Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YVZyEU3Wbvg2Kfn5XkQtQoenO54.roa
File: YVZyEU3Wbvg2Kfn5XkQtQoenO54.roa (raw, json)
Hash identifier: 6yemiaN5VuNEP9Tvxi56gaYdlBw3UP1e4WLOkLse2Bw=
Subject key identifier: 61:56:72:11:4D:D6:6E:F8:36:29:F9:F9:5E:44:2D:42:87:A7:3B:9E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 128F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YVZyEU3Wbvg2Kfn5XkQtQoenO54.roa
Signing time: Wed 29 Sep 2021 02:54:43 +0000
ROA not before: Wed 29 Sep 2021 02:54:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.136.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4751 (0x128f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=615672114DD66EF83629F9F95E442D4287A73B9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0e:da:64:cc:37:6e:34:1e:51:c8:ec:94:76:
71:0b:1f:b8:75:5e:ce:1e:ba:fd:ad:8a:08:95:d9:
5e:21:fb:33:21:82:66:73:61:19:a5:8d:a9:4f:20:
d4:03:7e:4e:4d:ff:0c:f2:eb:c8:55:6d:4f:c3:af:
60:cf:39:07:13:4c:78:4c:85:99:1d:ef:f3:1d:11:
f0:ad:6e:df:8a:e5:40:04:82:4c:b9:ba:ba:8b:50:
91:64:00:4b:d2:f0:f2:25:86:c2:f9:63:bc:39:38:
c9:2d:5a:d2:3e:1b:80:5f:29:67:ff:f7:23:f8:7f:
3b:0d:e2:fb:1b:a5:6a:6d:f8:81:73:0b:25:59:7d:
5d:29:1a:2b:ae:3b:5f:2e:09:e4:68:e1:df:93:8b:
08:b2:18:c0:cb:a3:eb:a6:46:e1:ae:00:ee:88:a2:
6f:2d:08:e7:74:44:4a:ad:5c:a2:5a:da:c3:25:bb:
bc:d4:36:31:3f:91:e9:85:33:01:0b:f7:28:1f:5f:
d1:54:81:6a:72:30:74:1b:d2:dc:62:d5:9b:b6:d7:
71:fd:f4:36:3d:89:c7:f4:d9:11:de:ed:a6:02:4c:
06:f9:0b:00:5f:8e:da:5b:27:46:67:f4:e3:89:fe:
6e:56:2c:f4:c1:ac:73:b8:7d:ab:85:86:09:e0:05:
41:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:56:72:11:4D:D6:6E:F8:36:29:F9:F9:5E:44:2D:42:87:A7:3B:9E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YVZyEU3Wbvg2Kfn5XkQtQoenO54.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.136.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:6d:c5:b4:18:33:f1:04:91:51:8a:69:33:62:e7:6f:b5:3f:
b5:14:ad:cb:6a:c0:38:f3:6a:b4:e7:32:64:d8:2e:01:7b:0e:
4e:1f:8f:83:69:f2:9a:33:d0:ad:32:64:1b:88:c2:c8:6c:09:
4a:46:2b:ab:80:51:13:e5:c2:31:de:b8:71:79:37:4c:96:a9:
33:7e:1a:9f:b2:90:6b:6f:1b:47:7f:07:a0:7d:7a:17:07:0d:
7d:b9:a0:a9:32:f5:88:a3:f8:4f:ec:ab:0d:5b:ca:3f:55:ff:
15:98:08:ff:91:6f:5f:06:20:db:ce:6a:32:94:15:f6:3d:37:
8e:5f:49:9f:f0:94:76:32:83:fc:14:44:8c:70:f8:34:da:b8:
fe:95:68:77:38:a0:2e:bd:37:b6:a7:b3:d2:a5:62:b5:69:07:
f8:d4:e8:ea:f5:c6:db:3c:00:8f:b0:e4:b2:93:07:cc:27:41:
d1:54:55:d2:af:e9:66:d2:94:0c:a9:a9:52:d5:9c:4d:79:07:
1a:df:69:4e:55:64:63:3c:7a:b7:dc:62:fc:d2:59:d1:d1:24:
91:22:61:74:1d:c8:21:b2:ad:88:49:d1:a5:a9:e6:42:e0:c2:
f1:21:aa:91:50:7a:94:45:3e:09:86:7b:95:bb:56:1c:5d:06:
23:9d:d7:fc
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEo8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0NDNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDYxNTY3MjExNERENjZF
RjgzNjI5RjlGOTVFNDQyRDQyODdBNzNCOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCcDtpkzDduNB5RyOyUdnELH7h1Xs4euv2tigiV2V4h+zMhgmZz
YRmljalPINQDfk5N/wzy68hVbU/Dr2DPOQcTTHhMhZkd7/MdEfCtbt+K5UAEgky5
urqLUJFkAEvS8PIlhsL5Y7w5OMktWtI+G4BfKWf/9yP4fzsN4vsbpWpt+IFzCyVZ
fV0pGiuuO18uCeRo4d+TiwiyGMDLo+umRuGuAO6Iom8tCOd0REqtXKJa2sMlu7zU
NjE/kemFMwEL9ygfX9FUgWpyMHQb0txi1Zu213H99DY9icf02RHe7aYCTAb5CwBf
jtpbJ0Zn9OOJ/m5WLPTBrHO4fauFhgngBUEXAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUYVZyEU3Wbvg2Kfn5XkQtQoenO54wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1lWWnlFVTNXYnZnMktmbjVY
a1F0UW9lbk81NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx
nogwDQYJKoZIhvcNAQELBQADggEBAFxtxbQYM/EEkVGKaTNi52+1P7UUrctqwDjz
arTnMmTYLgF7Dk4fj4Np8poz0K0yZBuIwshsCUpGK6uAURPlwjHeuHF5N0yWqTN+
Gp+ykGtvG0d/B6B9ehcHDX25oKky9Yij+E/sqw1byj9V/xWYCP+Rb18GINvOajKU
FfY9N45fSZ/wlHYyg/wURIxw+DTauP6VaHc4oC69N7ans9KlYrVpB/jU6Or1xts8
AI+w5LKTB8wnQdFUVdKv6WbSlAypqVLVnE15BxrfaU5VZGM8erfcYvzSWdHRJJEi
YXQdyCGyrYhJ0aWp5kLgwvEhqpFQepRFPgmGe5W7VhxdBiOd1/w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org