Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2UI5rv4U_uy0zbGURKjg1CDxkQY.roa
File: 2UI5rv4U_uy0zbGURKjg1CDxkQY.roa (raw, json)
Hash identifier: 4LpKuPB5xQu2EWxEYXvv3AVdWUWsZjylkQaycK11KO8=
Subject key identifier: D9:42:39:AE:FE:14:FE:EC:B4:CD:B1:94:44:A8:E0:D4:20:F1:91:06
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2UI5rv4U_uy0zbGURKjg1CDxkQY.roa
Signing time: Thu 15 Sep 2022 02:36:10 +0000
ROA not before: Thu 15 Sep 2022 02:36:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 49.158.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D94239AEFE14FEECB4CDB19444A8E0D420F19106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3a:c2:e6:14:4b:d2:03:f7:76:1a:dc:7a:66:
c5:a1:93:33:b6:d7:7f:63:7f:3a:7d:3e:ad:c0:4d:
63:cb:79:7e:60:e6:19:30:7d:e0:8f:2f:8f:2d:b8:
a7:53:b3:3c:98:da:56:49:c5:b6:cf:0a:40:bd:b5:
e5:fd:03:56:d9:47:46:0f:57:b2:5d:7c:4b:21:3a:
be:19:71:15:e9:66:84:ca:23:9b:19:01:0c:e0:6d:
03:9d:92:85:db:a9:58:ea:50:a8:50:23:f2:db:1f:
8e:e2:61:42:56:91:92:65:d4:89:a4:8d:6e:0d:2a:
69:1e:3c:7f:d7:52:a7:75:b9:86:f8:6b:10:3b:5d:
e8:68:7f:91:36:87:d6:31:34:af:34:0b:89:2f:ed:
69:c7:94:37:5b:7f:44:40:82:fb:51:a0:e3:c9:2f:
74:c4:2b:b3:0f:d4:2b:21:3c:2c:78:48:61:66:21:
e4:67:83:04:a9:d6:ed:d5:d5:4d:06:a6:4c:0c:a7:
c5:52:9f:6e:50:8e:c0:d1:cd:1d:69:57:fa:88:95:
c8:c0:3d:38:16:cf:c7:12:6a:4d:58:34:c8:c4:06:
2a:5a:3d:0b:26:42:fe:76:8c:92:75:fc:2e:8f:d9:
53:84:5c:ff:90:56:1e:06:3d:f2:3c:b5:70:f0:f0:
c4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:42:39:AE:FE:14:FE:EC:B4:CD:B1:94:44:A8:E0:D4:20:F1:91:06
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2UI5rv4U_uy0zbGURKjg1CDxkQY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.128.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:69:40:54:ed:2b:25:15:b3:99:22:56:3a:2b:50:ec:bb:11:
63:a1:bc:5c:d1:89:7f:2a:13:90:2a:49:10:f4:4b:a6:35:b9:
0c:2d:f1:32:3b:c1:b4:1b:2e:c0:5c:99:c7:48:bf:62:76:bd:
7c:66:a5:a6:1c:36:5f:98:86:42:90:a6:9b:92:23:fd:c2:23:
62:d0:cc:bf:62:ab:c5:40:e5:af:de:c5:96:14:d6:4e:0d:9b:
d3:66:1d:a1:18:73:8f:c9:fc:1f:ab:f4:d1:a7:50:f3:31:7e:
09:5e:5d:7f:81:95:6f:14:42:40:94:7e:81:fd:67:ee:d7:2e:
62:c6:57:19:8f:7e:e6:eb:e5:6f:dc:3d:9a:6e:11:f7:7f:07:
82:72:45:2c:99:0d:50:5e:72:02:17:98:09:7b:73:ce:b6:81:
9b:39:be:ec:51:c5:5a:86:38:f1:9d:a8:7f:3a:45:4c:64:ff:
4d:81:a0:65:b5:62:f4:6b:75:92:8a:1a:16:72:08:a4:18:1e:
08:bc:45:78:66:ca:86:81:52:9a:8d:f1:6b:e5:6e:66:87:14:
05:a6:a4:31:91:88:ef:c3:a8:33:cb:f1:1d:3b:04:b0:ae:2a:
7c:12:aa:91:de:87:1f:b9:a4:14:7f:9d:c1:ee:cc:da:e2:35:
d3:e4:ad:e0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA5MTUw
MjM2MTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQ5NDIzOUFFRkUxNEZF
RUNCNENEQjE5NDQ0QThFMEQ0MjBGMTkxMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1OsLmFEvSA/d2Gtx6ZsWhkzO2139jfzp9Pq3ATWPLeX5g5hkw
feCPL48tuKdTszyY2lZJxbbPCkC9teX9A1bZR0YPV7JdfEshOr4ZcRXpZoTKI5sZ
AQzgbQOdkoXbqVjqUKhQI/LbH47iYUJWkZJl1ImkjW4NKmkePH/XUqd1uYb4axA7
Xehof5E2h9YxNK80C4kv7WnHlDdbf0RAgvtRoOPJL3TEK7MP1CshPCx4SGFmIeRn
gwSp1u3V1U0GpkwMp8VSn25QjsDRzR1pV/qIlcjAPTgWz8cSak1YNMjEBipaPQsm
Qv52jJJ1/C6P2VOEXP+QVh4GPfI8tXDw8MQ/AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU2UI5rv4U/uy0zbGURKjg1CDxkQYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzJVSTVydjRVX3V5MHpiR1VS
S2pnMUNEeGtRWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx
noAwDQYJKoZIhvcNAQELBQADggEBAItpQFTtKyUVs5kiVjorUOy7EWOhvFzRiX8q
E5AqSRD0S6Y1uQwt8TI7wbQbLsBcmcdIv2J2vXxmpaYcNl+YhkKQppuSI/3CI2LQ
zL9iq8VA5a/exZYU1k4Nm9NmHaEYc4/J/B+r9NGnUPMxfgleXX+BlW8UQkCUfoH9
Z+7XLmLGVxmPfubr5W/cPZpuEfd/B4JyRSyZDVBecgIXmAl7c862gZs5vuxRxVqG
OPGdqH86RUxk/02BoGW1YvRrdZKKGhZyCKQYHgi8RXhmyoaBUpqN8WvlbmaHFAWm
pDGRiO/DqDPL8R07BLCuKnwSqpHehx+5pBR/ncHuzNriNdPkreA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org