Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Uux_K0Y9Hmr1uj7GZRfMCPBJ3Wc.roa
File: Uux_K0Y9Hmr1uj7GZRfMCPBJ3Wc.roa (raw, json)
Hash identifier: rpAXdEq2j1tP/C3UK8cNGlWAKTXMrQOc1P5eW4VzH40=
Subject key identifier: 52:EC:7F:2B:46:3D:1E:6A:F5:BA:3E:C6:65:17:CC:08:F0:49:DD:67
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Uux_K0Y9Hmr1uj7GZRfMCPBJ3Wc.roa
Signing time: Thu 15 Sep 2022 02:36:25 +0000
ROA not before: Thu 15 Sep 2022 02:36:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 49.158.232.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:36:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=52EC7F2B463D1E6AF5BA3EC66517CC08F049DD67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7c:73:ea:2d:f3:fe:21:36:5a:ec:02:82:55:
db:46:b4:94:eb:78:f3:70:70:f8:8d:a2:2a:c9:8a:
37:1d:bf:15:85:3d:ad:4b:68:65:9f:c7:d5:d8:cf:
21:a3:fe:56:60:8b:d9:79:ea:cb:66:99:c0:ec:9d:
31:3f:44:e9:19:d9:c2:51:14:e7:97:34:3a:99:d0:
37:60:55:90:ed:77:b2:88:f3:e0:26:81:6f:8d:0d:
61:3f:b7:a8:6d:9a:5d:1e:cf:c2:c9:76:d5:40:db:
f8:c9:49:36:f7:3e:8a:92:90:a3:e6:53:03:11:d4:
05:a8:9b:31:17:69:75:84:97:37:05:c7:5f:90:89:
59:e3:e2:d6:af:d0:96:9f:e3:67:82:5a:02:8f:55:
6b:8b:1c:ea:52:10:c4:4d:95:78:ef:e0:96:64:0b:
51:5d:62:dc:c2:1a:1e:e2:96:0b:d1:4c:3e:7a:05:
b7:05:f7:16:33:34:a3:67:bf:97:31:eb:db:bd:d6:
4f:d1:47:7a:7c:38:15:39:3a:19:d3:4d:8b:b1:47:
6b:3d:7b:df:e8:2a:e9:5a:8e:f5:c2:ba:25:4a:51:
ea:a2:b2:92:5e:e1:55:36:85:43:84:0e:1b:27:ef:
44:81:94:6f:56:2d:9b:9e:2a:22:c8:dc:4f:89:d9:
80:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:EC:7F:2B:46:3D:1E:6A:F5:BA:3E:C6:65:17:CC:08:F0:49:DD:67
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Uux_K0Y9Hmr1uj7GZRfMCPBJ3Wc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.232.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:fe:34:6d:41:39:f5:a7:d0:17:88:2b:b9:9c:ce:fa:81:b5:
f5:8f:4e:bb:a4:ba:cb:50:a0:02:e7:ad:90:fd:15:74:47:ca:
e3:6b:f7:d1:4d:bb:73:c0:a9:8a:83:cb:37:32:0e:98:8d:73:
bc:b6:ca:b2:84:1a:de:8e:ee:5c:72:b2:57:3c:f3:81:c5:8c:
39:06:f6:a4:bf:3a:5f:eb:48:42:5d:3f:54:38:16:d4:13:b7:
02:11:3f:ec:41:89:e7:8d:31:5b:82:a3:2f:8f:1b:eb:df:ba:
44:ba:ad:68:28:7b:f9:44:7e:93:30:b0:60:29:bc:76:18:7d:
89:27:9f:c2:ac:5d:74:6b:dd:ab:db:43:97:94:a2:68:2b:18:
76:9a:b0:dc:d2:01:58:3b:cc:fd:8d:b3:fb:91:92:be:91:2b:
49:e9:d6:62:2a:b1:09:38:26:da:fc:9e:0e:69:25:06:54:e8:
ad:aa:13:c3:dc:3f:f5:e9:a5:b4:e3:fe:4d:73:a7:c0:61:a4:
b7:a3:9e:fa:de:86:d4:d1:7e:8e:ee:9b:7c:65:e8:24:94:ca:
b6:41:19:2a:7c:70:4a:39:86:be:19:47:1a:16:99:51:6b:88:
d0:c5:0f:65:f2:46:a8:38:2b:0a:41:e3:e5:b5:93:e1:41:f6:
b9:8e:9c:ea
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA5MTUw
MjM2MjVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDUyRUM3RjJCNDYzRDFF
NkFGNUJBM0VDNjY1MTdDQzA4RjA0OURENjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0fHPqLfP+ITZa7AKCVdtGtJTrePNwcPiNoirJijcdvxWFPa1L
aGWfx9XYzyGj/lZgi9l56stmmcDsnTE/ROkZ2cJRFOeXNDqZ0DdgVZDtd7KI8+Am
gW+NDWE/t6html0ez8LJdtVA2/jJSTb3PoqSkKPmUwMR1AWomzEXaXWElzcFx1+Q
iVnj4tav0Jaf42eCWgKPVWuLHOpSEMRNlXjv4JZkC1FdYtzCGh7ilgvRTD56BbcF
9xYzNKNnv5cx69u91k/RR3p8OBU5OhnTTYuxR2s9e9/oKulajvXCuiVKUeqispJe
4VU2hUOEDhsn70SBlG9WLZueKiLI3E+J2YAfAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUUux/K0Y9Hmr1uj7GZRfMCPBJ3WcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1V1eF9LMFk5SG1yMXVqN0da
UmZNQ1BCSjNXYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEx
nugwDQYJKoZIhvcNAQELBQADggEBAJv+NG1BOfWn0BeIK7mczvqBtfWPTrukustQ
oALnrZD9FXRHyuNr99FNu3PAqYqDyzcyDpiNc7y2yrKEGt6O7lxyslc884HFjDkG
9qS/Ol/rSEJdP1Q4FtQTtwIRP+xBieeNMVuCoy+PG+vfukS6rWgoe/lEfpMwsGAp
vHYYfYknn8KsXXRr3avbQ5eUomgrGHaasNzSAVg7zP2Ns/uRkr6RK0np1mIqsQk4
Jtr8ng5pJQZU6K2qE8PcP/XppbTj/k1zp8BhpLejnvrehtTRfo7um3xl6CSUyrZB
GSp8cEo5hr4ZRxoWmVFriNDFD2XyRqg4KwpB4+W1k+FB9rmOnOo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org