Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UiDqwhH5XcrM2RCHkYDJ2Tuw6p8.roa
File: UiDqwhH5XcrM2RCHkYDJ2Tuw6p8.roa (raw, json)
Hash identifier: iEWBloPRVXQ6EIHN78a93/vo5IufiJayx/8Mgm8Cix8=
Subject key identifier: 52:20:EA:C2:11:F9:5D:CA:CC:D9:10:87:91:80:C9:D9:3B:B0:EA:9F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 13BA
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UiDqwhH5XcrM2RCHkYDJ2Tuw6p8.roa
Signing time: Wed 19 Jan 2022 05:35:23 +0000
ROA not before: Wed 19 Jan 2022 05:35:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5050 (0x13ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Jan 19 05:35:23 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5220EAC211F95DCACCD910879180C9D93BB0EA9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8c:9f:2c:f1:17:1d:dd:a7:62:80:06:25:5f:
05:d1:ee:30:21:71:66:3a:98:04:55:5e:8d:05:8b:
68:4b:e7:da:06:c5:43:de:75:58:4c:8a:11:cc:c0:
d2:41:2f:69:81:24:8d:68:bd:c4:1d:ee:f0:dd:8f:
aa:97:d5:3b:c0:a8:11:e3:28:ed:04:59:72:55:b6:
0f:30:3c:ba:34:ba:69:35:78:57:38:57:a7:f6:54:
63:40:6d:b9:9f:9d:22:bf:07:71:0b:5e:69:af:fb:
e8:ef:57:61:b2:d0:3f:12:e7:15:8c:05:d8:6d:d4:
a8:aa:f8:89:30:1c:9a:ad:e0:07:d5:78:ab:2d:33:
e8:ff:5a:fb:20:8f:c2:e3:e4:67:37:ec:ba:7d:b9:
27:a7:d4:62:5f:31:61:2b:45:bf:bd:8c:a8:cb:38:
f5:54:4a:af:ba:34:45:5b:17:7f:2c:c8:1e:62:88:
ab:f8:27:50:27:41:17:5f:63:a1:aa:89:ec:ce:05:
75:2a:3b:2d:00:c8:f0:a1:1d:18:84:2c:b5:af:8a:
e5:ab:d2:1b:51:10:8a:12:9e:27:ec:ef:52:03:f4:
70:7e:4e:76:87:ef:d1:18:d6:f1:0a:93:65:cc:ab:
32:76:37:cd:45:f7:cd:17:d6:da:88:e1:2f:a7:c9:
47:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:20:EA:C2:11:F9:5D:CA:CC:D9:10:87:91:80:C9:D9:3B:B0:EA:9F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UiDqwhH5XcrM2RCHkYDJ2Tuw6p8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.184.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:cd:7a:ad:ac:d8:54:e7:e2:9c:36:71:06:48:58:05:fa:6f:
24:f8:82:f9:83:20:d7:df:98:b3:7a:1e:76:f9:6d:a6:fa:6f:
62:7a:e2:09:72:fc:a2:dd:c1:25:58:26:c8:90:54:36:1b:0c:
3f:d1:a5:6b:53:27:e6:4d:e8:b6:a4:5e:26:af:43:b8:1e:f3:
23:34:2d:08:1b:9b:f6:5b:42:f6:75:66:2e:7f:73:f2:77:50:
43:df:22:18:36:6e:2f:2b:1a:55:24:a8:bd:cd:a2:da:75:ac:
9a:bf:cc:91:f3:7f:a8:0f:77:58:f4:d4:75:22:a2:8e:fd:f5:
3d:ce:98:1e:d2:a7:ad:ae:f5:f4:6a:a9:84:f0:60:4c:8f:45:
04:15:0e:7c:c3:38:85:c2:f7:5c:48:c7:4a:58:d4:7d:42:92:
aa:82:e6:92:9e:50:b0:ca:07:3f:a2:88:df:e6:3a:35:1a:e6:
c4:19:d5:17:b1:ab:94:2a:00:73:a8:bc:46:3e:8a:f7:8f:9d:
76:b1:c9:f3:2b:1f:d0:59:cb:7c:38:a1:c4:3b:79:75:8e:16:
e5:67:84:e9:77:0d:54:e4:d4:7c:63:31:20:39:55:c2:37:6f:
e5:3c:bc:51:0f:4a:fe:2a:1f:5d:10:93:86:7c:c4:dc:c4:eb:
d6:a8:dd:f2
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICE7owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjAxMTkw
NTM1MjNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDUyMjBFQUMyMTFGOTVE
Q0FDQ0Q5MTA4NzkxODBDOUQ5M0JCMEVBOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNjJ8s8Rcd3adigAYlXwXR7jAhcWY6mARVXo0Fi2hL59oGxUPe
dVhMihHMwNJBL2mBJI1ovcQd7vDdj6qX1TvAqBHjKO0EWXJVtg8wPLo0umk1eFc4
V6f2VGNAbbmfnSK/B3ELXmmv++jvV2Gy0D8S5xWMBdht1Kiq+IkwHJqt4AfVeKst
M+j/Wvsgj8Lj5Gc37Lp9uSen1GJfMWErRb+9jKjLOPVUSq+6NEVbF38syB5iiKv4
J1AnQRdfY6GqiezOBXUqOy0AyPChHRiELLWviuWr0htREIoSnifs71ID9HB+TnaH
79EY1vEKk2XMqzJ2N81F980X1tqI4S+nyUcpAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUUiDqwhH5XcrM2RCHkYDJ2Tuw6p8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1VpRHF3aEg1WGNyTTJSQ0hr
WURKMlR1dzZwOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
nrgwDQYJKoZIhvcNAQELBQADggEBAI3Neq2s2FTn4pw2cQZIWAX6byT4gvmDINff
mLN6Hnb5bab6b2J64gly/KLdwSVYJsiQVDYbDD/RpWtTJ+ZN6LakXiavQ7ge8yM0
LQgbm/ZbQvZ1Zi5/c/J3UEPfIhg2bi8rGlUkqL3Notp1rJq/zJHzf6gPd1j01HUi
oo799T3OmB7Sp62u9fRqqYTwYEyPRQQVDnzDOIXC91xIx0pY1H1CkqqC5pKeULDK
Bz+iiN/mOjUa5sQZ1Rexq5QqAHOovEY+ivePnXaxyfMrH9BZy3w4ocQ7eXWOFuVn
hOl3DVTk1HxjMSA5VcI3b+U8vFEPSv4qH10Qk4Z8xNzE69ao3fI=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:49 2023 by rpki-client on console-fra.rpki-client.org