Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KINLYU6rX3bi6YKpFQMke__RbSM.roa
File: KINLYU6rX3bi6YKpFQMke__RbSM.roa (raw, json)
Hash identifier: Ei1IwbB4qZpELu6UZViTAF7sZg8SEh8pZMrbtxtFqf4=
Subject key identifier: 28:83:4B:61:4E:AB:5F:76:E2:E9:82:A9:15:03:24:7B:FF:D1:6D:23
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 0F07
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KINLYU6rX3bi6YKpFQMke__RbSM.roa
Signing time: Sun 07 Feb 2021 12:32:37 +0000
ROA not before: Sun 07 Feb 2021 12:32:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 49.159.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3847 (0xf07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Feb 7 12:32:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=28834B614EAB5F76E2E982A91503247BFFD16D23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d2:58:e4:97:9c:d7:85:bb:e5:36:6e:a2:33:
0a:92:a9:3d:b0:38:ee:bb:53:7d:3e:41:29:e8:88:
57:24:16:e9:e0:eb:f5:8a:6e:ee:11:42:5c:fa:b7:
fc:79:72:c6:26:ad:21:aa:06:28:ea:39:be:2e:e5:
9a:39:02:83:19:7e:30:2b:32:cd:f4:48:9e:b2:d5:
17:b4:65:b5:40:05:0f:3a:60:6f:79:d3:79:81:22:
0c:61:e2:95:cf:6d:c5:63:78:8a:00:2e:08:03:52:
96:ad:0c:dd:5b:cf:46:7f:52:9c:ab:7d:af:2a:ee:
bc:1a:a0:e6:48:9e:97:71:9e:bf:b5:bd:05:8c:ed:
cb:29:ac:80:8c:93:fc:b6:a7:2a:d2:b6:41:dd:35:
6f:36:39:9d:fb:a9:1b:0a:c2:f4:26:c0:45:0d:4c:
e4:c0:4c:01:3f:96:d8:e0:fa:98:da:cd:f9:39:7e:
9a:dd:ff:00:02:c9:67:19:de:21:e8:b3:4c:31:e2:
71:3d:33:8a:48:f5:02:e9:f8:92:bb:cd:97:c4:e2:
ce:32:68:a9:7a:9d:66:4b:19:85:4e:34:39:f3:78:
d2:ef:7b:a5:5c:21:b9:b0:46:6f:84:c9:96:f9:55:
bd:61:e8:3c:53:9c:1d:56:68:95:07:fb:ab:7d:74:
52:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:83:4B:61:4E:AB:5F:76:E2:E9:82:A9:15:03:24:7B:FF:D1:6D:23
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KINLYU6rX3bi6YKpFQMke__RbSM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.16.0/20
Signature Algorithm: sha256WithRSAEncryption
46:f4:66:e4:45:57:84:54:34:5e:71:19:69:09:e4:85:d6:b1:
31:08:17:42:35:6b:f2:a2:de:3d:04:e3:7b:69:fb:0d:cf:cd:
f0:0d:b2:ec:97:40:a5:aa:ab:5f:13:80:23:46:be:1e:d9:d6:
a1:ca:96:40:33:f7:6f:82:49:98:94:e9:5c:71:fe:c3:b8:6b:
cf:26:cf:4a:70:a9:97:1b:45:78:49:67:7c:13:c3:d2:29:30:
b0:fc:82:f2:f8:2a:99:fd:78:fe:86:e8:65:bf:bd:a4:8a:f5:
d9:cd:29:3f:2f:bc:e0:ec:e6:74:a9:8d:f5:96:47:09:d6:a4:
98:39:96:ae:ad:65:64:da:1b:4e:54:df:b7:f3:0b:bf:8e:7d:
40:bb:80:a6:9e:93:70:3c:06:c6:3d:73:90:df:a6:d9:a2:39:
22:b2:a9:bb:a6:c8:52:8c:28:84:3c:a6:28:6e:0d:67:78:e1:
0d:48:9f:26:31:28:8f:a3:83:1c:db:c6:21:16:5b:15:97:db:
ef:0f:32:4d:c1:02:dc:a6:bd:a3:a5:d6:d6:6c:b5:70:a7:c5:
72:8a:f8:5a:25:a1:c7:53:8e:f7:80:e1:43:53:7c:78:f1:23:
41:51:1d:98:27:3d:a5:33:e0:ea:5d:05:ab:d7:fa:a6:42:08:
78:dd:f2:d3
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDwcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTAyMDcx
MjMyMzdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDI4ODM0QjYxNEVBQjVG
NzZFMkU5ODJBOTE1MDMyNDdCRkZEMTZEMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDK0ljkl5zXhbvlNm6iMwqSqT2wOO67U30+QSnoiFckFung6/WK
bu4RQlz6t/x5csYmrSGqBijqOb4u5Zo5AoMZfjArMs30SJ6y1Re0ZbVABQ86YG95
03mBIgxh4pXPbcVjeIoALggDUpatDN1bz0Z/Upyrfa8q7rwaoOZInpdxnr+1vQWM
7csprICMk/y2pyrStkHdNW82OZ37qRsKwvQmwEUNTOTATAE/ltjg+pjazfk5fprd
/wACyWcZ3iHos0wx4nE9M4pI9QLp+JK7zZfE4s4yaKl6nWZLGYVONDnzeNLve6Vc
IbmwRm+EyZb5Vb1h6DxTnB1WaJUH+6t9dFJ3AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUKINLYU6rX3bi6YKpFQMke//RbSMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0tJTkxZVTZyWDNiaTZZS3BG
UU1rZV9fUmJTTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQx
nxAwDQYJKoZIhvcNAQELBQADggEBAEb0ZuRFV4RUNF5xGWkJ5IXWsTEIF0I1a/Ki
3j0E43tp+w3PzfANsuyXQKWqq18TgCNGvh7Z1qHKlkAz92+CSZiU6Vxx/sO4a88m
z0pwqZcbRXhJZ3wTw9IpMLD8gvL4Kpn9eP6G6GW/vaSK9dnNKT8vvODs5nSpjfWW
RwnWpJg5lq6tZWTaG05U37fzC7+OfUC7gKaek3A8BsY9c5DfptmiOSKyqbumyFKM
KIQ8pihuDWd44Q1InyYxKI+jgxzbxiEWWxWX2+8PMk3BAtymvaOl1tZstXCnxXKK
+FolocdTjveA4UNTfHjxI0FRHZgnPaUz4OpdBavX+qZCCHjd8tM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org