Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/j0ZoLGmmk_ma-Oq_-xoPbY25LVw.roa
File: j0ZoLGmmk_ma-Oq_-xoPbY25LVw.roa (raw, json)
Hash identifier: Z5QLgIEwNDuZhoNT7GZz0wwLLdSj042Rv3f7tWz1oFM=
Subject key identifier: 8F:46:68:2C:69:A6:93:F9:9A:F8:EA:BF:FB:1A:0F:6D:8D:B9:2D:5C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 12B3
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/j0ZoLGmmk_ma-Oq_-xoPbY25LVw.roa
Signing time: Wed 29 Sep 2021 02:54:51 +0000
ROA not before: Wed 29 Sep 2021 02:54:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 49.159.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4787 (0x12b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 29 02:54:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8F46682C69A693F99AF8EABFFB1A0F6D8DB92D5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6d:3f:7b:75:4a:7a:c2:9a:fe:93:6b:9b:8d:
ad:41:47:c6:d8:26:46:05:bd:8b:ce:bc:ca:84:e5:
df:63:8c:7b:5b:02:b8:a1:91:b6:43:40:04:24:64:
d0:8b:91:21:62:7e:17:b3:7b:d4:45:e7:63:50:73:
6f:24:70:40:17:1c:ac:d4:2f:05:93:70:f6:ab:69:
57:cf:e3:89:6c:ab:8e:32:38:7b:36:b4:2a:a1:f4:
ed:d6:4f:2d:03:6a:8a:0b:9d:5f:39:52:42:b3:20:
d7:f1:59:f6:a4:a4:bc:15:b0:56:4f:d1:96:4b:b3:
21:b0:74:66:3b:a1:a3:b7:c2:46:9e:b0:4e:7e:00:
de:43:03:e0:0f:51:c5:24:a1:8f:1d:7a:55:7d:1c:
da:f0:d0:48:81:87:44:b7:8a:bf:a7:e1:c3:a6:0e:
36:87:b1:35:7b:a5:f6:cd:8a:c9:a2:52:6e:04:2b:
4e:6c:f2:06:24:3d:86:8a:a0:52:63:ad:78:98:ec:
55:01:79:9d:ab:a0:d2:83:b9:83:55:01:3b:46:a3:
78:c1:c1:ce:99:3b:b3:74:f6:80:c0:17:f6:f2:41:
ca:88:39:6a:5f:13:36:62:24:20:b6:15:7e:af:4e:
ed:9f:05:59:43:1c:83:97:df:e6:bb:29:4a:3c:0b:
fb:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:46:68:2C:69:A6:93:F9:9A:F8:EA:BF:FB:1A:0F:6D:8D:B9:2D:5C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/j0ZoLGmmk_ma-Oq_-xoPbY25LVw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.144.0/21
Signature Algorithm: sha256WithRSAEncryption
41:56:96:14:27:00:b0:7d:c5:3c:13:fe:d1:fa:90:54:ce:64:
11:20:13:ec:fc:5c:69:b1:77:db:de:4d:dc:58:f6:27:a3:12:
02:ea:66:a0:c9:19:b4:44:23:33:53:11:ab:9c:e1:9b:a9:7e:
6d:01:15:35:54:31:a6:9e:4d:4f:5a:b0:2e:24:3b:f8:91:30:
fa:fc:2b:63:c4:fb:f6:32:32:44:5c:fb:7b:c8:35:a7:3b:ec:
b1:54:a6:6f:41:6f:83:57:72:2a:d7:a3:de:5f:7b:a3:67:da:
eb:f7:d6:a3:6d:72:b2:33:03:15:18:0b:45:78:88:32:3f:fc:
38:c0:80:b1:4f:e2:ec:56:92:c0:b2:bd:c2:78:ca:8c:96:3e:
e0:f9:88:3d:0e:61:74:17:e1:b6:54:fa:b8:2a:9c:32:d0:2a:
c7:29:ed:29:39:7e:d5:f1:4a:75:72:ee:4a:a6:b9:7c:dc:6c:
de:df:0a:fe:41:f6:07:e7:03:3a:46:58:cd:0a:75:70:82:3f:
03:fa:91:92:10:41:f7:a2:52:a9:c1:3a:7e:a5:cc:4f:f7:5b:
02:0f:94:d2:89:e6:26:b1:c5:cc:f6:71:08:99:9c:d5:15:7d:
d9:76:b7:45:46:41:a5:b6:9b:71:37:03:4c:b6:89:90:ed:66:
8f:e6:95:f0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICErMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0NTFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDhGNDY2ODJDNjlBNjkz
Rjk5QUY4RUFCRkZCMUEwRjZEOERCOTJENUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDabT97dUp6wpr+k2ubja1BR8bYJkYFvYvOvMqE5d9jjHtbArih
kbZDQAQkZNCLkSFifheze9RF52NQc28kcEAXHKzULwWTcParaVfP44lsq44yOHs2
tCqh9O3WTy0DaooLnV85UkKzINfxWfakpLwVsFZP0ZZLsyGwdGY7oaO3wkaesE5+
AN5DA+APUcUkoY8delV9HNrw0EiBh0S3ir+n4cOmDjaHsTV7pfbNismiUm4EK05s
8gYkPYaKoFJjrXiY7FUBeZ2roNKDuYNVATtGo3jBwc6ZO7N09oDAF/byQcqIOWpf
EzZiJCC2FX6vTu2fBVlDHIOX3+a7KUo8C/s1AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUj0ZoLGmmk/ma+Oq/+xoPbY25LVwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2owWm9MR21ta19tYS1PcV8t
eG9QYlkyNUxWdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
n5AwDQYJKoZIhvcNAQELBQADggEBAEFWlhQnALB9xTwT/tH6kFTOZBEgE+z8XGmx
d9veTdxY9iejEgLqZqDJGbREIzNTEauc4Zupfm0BFTVUMaaeTU9asC4kO/iRMPr8
K2PE+/YyMkRc+3vINac77LFUpm9Bb4NXcirXo95fe6Nn2uv31qNtcrIzAxUYC0V4
iDI//DjAgLFP4uxWksCyvcJ4yoyWPuD5iD0OYXQX4bZU+rgqnDLQKscp7Sk5ftXx
SnVy7kqmuXzcbN7fCv5B9gfnAzpGWM0KdXCCPwP6kZIQQfeiUqnBOn6lzE/3WwIP
lNKJ5iaxxcz2cQiZnNUVfdl2t0VGQaW2m3E3A0y2iZDtZo/mlfA=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:39 2023 by rpki-client on console-ams.rpki-client.org