Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KYthsWyeYkCLKDhdrIt7t3ieyZk.roa
File: KYthsWyeYkCLKDhdrIt7t3ieyZk.roa (raw, json)
Hash identifier: 9wVEfAo4it3HaJW2zIqmbzc+ZLzmnRAc7nC1FFmO/6s=
Subject key identifier: 29:8B:61:B1:6C:9E:62:40:8B:28:38:5D:AC:8B:7B:B7:78:9E:C9:99
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 152B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KYthsWyeYkCLKDhdrIt7t3ieyZk.roa
Signing time: Fri 21 Oct 2022 08:26:11 +0000
ROA not before: Fri 21 Oct 2022 08:26:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 122.100.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5419 (0x152b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 21 08:26:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=298B61B16C9E62408B28385DAC8B7BB7789EC999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3e:2d:ef:1c:61:0d:fd:b3:8d:c8:43:22:a2:
df:8d:29:26:e6:40:35:8f:1e:03:0e:d0:d1:53:e6:
89:f4:90:52:7b:c3:93:ab:3e:b4:18:82:6f:5e:50:
8c:83:49:71:0e:99:c0:aa:25:fc:cf:eb:40:c0:3a:
87:74:05:6a:ed:23:9e:86:11:7e:70:16:21:e8:b8:
27:57:c3:f1:40:2a:c2:cb:08:4c:57:05:cc:a2:d0:
79:ce:d5:7b:99:e5:6a:66:db:93:a0:49:83:6d:6d:
c7:78:ec:77:f1:ad:c6:d2:4b:ac:f9:8a:a8:ef:1f:
a3:21:f2:2a:11:5a:be:23:6a:97:a4:20:20:6e:cc:
68:17:a2:78:4d:45:51:e1:46:2a:74:23:a4:97:76:
d1:7a:af:cc:e9:a0:2f:c4:44:a6:82:c7:25:4a:43:
12:ce:a0:62:84:d6:b8:e6:c5:b1:d4:ea:3b:7f:ae:
dd:09:ee:2b:26:18:bb:da:7a:5f:69:9d:65:ea:7c:
2a:61:3a:b6:fc:d8:22:84:61:f8:19:ee:dc:a4:77:
2f:4d:3f:86:51:e0:d6:19:bd:0f:e3:61:a5:fc:80:
b1:15:09:2b:59:fd:bd:fd:11:49:45:8b:ae:85:2d:
4e:bd:96:81:f2:cc:0b:a1:23:04:c1:3b:3e:c7:2d:
3b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:8B:61:B1:6C:9E:62:40:8B:28:38:5D:AC:8B:7B:B7:78:9E:C9:99
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KYthsWyeYkCLKDhdrIt7t3ieyZk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.100.120.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:6b:7d:6a:29:9e:aa:db:69:21:77:ea:1b:10:16:16:87:aa:
49:f5:aa:43:e5:94:fd:5f:71:40:ec:d6:9e:6c:4e:bd:91:e9:
4e:ba:6d:2d:48:b2:89:0e:66:7a:c4:72:1e:d4:84:3f:5b:2a:
d8:e6:a9:e8:47:4b:f3:56:e5:36:94:d3:f2:bf:a1:bc:c1:d5:
f1:62:3d:8e:1e:e0:c4:d9:b8:13:8a:6c:a4:e8:4d:c3:1b:52:
9e:c9:04:eb:3f:e8:9f:09:68:c5:17:73:37:ca:80:f6:66:56:
ed:57:09:ca:74:54:73:8f:43:96:6d:fa:af:f3:29:61:31:07:
3f:b2:78:c6:19:61:31:12:76:ab:69:9a:bc:9f:ba:6c:26:bb:
ff:cb:a3:4a:04:a4:77:2b:83:be:60:0d:4a:d4:6d:40:92:85:
53:8c:52:26:be:dd:6b:42:c6:49:76:de:9d:89:cb:44:32:5e:
ef:ee:b6:a1:4c:47:ff:e9:c6:17:f4:07:5b:36:ed:31:b9:8b:
4e:57:e7:65:37:1e:e9:ee:29:41:da:ab:54:b4:cf:cd:7f:0e:
87:04:b1:6a:37:f2:73:69:91:fc:4a:06:23:32:5c:ac:79:96:
ea:4c:e7:a7:70:90:eb:2c:a9:8d:c9:42:c7:c3:75:3b:7b:22:
1e:b1:21:9f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFSswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjEw
ODI2MTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDI5OEI2MUIxNkM5RTYy
NDA4QjI4Mzg1REFDOEI3QkI3Nzg5RUM5OTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4Pi3vHGEN/bONyEMiot+NKSbmQDWPHgMO0NFT5on0kFJ7w5Or
PrQYgm9eUIyDSXEOmcCqJfzP60DAOod0BWrtI56GEX5wFiHouCdXw/FAKsLLCExX
Bcyi0HnO1XuZ5Wpm25OgSYNtbcd47HfxrcbSS6z5iqjvH6Mh8ioRWr4japekICBu
zGgXonhNRVHhRip0I6SXdtF6r8zpoC/ERKaCxyVKQxLOoGKE1rjmxbHU6jt/rt0J
7ismGLvael9pnWXqfCphOrb82CKEYfgZ7tykdy9NP4ZR4NYZvQ/jYaX8gLEVCStZ
/b39EUlFi66FLU69loHyzAuhIwTBOz7HLTshAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUKYthsWyeYkCLKDhdrIt7t3ieyZkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0tZdGhzV3llWWtDTEtEaGRy
SXQ3dDNpZXlaay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ6
ZHgwDQYJKoZIhvcNAQELBQADggEBACprfWopnqrbaSF36hsQFhaHqkn1qkPllP1f
cUDs1p5sTr2R6U66bS1IsokOZnrEch7UhD9bKtjmqehHS/NW5TaU0/K/obzB1fFi
PY4e4MTZuBOKbKToTcMbUp7JBOs/6J8JaMUXczfKgPZmVu1XCcp0VHOPQ5Zt+q/z
KWExBz+yeMYZYTESdqtpmryfumwmu//Lo0oEpHcrg75gDUrUbUCShVOMUia+3WtC
xkl23p2Jy0QyXu/utqFMR//pxhf0B1s27TG5i05X52U3HunuKUHaq1S0z81/DocE
sWo38nNpkfxKBiMyXKx5lupM56dwkOssqY3JQsfDdTt7Ih6xIZ8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org