Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bTs9ljoY6Qkj9omb1qtfs1ftN7w.roa
File: bTs9ljoY6Qkj9omb1qtfs1ftN7w.roa (raw, json)
Hash identifier: EdAsJherZwVDpHIXA6GtjoaYkpm9gsujqEaS5UYPpyw=
Subject key identifier: 6D:3B:3D:96:3A:18:E9:09:23:F6:89:9B:D6:AB:5F:B3:57:ED:37:BC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 186E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bTs9ljoY6Qkj9omb1qtfs1ftN7w.roa
Signing time: Sat 22 Oct 2022 05:57:18 +0000
ROA not before: Sat 22 Oct 2022 05:57:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6254 (0x186e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 05:57:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6D3B3D963A18E90923F6899BD6AB5FB357ED37BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0b:ce:5f:7b:7a:56:ab:68:b6:13:06:3f:b1:
76:56:d3:9a:73:7f:4e:3c:9f:04:9a:7e:14:10:32:
83:68:76:38:1f:d6:5f:e8:67:bf:b4:25:82:35:9b:
df:07:f6:08:11:1b:4e:54:0b:3e:df:f1:8d:cf:86:
d6:49:7d:eb:8d:8d:66:45:0b:28:6b:2e:da:18:0f:
a1:a3:ba:30:dc:c1:a9:35:70:f7:1f:55:5f:47:42:
de:45:fb:e5:ed:5a:92:ea:bf:cd:45:89:f0:7d:c2:
6e:71:57:d1:51:64:b5:5c:fd:c9:17:85:b8:5d:99:
e5:30:c8:db:a0:06:75:9d:5c:05:5d:2b:7e:44:d1:
5e:94:87:00:45:b1:3f:ce:60:c7:18:6e:03:72:2d:
ea:43:83:1d:16:6a:e0:55:43:b5:37:60:f3:16:50:
c5:d5:0a:ea:d7:7b:3e:b4:df:44:08:ec:74:ed:37:
0c:36:6f:f3:af:af:e3:86:2c:90:4a:63:83:a8:11:
0a:61:21:ac:e8:0a:00:bf:2c:e3:60:51:2e:77:97:
0a:14:49:05:64:95:e0:0e:11:51:34:2a:ae:aa:7d:
d8:a9:a9:63:87:7a:df:30:62:0a:01:49:93:ee:bc:
a5:79:fa:87:2c:4d:0a:b7:4d:a1:b3:16:50:45:ac:
01:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3B:3D:96:3A:18:E9:09:23:F6:89:9B:D6:AB:5F:B3:57:ED:37:BC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bTs9ljoY6Qkj9omb1qtfs1ftN7w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.176.0/21
Signature Algorithm: sha256WithRSAEncryption
16:f3:38:41:05:46:f4:3c:28:b3:ac:89:77:31:37:1c:03:19:
2a:c3:c2:4c:3c:6d:2b:2d:5a:c8:cb:e0:e0:3b:0c:f8:78:01:
a6:2a:c1:01:8a:c8:9d:f8:17:08:ef:fc:aa:7a:49:d1:bf:e8:
23:44:52:ae:02:70:21:bd:ba:92:5f:70:70:d6:60:50:46:37:
af:71:cd:2a:a7:48:88:d8:c3:52:4f:73:4d:94:49:6b:68:c9:
70:a6:8e:e2:65:87:14:d8:9d:e4:c7:d3:19:21:b0:6c:0c:e0:
48:a8:fb:0e:34:66:d5:ef:e6:b3:5c:0b:8e:ea:5a:10:53:f8:
1c:0a:a1:3c:87:3c:fe:bb:72:f6:36:7e:94:fe:98:5d:d3:bf:
eb:fa:8c:4c:5e:8e:f0:d0:a8:05:4e:19:ca:0b:d8:ee:4c:0e:
6d:cf:30:0a:df:74:30:08:a7:3a:e0:5a:48:3c:4f:d8:10:bd:
18:79:a2:75:a5:9b:da:aa:52:70:26:b7:a4:f6:68:32:17:9f:
c0:b8:63:8f:9e:0e:1a:ed:5b:f5:0c:ea:a7:07:66:9f:eb:29:
4c:8c:96:f2:70:38:79:ec:80:39:2e:63:d6:9c:99:3a:0f:9f:
f4:f4:21:9d:20:44:80:20:74:de:bb:a9:4a:40:88:41:af:cd:
6b:0d:8b:df
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGG4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NTU3MThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDZEM0IzRDk2M0ExOEU5
MDkyM0Y2ODk5QkQ2QUI1RkIzNTdFRDM3QkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCzC85fe3pWq2i2EwY/sXZW05pzf048nwSafhQQMoNodjgf1l/o
Z7+0JYI1m98H9ggRG05UCz7f8Y3PhtZJfeuNjWZFCyhrLtoYD6GjujDcwak1cPcf
VV9HQt5F++XtWpLqv81FifB9wm5xV9FRZLVc/ckXhbhdmeUwyNugBnWdXAVdK35E
0V6UhwBFsT/OYMcYbgNyLepDgx0WauBVQ7U3YPMWUMXVCurXez6030QI7HTtNww2
b/Ovr+OGLJBKY4OoEQphIazoCgC/LONgUS53lwoUSQVkleAOEVE0Kq6qfdipqWOH
et8wYgoBSZPuvKV5+ocsTQq3TaGzFlBFrAENAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUbTs9ljoY6Qkj9omb1qtfs1ftN7wwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2JUczlsam9ZNlFrajlvbWIx
cXRmczFmdE43dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
nrAwDQYJKoZIhvcNAQELBQADggEBABbzOEEFRvQ8KLOsiXcxNxwDGSrDwkw8bSst
WsjL4OA7DPh4AaYqwQGKyJ34Fwjv/Kp6SdG/6CNEUq4CcCG9upJfcHDWYFBGN69x
zSqnSIjYw1JPc02USWtoyXCmjuJlhxTYneTH0xkhsGwM4Eio+w40ZtXv5rNcC47q
WhBT+BwKoTyHPP67cvY2fpT+mF3Tv+v6jExejvDQqAVOGcoL2O5MDm3PMArfdDAI
pzrgWkg8T9gQvRh5onWlm9qqUnAmt6T2aDIXn8C4Y4+eDhrtW/UM6qcHZp/rKUyM
lvJwOHnsgDkuY9acmToPn/T0IZ0gRIAgdN67qUpAiEGvzWsNi98=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org