Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MdPRu2U_PBDedaGr6UzVmdAkUgo.roa
File: MdPRu2U_PBDedaGr6UzVmdAkUgo.roa (raw, json)
Hash identifier: ixE+k6waJdgpSBMclxgakKA/4gSqZJQ9q2Wd841JqZs=
Subject key identifier: 31:D3:D1:BB:65:3F:3C:10:DE:75:A1:AB:E9:4C:D5:99:D0:24:52:0A
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 140D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MdPRu2U_PBDedaGr6UzVmdAkUgo.roa
Signing time: Fri 29 Apr 2022 10:21:07 +0000
ROA not before: Fri 29 Apr 2022 10:21:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.32.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5133 (0x140d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Apr 29 10:21:07 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=31D3D1BB653F3C10DE75A1ABE94CD599D024520A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bb:ad:05:6b:35:09:8d:9d:47:18:69:60:dc:
9c:34:f0:2b:7a:90:90:37:b1:7a:62:94:ce:74:ec:
48:b3:b1:14:f6:1a:4e:fc:16:ea:52:d0:e9:fb:f6:
e7:fd:36:6f:58:a2:ae:5c:a7:dd:3e:de:27:42:fa:
f3:17:8a:dc:4b:78:7e:2d:c9:a0:14:dd:72:26:75:
5f:5a:05:b1:6c:7a:65:7a:01:ae:ba:5a:37:03:19:
14:6f:1d:4b:4d:00:01:ae:97:b5:d4:a9:ea:53:10:
e6:8f:80:a8:df:83:16:96:d2:d8:07:3f:42:ff:3c:
75:44:d1:bd:aa:fc:28:74:40:d5:63:db:da:87:ee:
e4:2d:49:2f:ce:ff:f0:9d:bb:74:68:1d:41:9d:c9:
06:e3:f8:2e:1b:b5:0e:cc:d0:08:91:96:ce:66:4a:
a0:27:31:fb:dd:a1:84:c8:d2:f2:dc:11:46:d7:a0:
00:aa:59:d2:b2:2d:00:33:00:15:48:b5:57:99:8f:
cb:c6:4c:0b:55:ff:bc:a9:3c:40:d3:23:03:29:c7:
d4:ac:43:c3:b0:a3:95:13:ed:90:ad:7d:93:77:73:
23:1f:6c:f4:37:65:9e:33:37:a7:a0:6e:d9:f1:77:
59:38:9c:4a:23:8b:85:d1:07:c5:26:9c:aa:e2:94:
a1:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:D3:D1:BB:65:3F:3C:10:DE:75:A1:AB:E9:4C:D5:99:D0:24:52:0A
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MdPRu2U_PBDedaGr6UzVmdAkUgo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.32.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:d7:78:cb:5a:79:3c:79:66:67:86:4f:ab:14:3d:67:d4:2e:
01:ac:27:55:98:d2:75:dc:e3:af:5f:f3:05:c4:2c:92:bf:c6:
aa:e2:39:46:ac:51:c8:99:30:cd:cb:9f:ed:6b:f2:ba:92:69:
c1:93:ee:fe:ae:e1:7e:01:cc:5f:db:76:37:b0:f0:26:9c:c3:
a0:85:b2:be:cd:77:36:33:d4:52:38:ae:90:85:9f:e8:ba:3c:
a2:65:71:29:35:8e:38:d7:d1:35:48:68:3c:cd:e2:c8:d1:56:
c3:7b:7f:dc:10:17:b8:df:c9:c8:24:83:8b:b6:6e:9b:d2:0f:
92:5e:9d:4d:d7:96:a3:05:12:37:81:07:95:48:6a:1d:31:46:
51:f9:d9:db:53:32:9d:40:b6:15:ef:e7:6a:35:4b:64:6b:d9:
a5:d5:e1:82:33:cd:18:96:a3:a8:46:fb:c4:bf:26:fe:11:96:
e4:8d:a9:a9:ad:6b:3f:e9:6f:7a:bd:46:3b:bc:9e:58:be:14:
8d:6b:4e:3d:5e:67:14:be:d5:eb:43:96:1a:9a:8c:7b:46:96:
b6:66:df:56:49:14:0e:1c:7c:60:6b:2c:9d:e0:03:40:71:c7:
12:27:ac:ab:0f:87:c6:d3:28:0c:57:37:7d:ad:70:bf:1d:f5:
4e:94:8e:94
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFA0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA0Mjkx
MDIxMDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDMxRDNEMUJCNjUzRjND
MTBERTc1QTFBQkU5NENENTk5RDAyNDUyMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCou60FazUJjZ1HGGlg3Jw08Ct6kJA3sXpilM507EizsRT2Gk78
FupS0On79uf9Nm9Yoq5cp90+3idC+vMXitxLeH4tyaAU3XImdV9aBbFsemV6Aa66
WjcDGRRvHUtNAAGul7XUqepTEOaPgKjfgxaW0tgHP0L/PHVE0b2q/Ch0QNVj29qH
7uQtSS/O//Cdu3RoHUGdyQbj+C4btQ7M0AiRls5mSqAnMfvdoYTI0vLcEUbXoACq
WdKyLQAzABVItVeZj8vGTAtV/7ypPEDTIwMpx9SsQ8Owo5UT7ZCtfZN3cyMfbPQ3
ZZ4zN6egbtnxd1k4nEoji4XRB8UmnKrilKF/AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUMdPRu2U/PBDedaGr6UzVmdAkUgowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL01kUFJ1MlVfUEJEZWRhR3I2
VXpWbWRBa1Vnby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
niAwDQYJKoZIhvcNAQELBQADggEBAC3XeMtaeTx5ZmeGT6sUPWfULgGsJ1WY0nXc
469f8wXELJK/xqriOUasUciZMM3Ln+1r8rqSacGT7v6u4X4BzF/bdjew8Cacw6CF
sr7NdzYz1FI4rpCFn+i6PKJlcSk1jjjX0TVIaDzN4sjRVsN7f9wQF7jfycgkg4u2
bpvSD5JenU3XlqMFEjeBB5VIah0xRlH52dtTMp1AthXv52o1S2Rr2aXV4YIzzRiW
o6hG+8S/Jv4RluSNqamtaz/pb3q9Rju8nli+FI1rTj1eZxS+1etDlhqajHtGlrZm
31ZJFA4cfGBrLJ3gA0BxxxInrKsPh8bTKAxXN32tcL8d9U6UjpQ=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:36 2023 by rpki-client on console-ams.rpki-client.org