Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/crZHYc1yEgTn-Yp8ThZmj7lLPSw.roa
File: crZHYc1yEgTn-Yp8ThZmj7lLPSw.roa (raw, json)
Hash identifier: GmvuyNyZPrQH8V1rTyCGVTVdRnEITYjUtG1pZ50qZ4U=
Subject key identifier: 72:B6:47:61:CD:72:12:04:E7:F9:8A:7C:4E:16:66:8F:B9:4B:3D:2C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1291
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/crZHYc1yEgTn-Yp8ThZmj7lLPSw.roa
Signing time: Wed 29 Sep 2021 02:54:44 +0000
ROA not before: Wed 29 Sep 2021 02:54:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4753 (0x1291)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=72B64761CD721204E7F98A7C4E16668FB94B3D2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d4:da:14:d5:be:ce:ec:de:4b:4e:07:84:66:
92:10:3c:dc:7f:66:d7:74:29:63:26:78:12:e8:b4:
53:52:8a:04:ae:07:a5:e3:c6:da:19:cc:a5:34:62:
9e:89:a5:b7:50:97:32:ab:2e:79:97:14:a3:59:1d:
2f:2a:f0:7d:ad:3f:90:c1:2e:aa:c9:d9:4e:b0:69:
c3:42:e2:cd:54:d8:5e:19:fc:a1:4b:92:27:c4:7b:
1c:d4:7c:c6:9d:8e:09:f4:ac:c4:cc:77:c4:c6:ff:
54:f3:56:d8:ae:ed:80:d2:ff:e2:0f:64:f1:06:9d:
3f:28:57:c7:7f:31:0d:43:58:00:d1:2d:88:b0:f0:
79:02:c2:53:ad:a9:a8:6d:09:a9:b8:ad:3d:37:7f:
2d:9d:48:d5:a5:3c:d3:dc:b5:8d:f2:42:38:01:13:
70:0a:c6:aa:22:36:b7:31:82:e3:f5:6a:2d:19:f6:
dd:6e:b7:62:f0:2f:24:f1:ca:75:7f:eb:0f:6f:7b:
7d:43:ce:aa:75:aa:58:75:a1:52:fb:23:3d:4a:5d:
88:60:b9:fb:4a:15:58:78:2d:ef:3d:10:b1:67:f0:
36:e9:54:45:bd:b5:b1:e5:ea:3d:9a:47:55:7c:af:
0f:69:bf:d8:41:e7:20:7f:50:6e:94:06:af:d6:4b:
9a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B6:47:61:CD:72:12:04:E7:F9:8A:7C:4E:16:66:8F:B9:4B:3D:2C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/crZHYc1yEgTn-Yp8ThZmj7lLPSw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.145.0/24
Signature Algorithm: sha256WithRSAEncryption
47:f7:64:b1:42:d9:a1:e8:ea:e1:2b:33:08:41:af:c2:24:7a:
48:59:b5:9e:4a:66:f5:c0:d8:04:48:00:b2:f2:6f:c7:b1:f7:
03:0a:dc:e2:df:50:a3:e5:8b:92:c7:79:fb:96:79:68:46:7f:
00:69:c5:2d:ff:90:9f:1e:b9:ee:eb:6a:c4:18:2a:29:af:b4:
e5:d3:b5:65:14:d9:db:fb:a9:51:d4:6a:23:33:b8:87:fa:16:
62:0f:07:bc:ec:98:36:51:46:90:74:c9:e7:23:8a:db:a6:a6:
79:d6:0a:18:76:44:ea:07:0f:5e:a1:2d:b2:e3:a3:9f:cc:74:
47:74:bc:d9:c4:a7:3f:28:20:cd:11:fa:73:e6:46:c7:88:1d:
52:12:4b:50:37:0e:03:21:f9:a7:17:b5:af:65:7b:7e:eb:3a:
83:20:4f:7c:61:72:03:35:51:91:fd:96:80:e1:0b:ea:56:98:
1a:9e:56:10:fe:c9:a9:38:03:60:fd:4b:72:0d:9c:3e:a2:9d:
0e:83:b6:06:d7:54:30:9f:28:a9:ca:ff:80:d8:e1:34:37:35:
5c:ea:bb:cb:10:06:03:3d:e7:7b:b7:18:40:5f:0d:3e:7b:98:
53:74:ea:d9:e4:4a:1c:25:65:3e:9a:19:48:7f:dc:a6:02:f2:
cf:29:65:a0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEpEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0NDRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDcyQjY0NzYxQ0Q3MjEy
MDRFN0Y5OEE3QzRFMTY2NjhGQjk0QjNEMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC21NoU1b7O7N5LTgeEZpIQPNx/Ztd0KWMmeBLotFNSigSuB6Xj
xtoZzKU0Yp6JpbdQlzKrLnmXFKNZHS8q8H2tP5DBLqrJ2U6wacNC4s1U2F4Z/KFL
kifEexzUfMadjgn0rMTMd8TG/1TzVtiu7YDS/+IPZPEGnT8oV8d/MQ1DWADRLYiw
8HkCwlOtqahtCam4rT03fy2dSNWlPNPctY3yQjgBE3AKxqoiNrcxguP1ai0Z9t1u
t2LwLyTxynV/6w9ve31Dzqp1qlh1oVL7Iz1KXYhguftKFVh4Le89ELFn8DbpVEW9
tbHl6j2aR1V8rw9pv9hB5yB/UG6UBq/WS5rbAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUcrZHYc1yEgTn+Yp8ThZmj7lLPSwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2NyWkhZYzF5RWdUbi1ZcDhU
aFptajdsTFBTdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAx
npEwDQYJKoZIhvcNAQELBQADggEBAEf3ZLFC2aHo6uErMwhBr8IkekhZtZ5KZvXA
2ARIALLyb8ex9wMK3OLfUKPli5LHefuWeWhGfwBpxS3/kJ8eue7rasQYKimvtOXT
tWUU2dv7qVHUaiMzuIf6FmIPB7zsmDZRRpB0yecjitumpnnWChh2ROoHD16hLbLj
o5/MdEd0vNnEpz8oIM0R+nPmRseIHVISS1A3DgMh+acXta9le37rOoMgT3xhcgM1
UZH9loDhC+pWmBqeVhD+yak4A2D9S3INnD6inQ6DtgbXVDCfKKnK/4DY4TQ3NVzq
u8sQBgM953u3GEBfDT57mFN06tnkShwlZT6aGUh/3KYC8s8pZaA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org