Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HR3nb_4KW9VqcF8I4EXl2Oz1i5Q.roa
File: HR3nb_4KW9VqcF8I4EXl2Oz1i5Q.roa (raw, json)
Hash identifier: fs1kIW9v4ne0MqEPu6CkNN1Z223Wqe7J7iKyxDP/WbM=
Subject key identifier: 1D:1D:E7:6F:FE:0A:5B:D5:6A:70:5F:08:E0:45:E5:D8:EC:F5:8B:94
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HR3nb_4KW9VqcF8I4EXl2Oz1i5Q.roa
Signing time: Thu 15 Sep 2022 02:36:27 +0000
ROA not before: Thu 15 Sep 2022 02:36:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 49.158.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1D1DE76FFE0A5BD56A705F08E045E5D8ECF58B94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:9e:23:45:14:5a:a4:60:42:0d:dd:73:2f:bf:
02:eb:29:89:23:21:55:db:d8:3c:b6:6f:80:07:0a:
65:29:2a:48:56:eb:91:72:e7:00:97:88:73:38:83:
02:8a:bd:e0:a8:c6:48:cc:89:ac:64:6d:b3:c4:f5:
a5:fc:14:d1:09:65:d2:18:83:cf:b0:ae:45:e0:8f:
a1:b7:63:42:64:27:33:a6:7b:dd:82:8d:0f:c4:3d:
97:40:2e:b2:29:61:8c:43:01:de:1b:8d:38:25:65:
43:21:2e:49:d3:9d:91:51:47:02:30:bf:a5:15:85:
ab:0f:e6:cd:29:30:4f:ad:64:39:3a:b8:36:7a:67:
b9:58:53:24:57:26:ca:c3:c5:9c:19:a7:bb:fe:cb:
b8:62:43:2a:5a:f7:0f:33:e1:6d:03:e0:cb:33:dd:
88:a6:c4:5d:18:a3:7b:7b:5a:4e:e1:98:3b:3a:9e:
e4:f8:29:86:1a:93:d4:2e:2e:ab:ee:fc:71:4a:6c:
74:c3:4a:9f:3a:05:4d:7f:81:eb:dd:77:e9:47:2a:
d9:bd:f6:a3:a8:6a:b9:18:88:60:93:5a:b9:14:4d:
d0:05:b2:13:8a:5a:7d:0a:a9:79:10:44:a2:5f:3d:
56:04:ed:09:f8:5e:ae:0c:1c:0f:fc:ea:67:84:c4:
e8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:1D:E7:6F:FE:0A:5B:D5:6A:70:5F:08:E0:45:E5:D8:EC:F5:8B:94
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HR3nb_4KW9VqcF8I4EXl2Oz1i5Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.204.0/22
Signature Algorithm: sha256WithRSAEncryption
23:a4:23:4f:93:43:aa:83:20:5d:92:99:55:c2:90:b4:f3:b1:
b6:bd:8f:3b:c5:6c:60:72:45:8c:05:34:f3:69:2a:97:92:fb:
8d:2e:5d:39:10:75:93:e6:d6:0a:c3:fd:6a:96:09:d9:1a:13:
2f:25:b0:c5:9b:f8:e9:64:fd:86:fd:2e:9e:7d:6f:3f:07:de:
33:82:f7:57:77:00:c1:81:2e:0b:32:2e:b5:b5:5d:6c:d5:80:
11:65:e0:09:29:a7:b8:53:be:66:ff:8f:89:77:f4:1d:d1:95:
63:de:bb:12:5a:89:12:c9:f3:e9:4f:54:10:21:f7:e5:ae:91:
53:81:87:29:06:0b:d4:02:99:2d:4d:ae:d3:bb:b0:48:73:da:
92:78:5d:a9:b8:e2:0a:54:ee:33:05:d1:80:89:fc:0c:61:96:
48:72:fc:33:b2:33:cb:42:2f:4e:53:db:64:91:bb:11:83:4d:
70:cf:88:0a:32:d6:41:55:b3:7b:8b:da:5b:c8:f3:1d:5c:0b:
fd:ac:0b:35:29:9a:28:0d:50:a2:c5:17:9e:73:aa:11:00:7e:
2b:38:85:62:2c:2c:5c:ac:33:81:29:e4:67:17:84:e2:8e:f2:
0b:cb:1e:be:39:61:ad:94:f0:f7:0d:5e:fa:91:30:ce:ad:03:
c9:7a:39:06
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA5MTUw
MjM2MjdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFEMURFNzZGRkUwQTVC
RDU2QTcwNUYwOEUwNDVFNUQ4RUNGNThCOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDmniNFFFqkYEIN3XMvvwLrKYkjIVXb2Dy2b4AHCmUpKkhW65Fy
5wCXiHM4gwKKveCoxkjMiaxkbbPE9aX8FNEJZdIYg8+wrkXgj6G3Y0JkJzOme92C
jQ/EPZdALrIpYYxDAd4bjTglZUMhLknTnZFRRwIwv6UVhasP5s0pME+tZDk6uDZ6
Z7lYUyRXJsrDxZwZp7v+y7hiQypa9w8z4W0D4Msz3YimxF0Yo3t7Wk7hmDs6nuT4
KYYak9QuLqvu/HFKbHTDSp86BU1/gevdd+lHKtm99qOoarkYiGCTWrkUTdAFshOK
Wn0KqXkQRKJfPVYE7Qn4Xq4MHA/86meExOhdAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUHR3nb/4KW9VqcF8I4EXl2Oz1i5QwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0hSM25iXzRLVzlWcWNGOEk0
RVhsMk96MWk1US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx
nswwDQYJKoZIhvcNAQELBQADggEBACOkI0+TQ6qDIF2SmVXCkLTzsba9jzvFbGBy
RYwFNPNpKpeS+40uXTkQdZPm1grD/WqWCdkaEy8lsMWb+Olk/Yb9Lp59bz8H3jOC
91d3AMGBLgsyLrW1XWzVgBFl4Akpp7hTvmb/j4l39B3RlWPeuxJaiRLJ8+lPVBAh
9+WukVOBhykGC9QCmS1NrtO7sEhz2pJ4Xam44gpU7jMF0YCJ/Axhlkhy/DOyM8tC
L05T22SRuxGDTXDPiAoy1kFVs3uL2lvI8x1cC/2sCzUpmigNUKLFF55zqhEAfis4
hWIsLFysM4Ep5GcXhOKO8gvLHr45Ya2U8PcNXvqRMM6tA8l6OQY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org