Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2KwvBNER7R8Kin5zIGsf-lmnCCQ.roa
File: 2KwvBNER7R8Kin5zIGsf-lmnCCQ.roa (raw, json)
Hash identifier: m6nnQdgqCoMzZH6ce80/7Wp1gyAVBI9agLIcTpII00E=
Subject key identifier: D8:AC:2F:04:D1:11:ED:1F:0A:8A:7E:73:20:6B:1F:FA:59:A7:08:24
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2KwvBNER7R8Kin5zIGsf-lmnCCQ.roa
Signing time: Thu 15 Sep 2022 02:35:30 +0000
ROA not before: Thu 15 Sep 2022 02:35:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D8AC2F04D111ED1F0A8A7E73206B1FFA59A70824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:87:16:bf:d5:b6:94:65:8c:34:ac:32:e3:b0:
4a:e1:8b:67:da:0e:1a:1a:90:04:48:fc:a9:4e:fc:
b1:6e:b1:a8:90:94:88:6c:77:b0:66:a4:8f:48:31:
41:d3:2d:4b:97:c3:38:47:fd:27:bf:17:37:9a:92:
50:7b:b5:3d:48:3b:cb:07:31:df:c7:e5:b5:1f:4b:
e5:77:5a:f8:05:66:63:59:a1:aa:3f:07:d2:40:8b:
07:b1:48:25:e6:60:a1:a8:9c:02:96:7d:17:eb:cd:
2b:e2:cd:c6:40:2d:a4:f4:97:fc:ed:92:2c:3e:86:
3b:50:39:e1:11:37:d3:8b:2e:db:4e:5f:a5:c6:68:
6a:c7:ce:0c:f3:ea:7e:46:dc:e1:d4:67:d4:6d:c7:
94:f0:92:cb:54:f3:bd:b9:af:db:31:7d:0c:d7:09:
0a:ad:ce:bb:28:48:c9:d3:4e:cc:fe:4a:18:c2:5a:
df:f2:e7:d6:05:5b:f2:64:cb:e6:0e:a2:28:83:b6:
91:17:2d:42:8c:4b:82:2e:40:b5:c3:99:00:c2:59:
03:a7:7d:27:75:f3:9b:2a:2e:1f:61:73:1c:2e:8e:
35:52:4c:cb:cc:ec:c8:41:db:b5:dc:01:d3:77:c9:
fd:61:e6:15:14:51:20:eb:5c:40:19:45:74:4d:3b:
cf:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:AC:2F:04:D1:11:ED:1F:0A:8A:7E:73:20:6B:1F:FA:59:A7:08:24
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2KwvBNER7R8Kin5zIGsf-lmnCCQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.216.0/22
Signature Algorithm: sha256WithRSAEncryption
42:d7:ae:f1:2f:60:97:d8:dc:84:f7:32:bf:35:82:19:b7:ad:
b2:51:1f:d5:66:3e:e3:c0:56:42:ad:73:2b:98:51:0b:dd:13:
4e:44:f3:a5:a0:52:65:40:16:d5:3e:68:87:d0:fd:d6:cb:9e:
d4:b9:c4:c3:84:b6:8d:96:b4:71:da:7a:73:35:37:27:41:ae:
d3:d9:48:02:8a:c0:e1:8a:5c:97:7e:37:82:76:6a:9f:74:b0:
af:2a:6b:c7:0b:06:15:69:d4:f2:14:30:b9:88:80:3a:ab:1b:
54:f2:17:6d:29:ab:ed:44:54:8e:a4:05:e1:81:8a:08:74:37:
41:f1:5d:75:a7:ea:67:6a:90:2a:17:25:06:fa:c6:53:3c:cd:
b1:ff:f1:b2:ca:8e:ee:d5:13:0c:4b:83:4c:ab:aa:94:0a:5f:
2d:7b:5b:bb:69:ac:62:16:7b:4b:e0:6e:1c:ac:39:a9:08:59:
92:72:39:08:a9:78:ee:e6:9f:bb:32:d8:35:f3:1b:b4:9a:ab:
6b:77:af:ef:e3:92:ed:ca:73:ee:71:93:0d:aa:07:20:2b:b8:
de:b4:d0:42:3f:d5:aa:e3:d0:b1:eb:98:1a:a0:84:4e:b3:cd:
0a:19:2b:07:75:34:71:d2:9d:5a:83:6d:85:67:f4:32:07:fc:
f0:f1:57:cf
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA5MTUw
MjM1MzBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQ4QUMyRjA0RDExMUVE
MUYwQThBN0U3MzIwNkIxRkZBNTlBNzA4MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3hxa/1baUZYw0rDLjsErhi2faDhoakARI/KlO/LFusaiQlIhs
d7BmpI9IMUHTLUuXwzhH/Se/FzeaklB7tT1IO8sHMd/H5bUfS+V3WvgFZmNZoao/
B9JAiwexSCXmYKGonAKWfRfrzSvizcZALaT0l/ztkiw+hjtQOeERN9OLLttOX6XG
aGrHzgzz6n5G3OHUZ9Rtx5TwkstU8725r9sxfQzXCQqtzrsoSMnTTsz+ShjCWt/y
59YFW/Jky+YOoiiDtpEXLUKMS4IuQLXDmQDCWQOnfSd185sqLh9hcxwujjVSTMvM
7MhB27XcAdN3yf1h5hUUUSDrXEAZRXRNO8/9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU2KwvBNER7R8Kin5zIGsf+lmnCCQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzJLd3ZCTkVSN1I4S2luNXpJ
R3NmLWxtbkNDUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx
ntgwDQYJKoZIhvcNAQELBQADggEBAELXrvEvYJfY3IT3Mr81ghm3rbJRH9VmPuPA
VkKtcyuYUQvdE05E86WgUmVAFtU+aIfQ/dbLntS5xMOEto2WtHHaenM1NydBrtPZ
SAKKwOGKXJd+N4J2ap90sK8qa8cLBhVp1PIUMLmIgDqrG1TyF20pq+1EVI6kBeGB
igh0N0HxXXWn6mdqkCoXJQb6xlM8zbH/8bLKju7VEwxLg0yrqpQKXy17W7tprGIW
e0vgbhysOakIWZJyOQipeO7mn7sy2DXzG7Saq2t3r+/jku3Kc+5xkw2qByAruN60
0EI/1arj0LHrmBqghE6zzQoZKwd1NHHSnVqDbYVn9DIH/PDxV88=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org