Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fdvCHeYaV5Hl_XjOtOJwkwdAnR0.roa
File: fdvCHeYaV5Hl_XjOtOJwkwdAnR0.roa (raw, json)
Hash identifier: uXUp1TsB1qgbGwO2ATzIBa3v8oQt0jbiaFTPJjjMMZY=
Subject key identifier: 7D:DB:C2:1D:E6:1A:57:91:E5:FD:78:CE:B4:E2:70:93:07:40:9D:1D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1411
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fdvCHeYaV5Hl_XjOtOJwkwdAnR0.roa
Signing time: Fri 29 Apr 2022 10:22:43 +0000
ROA not before: Fri 29 Apr 2022 10:22:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.158.64.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5137 (0x1411)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Apr 29 10:22:43 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7DDBC21DE61A5791E5FD78CEB4E2709307409D1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:97:f8:7c:de:77:86:46:cc:79:ac:36:36:04:
34:ba:4e:a2:2f:5a:17:88:c5:08:0d:23:0d:1f:06:
0c:94:d8:31:e5:8c:67:ab:4d:90:9e:70:c8:93:25:
57:30:ae:0c:be:74:2d:69:f9:fa:1e:fc:4c:04:aa:
fc:07:04:fc:35:25:bd:38:b0:6e:09:2b:78:87:ca:
e8:f5:87:63:c6:c8:43:f8:49:b2:3a:44:05:47:bc:
28:2c:4d:64:60:09:e3:f8:4a:20:bb:16:2d:15:61:
89:9d:45:6b:8f:a8:d7:15:dd:c5:9d:d0:9b:20:93:
35:35:a1:5a:ee:5e:70:3b:be:ad:78:ed:92:8f:d6:
2f:7c:42:e7:4f:31:5e:cb:ed:2f:df:e7:3f:fa:d1:
f2:4d:ac:c1:41:cf:88:e6:2b:1a:1e:c7:ec:d9:01:
d2:c9:d6:5e:db:9f:4d:9b:56:83:46:88:86:17:4a:
72:3d:46:0d:fe:14:ac:96:8a:52:cc:63:6b:7c:d6:
fd:d2:fe:de:d0:7b:30:fb:82:1f:82:6d:af:a9:7f:
84:6a:8f:17:c8:f0:67:5f:68:47:87:dc:95:0d:5a:
de:62:43:50:c3:8d:64:c8:58:dd:7b:b7:91:28:c3:
e4:25:bd:f3:c4:60:3d:06:81:2c:b8:b4:55:ce:89:
fe:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:DB:C2:1D:E6:1A:57:91:E5:FD:78:CE:B4:E2:70:93:07:40:9D:1D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fdvCHeYaV5Hl_XjOtOJwkwdAnR0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.64.0/21
Signature Algorithm: sha256WithRSAEncryption
77:61:00:87:d0:78:5d:e0:b6:0e:7d:8f:15:d9:42:bf:38:59:
fe:cd:e5:63:7b:58:8c:ef:73:e6:ab:0d:b5:2a:94:29:06:ff:
77:4c:a4:22:1c:c7:4c:58:c2:e1:13:5b:77:97:91:4c:1b:3e:
33:3a:4e:42:2b:4e:59:71:72:c3:68:53:32:03:e4:c0:a2:6b:
e1:c4:3d:19:33:2d:e7:46:7e:5d:ec:74:93:7f:49:b1:b8:b6:
45:47:02:1e:33:f3:b2:0e:e5:9e:1d:e3:d2:60:a0:de:98:6b:
57:09:49:eb:08:25:dc:9e:88:88:58:12:b1:50:30:31:ec:88:
6c:10:ea:92:23:31:f3:1c:f8:1b:54:b9:66:61:8e:05:03:84:
b0:7b:e6:da:69:74:72:ec:ae:02:dc:a7:c0:83:47:8a:d2:db:
41:ea:b2:7a:b2:ff:60:c4:90:5d:21:5a:7b:18:9e:79:1e:3b:
bb:ba:da:b9:f3:f4:70:35:7c:34:3b:96:1c:e4:86:c5:57:1c:
24:f2:e8:f9:d4:5b:f7:24:2a:f9:6f:d8:ba:8a:f8:83:9e:90:
95:3e:88:00:cf:3e:f9:c7:06:2b:0f:9d:37:d0:95:76:06:d1:
06:53:5a:49:25:89:95:86:c2:9d:d8:26:3a:6d:c6:4b:27:c4:
7b:16:4c:d9
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFBEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA0Mjkx
MDIyNDNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDdEREJDMjFERTYxQTU3
OTFFNUZENzhDRUI0RTI3MDkzMDc0MDlEMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD8l/h83neGRsx5rDY2BDS6TqIvWheIxQgNIw0fBgyU2DHljGer
TZCecMiTJVcwrgy+dC1p+foe/EwEqvwHBPw1Jb04sG4JK3iHyuj1h2PGyEP4SbI6
RAVHvCgsTWRgCeP4SiC7Fi0VYYmdRWuPqNcV3cWd0JsgkzU1oVruXnA7vq147ZKP
1i98QudPMV7L7S/f5z/60fJNrMFBz4jmKxoex+zZAdLJ1l7bn02bVoNGiIYXSnI9
Rg3+FKyWilLMY2t81v3S/t7QezD7gh+Cba+pf4RqjxfI8GdfaEeH3JUNWt5iQ1DD
jWTIWN17t5Eow+QlvfPEYD0GgSy4tFXOif59AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUfdvCHeYaV5Hl/XjOtOJwkwdAnR0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2ZkdkNIZVlhVjVIbF9Yak90
T0p3a3dkQW5SMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
nkAwDQYJKoZIhvcNAQELBQADggEBAHdhAIfQeF3gtg59jxXZQr84Wf7N5WN7WIzv
c+arDbUqlCkG/3dMpCIcx0xYwuETW3eXkUwbPjM6TkIrTllxcsNoUzID5MCia+HE
PRkzLedGfl3sdJN/SbG4tkVHAh4z87IO5Z4d49JgoN6Ya1cJSesIJdyeiIhYErFQ
MDHsiGwQ6pIjMfMc+BtUuWZhjgUDhLB75tppdHLsrgLcp8CDR4rS20Hqsnqy/2DE
kF0hWnsYnnkeO7u62rnz9HA1fDQ7lhzkhsVXHCTy6PnUW/ckKvlv2LqK+IOekJU+
iADPPvnHBisPnTfQlXYG0QZTWkkliZWGwp3YJjptxksnxHsWTNk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org