Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/EABCQw5i41OxjJNaatPtzDxoP2k.roa
File: EABCQw5i41OxjJNaatPtzDxoP2k.roa (raw, json)
Hash identifier: uJqwO7dy2gWwnLHaYSsBuMUNrRgrxeHAukWDwxOzcoE=
Subject key identifier: 10:00:42:43:0E:62:E3:53:B1:8C:93:5A:6A:D3:ED:CC:3C:68:3F:69
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 18DF
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/EABCQw5i41OxjJNaatPtzDxoP2k.roa
Signing time: Sat 22 Oct 2022 06:05:49 +0000
ROA not before: Sat 22 Oct 2022 06:05:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6367 (0x18df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:05:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=100042430E62E353B18C935A6AD3EDCC3C683F69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5a:17:da:77:1f:67:40:6a:ba:da:9c:85:15:
c7:bd:0d:d4:db:18:54:fc:4e:20:2b:66:82:4a:f1:
f8:0e:bc:61:34:8a:e8:45:ad:0d:6f:1f:e6:2a:a4:
da:24:c3:94:c1:6b:94:f5:18:52:36:1e:f0:1a:f9:
c6:05:0c:f0:5d:fc:23:bb:09:a4:2e:12:ad:4a:ba:
12:48:14:0f:02:4d:b4:4a:0c:c6:bb:ac:b9:7f:69:
52:75:20:d5:28:c6:29:fc:f7:de:59:cf:10:28:22:
64:e8:c7:e8:2b:1c:9b:0b:2f:7e:e5:5c:88:4e:d9:
59:c9:78:db:2a:f3:cf:6a:db:f5:c7:57:76:48:7b:
e6:b2:54:5e:d7:51:f5:69:a2:55:48:cb:4e:fe:61:
3c:ed:9e:9c:fd:32:01:41:2c:d4:e6:03:4d:80:f9:
8a:f4:98:5f:b5:bd:2d:31:26:e6:c7:82:1a:7e:db:
b0:11:99:9d:6e:41:d8:f0:e9:b6:38:ce:53:c8:e2:
c1:f1:1a:48:ff:7d:72:88:ca:a1:ac:77:c4:38:ab:
df:7a:cb:f1:4c:b2:2f:94:8e:0c:84:77:17:36:94:
84:be:91:f8:d8:30:bd:ac:7f:98:26:c0:89:f7:9e:
19:50:1b:bd:1c:a5:22:1a:bf:18:a7:55:b3:eb:86:
b5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:00:42:43:0E:62:E3:53:B1:8C:93:5A:6A:D3:ED:CC:3C:68:3F:69
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/EABCQw5i41OxjJNaatPtzDxoP2k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.0.0/16
Signature Algorithm: sha256WithRSAEncryption
41:d7:6e:c7:64:d7:81:58:2e:5a:b1:17:90:5b:98:89:5b:e6:
32:bc:a6:5a:98:15:95:69:fe:d8:56:cc:b5:ec:86:af:3c:75:
ad:9f:eb:30:4a:e4:ea:e2:85:62:df:00:99:10:3b:2f:50:83:
28:bc:ea:34:1d:f7:ae:81:17:d4:63:3d:71:e0:9e:32:37:77:
8f:4f:7b:17:72:52:8d:84:86:ae:de:50:de:1b:1e:d7:ff:f5:
30:e6:00:62:65:93:75:35:3f:36:34:72:9e:02:11:28:72:f6:
4b:9e:b9:93:dc:57:d4:a1:64:76:56:29:19:8f:dd:0c:8f:7e:
45:18:bb:bb:fe:2b:01:b3:8a:94:34:6a:9c:bc:9d:af:87:b4:
c8:37:2d:6a:69:e7:4b:5a:8f:36:41:d1:63:4f:b1:d6:e0:f7:
60:22:8d:5c:86:07:d8:e9:6a:72:0f:22:d5:e3:af:73:ae:f0:
d6:42:ec:c7:2c:31:68:3d:13:ce:c1:af:45:8b:20:6e:cf:7d:
df:f7:89:e2:55:37:26:0e:ac:be:58:33:f0:b6:3e:5a:d0:4c:
24:17:0f:1e:27:95:46:95:3f:80:86:47:43:81:34:c4:24:5e:
0b:18:bb:dd:12:25:80:a3:64:93:ed:b9:e3:1f:19:87:37:ff:
5c:68:4d:be
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICGN8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NjA1NDlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDEwMDA0MjQzMEU2MkUz
NTNCMThDOTM1QTZBRDNFRENDM0M2ODNGNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8Whfadx9nQGq62pyFFce9DdTbGFT8TiArZoJK8fgOvGE0iuhF
rQ1vH+YqpNokw5TBa5T1GFI2HvAa+cYFDPBd/CO7CaQuEq1KuhJIFA8CTbRKDMa7
rLl/aVJ1INUoxin8995ZzxAoImTox+grHJsLL37lXIhO2VnJeNsq889q2/XHV3ZI
e+ayVF7XUfVpolVIy07+YTztnpz9MgFBLNTmA02A+Yr0mF+1vS0xJubHghp+27AR
mZ1uQdjw6bY4zlPI4sHxGkj/fXKIyqGsd8Q4q996y/FMsi+UjgyEdxc2lIS+kfjY
ML2sf5gmwIn3nhlQG70cpSIavxinVbPrhrW/AgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUEABCQw5i41OxjJNaatPtzDxoP2kwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0VBQkNRdzVpNDFPeGpKTmFh
dFB0ekR4b1Ayay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwAx
njANBgkqhkiG9w0BAQsFAAOCAQEAQddux2TXgVguWrEXkFuYiVvmMrymWpgVlWn+
2FbMteyGrzx1rZ/rMErk6uKFYt8AmRA7L1CDKLzqNB33roEX1GM9ceCeMjd3j097
F3JSjYSGrt5Q3hse1//1MOYAYmWTdTU/NjRyngIRKHL2S565k9xX1KFkdlYpGY/d
DI9+RRi7u/4rAbOKlDRqnLydr4e0yDctamnnS1qPNkHRY0+x1uD3YCKNXIYH2Olq
cg8i1eOvc67w1kLsxywxaD0TzsGvRYsgbs993/eJ4lU3Jg6svlgz8LY+WtBMJBcP
HieVRpU/gIZHQ4E0xCReCxi73RIlgKNkk+254x8Zhzf/XGhNvg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org