Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IfP7ZKwpFdiC9tvg_aa5s4OxU_o.roa
File: IfP7ZKwpFdiC9tvg_aa5s4OxU_o.roa (raw, json)
Hash identifier: krfZaUrvx9Wchvyftts0CsVtKItPhrh3CXaR7T/ae0A=
Subject key identifier: 21:F3:FB:64:AC:29:15:D8:82:F6:DB:E0:FD:A6:B9:B3:83:B1:53:FA
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12A5
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IfP7ZKwpFdiC9tvg_aa5s4OxU_o.roa
Signing time: Wed 29 Sep 2021 02:54:49 +0000
ROA not before: Wed 29 Sep 2021 02:54:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24163
IP address blocks: 49.158.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4773 (0x12a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=21F3FB64AC2915D882F6DBE0FDA6B9B383B153FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:05:52:9c:1d:52:ec:77:81:b7:f8:fa:98:02:
95:ae:d0:6f:9c:11:a8:7f:a6:fe:e8:4a:c1:79:d2:
af:37:f8:e2:a7:34:88:b1:0d:02:d7:14:73:ab:64:
36:c5:ef:89:b0:04:9b:fa:06:4c:27:57:68:e4:52:
8e:c6:92:15:76:46:98:b5:db:38:3d:33:a5:cc:11:
0d:79:14:61:80:0b:5e:5c:fd:af:df:fe:f5:21:c7:
75:c8:5a:15:f9:ac:06:6b:e6:48:91:98:01:c1:6b:
c8:d0:7a:77:0d:bf:18:3e:79:07:7a:55:8c:75:2d:
28:4d:1a:87:a0:e7:ba:98:fc:00:8a:c4:e5:33:67:
e9:f9:4c:7f:66:95:b1:74:59:7a:56:c4:23:df:d9:
67:f6:29:b6:cf:4e:fc:50:3f:78:69:01:76:51:f1:
a5:d6:54:90:fb:a7:b0:ee:22:5a:8c:b9:8e:41:04:
2f:79:62:89:fe:8b:99:a5:ca:e7:55:b8:44:be:79:
3e:af:a0:67:e4:30:00:a6:fb:df:f4:4f:f3:96:d2:
47:fa:79:b0:4b:f0:a9:04:15:9f:d2:16:4b:18:94:
09:8e:62:6e:c1:22:59:86:53:df:e8:08:25:2b:42:
38:b7:c1:7f:92:f6:96:3f:ab:12:03:72:90:0a:32:
44:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F3:FB:64:AC:29:15:D8:82:F6:DB:E0:FD:A6:B9:B3:83:B1:53:FA
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IfP7ZKwpFdiC9tvg_aa5s4OxU_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.212.0/22
Signature Algorithm: sha256WithRSAEncryption
06:64:6d:bf:57:87:62:b4:d0:14:77:44:63:36:c3:b5:88:bc:
05:45:f1:95:a6:58:a1:91:d9:68:d3:ab:94:82:a2:3c:9b:2a:
e6:d4:30:92:19:cc:8d:3d:5c:91:ce:ab:25:0a:14:3f:bf:ed:
26:e4:00:93:cd:c2:2e:6c:a8:1f:4b:82:21:b6:9f:03:33:eb:
96:ca:c5:d2:bf:33:3d:6d:aa:d1:ff:6f:19:dc:d4:c6:02:15:
67:4e:5a:e2:1e:97:aa:53:9e:be:65:2b:6f:63:f1:c5:56:23:
64:75:01:2e:63:c2:65:b8:59:35:61:33:bd:df:c2:e7:98:7e:
50:20:0f:b7:36:7e:2c:2d:a4:48:9e:a3:78:5f:31:be:19:b0:
c0:a8:cd:07:82:3f:5a:26:bd:6b:27:81:37:16:42:0a:63:99:
07:24:6e:6b:cd:fa:09:69:c7:24:8f:ad:1a:ad:66:90:d5:13:
dc:49:08:57:65:40:30:04:7c:7c:ef:a1:e1:c5:37:33:6e:e1:
df:9f:09:41:df:ed:3e:a6:d9:f1:77:2d:b2:ac:e8:e9:d5:86:
32:29:64:9f:6c:84:80:d5:68:38:10:45:c8:f5:af:91:ec:d0:
e1:aa:59:12:e7:13:d9:7e:f7:88:41:37:cc:30:b5:f1:e4:81:
0f:99:44:f7
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEqUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0NDlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDIxRjNGQjY0QUMyOTE1
RDg4MkY2REJFMEZEQTZCOUIzODNCMTUzRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxBVKcHVLsd4G3+PqYApWu0G+cEah/pv7oSsF50q83+OKnNIix
DQLXFHOrZDbF74mwBJv6BkwnV2jkUo7GkhV2Rpi12zg9M6XMEQ15FGGAC15c/a/f
/vUhx3XIWhX5rAZr5kiRmAHBa8jQencNvxg+eQd6VYx1LShNGoeg57qY/ACKxOUz
Z+n5TH9mlbF0WXpWxCPf2Wf2KbbPTvxQP3hpAXZR8aXWVJD7p7DuIlqMuY5BBC95
Yon+i5mlyudVuES+eT6voGfkMACm+9/0T/OW0kf6ebBL8KkEFZ/SFksYlAmOYm7B
IlmGU9/oCCUrQji3wX+S9pY/qxIDcpAKMkRvAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUIfP7ZKwpFdiC9tvg/aa5s4OxU/owHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0lmUDdaS3dwRmRpQzl0dmdf
YWE1czRPeFVfby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx
ntQwDQYJKoZIhvcNAQELBQADggEBAAZkbb9Xh2K00BR3RGM2w7WIvAVF8ZWmWKGR
2WjTq5SCojybKubUMJIZzI09XJHOqyUKFD+/7SbkAJPNwi5sqB9LgiG2nwMz65bK
xdK/Mz1tqtH/bxnc1MYCFWdOWuIel6pTnr5lK29j8cVWI2R1AS5jwmW4WTVhM73f
wueYflAgD7c2fiwtpEieo3hfMb4ZsMCozQeCP1omvWsngTcWQgpjmQckbmvN+glp
xySPrRqtZpDVE9xJCFdlQDAEfHzvoeHFNzNu4d+fCUHf7T6m2fF3LbKs6OnVhjIp
ZJ9shIDVaDgQRcj1r5Hs0OGqWRLnE9l+94hBN8wwtfHkgQ+ZRPc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org