:90:9d:5b:9e:
11:76:ca:c2:8f:a8:e9:12:b3:94:cd:46:27:cf:b7:
ee:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:44:AC:49:4D:2C:88:41:31:E1:FA:69:7D:53:67:92:56:4C:1B:8D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0USsSU0siEEx4fppfVNnklZMG40.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.240.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:58:08:5e:fa:77:7f:87:9c:34:c0:6f:a7:10:77:67:d6:74:
c1:e7:68:7a:30:48:2e:ca:71:f9:6b:ac:96:f4:7d:4f:b0:7a:
d4:65:76:93:6d:cd:6d:1d:68:75:4d:d1:3c:35:7a:69:29:a7:
56:86:41:80:e5:c4:50:1d:93:01:56:0c:ab:1d:be:7b:9b:2b:
08:bb:da:df:4c:ed:f5:48:9d:e8:8e:c2:58:d0:71:f5:77:d3:
52:b1:bf:5b:e6:bd:37:c1:72:ff:2c:07:be:3e:25:a9:79:c3:
0c:34:44:11:61:8f:96:ab:f2:85:07:0c:35:7d:b7:cc:dc:0a:
b0:0d:f5:6c:c5:93:a3:e1:25:45:e7:94:7c:35:15:3a:e8:19:
d9:b3:df:ce:42:81:28:23:3d:da:fe:dd:e4:e7:15:83:e0:87:
2f:ea:63:a0:2a:54:9e:24:02:1b:a3:78:f2:b4:67:23:9d:5d:
85:3c:0b:d3:f8:f8:0f:54:de:f1:bc:8f:81:ab:3f:01:6c:64:
26:57:0a:c0:37:fb:ab:d8:cf:af:32:28:bd:60:55:c3:f5:38:
7c:db:3f:e6:6d:36:98:00:c2:a0:6c:45:a2:eb:08:52:6b:22:
7f:f4:86:df:ef:94:df:10:4e:41:1a:d8:6a:30:04:c3:3b:da:
6b:ba:48:dc
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEqowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0NTBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQxNDRBQzQ5NEQyQzg4
NDEzMUUxRkE2OTdENTM2NzkyNTY0QzFCOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDwvGKdcJrOZNafZZ/Hx64u0mLCD8yxht7LBLHDTCImhN8bWGfv
WBP2AYJbaV4d65XwzZhiB/fTianEIMLUZ+P/wci/cBCyL78MSIdLgiaYj+wFhbC+
bp0FznEAFXmh7IOktp7IFwl4M7VEDrMH3Jg59ooyjUEPtuLllZiJSDLUsXZh/2Yp
NK8smbmJkYCV48fakkUpYxDLdpVhS3nWPBl3SPi448NKh7+fsB8lHPjFdvCtDOu8
ZmgFVvUoaIB73pb9DuImrsN3Xj23F6jnck7G6SbhSeDd8+mF2M/DTZAxk0cr9YpQ
j6z+rMsYkJ1bnhF2ysKPqOkSs5TNRifPt+5nAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU0USsSU0siEEx4fppfVNnklZMG40wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzBVU3NTVTBzaUVFeDRmcHBm
Vk5ua2xaTUc0MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
nvAwDQYJKoZIhvcNAQELBQADggEBAB9YCF76d3+HnDTAb6cQd2fWdMHnaHowSC7K
cflrrJb0fU+wetRldpNtzW0daHVN0Tw1emkpp1aGQYDlxFAdkwFWDKsdvnubKwi7
2t9M7fVIneiOwljQcfV301Kxv1vmvTfBcv8sB74+Jal5www0RBFhj5ar8oUHDDV9
t8zcCrAN9WzFk6PhJUXnlHw1FTroGdmz385CgSgjPdr+3eTnFYPghy/qY6AqVJ4k
AhujePK0ZyOdXYU8C9P4+A9U3vG8j4GrPwFsZCZXCsA3+6vYz68yKL1gVcP1OHzb
P+ZtNpgAwqBsRaLrCFJrIn/0ht/vlN8QTkEa2GowBMM72mu6SNw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org