Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vlyHO_d-XPYI_2OfOCKGsWOXZ5E.roa
File: vlyHO_d-XPYI_2OfOCKGsWOXZ5E.roa (raw, json)
Hash identifier: ujDXCYwNwiigYdn/NJhkKSGarIIjle8OqR0Lhg/ZHEI=
Subject key identifier: BE:5C:87:3B:F7:7E:5C:F6:08:FF:63:9F:38:22:86:B1:63:97:67:91
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1938
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vlyHO_d-XPYI_2OfOCKGsWOXZ5E.roa
Signing time: Sat 22 Oct 2022 06:06:14 +0000
ROA not before: Sat 22 Oct 2022 06:06:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6456 (0x1938)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BE5C873BF77E5CF608FF639F382286B163976791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2f:46:9a:4e:a8:1d:94:cb:7c:38:04:b4:d5:
1f:7c:a4:62:6c:fe:e1:db:ef:15:4a:d5:23:30:c3:
56:82:5a:0f:77:f1:10:41:12:38:9b:de:79:f5:d2:
a0:99:ca:d5:21:0d:17:3a:e6:1f:cf:0b:d8:0c:8c:
57:1b:da:00:8f:7b:95:b5:be:72:bd:61:c5:cc:ee:
4b:57:a3:ee:1f:e1:73:c3:f2:83:e7:20:90:9e:46:
d1:97:60:bc:c9:bf:5d:93:27:d7:a1:54:90:30:57:
f1:82:73:40:3f:ac:95:a0:92:4e:56:ae:cf:62:a3:
9f:09:3c:b2:7f:68:c6:1c:a3:3d:d9:11:76:41:1f:
a7:86:60:fa:db:0c:b4:56:df:2a:8d:b8:0c:8d:e2:
cb:1b:20:27:b0:1b:1f:ef:cb:9c:c9:b3:e6:85:cf:
7c:e1:8b:ce:d8:ba:61:14:c5:79:fd:38:c9:8d:6e:
1a:2c:8a:70:f8:8f:51:c1:ca:0c:ed:e2:52:65:e6:
a4:30:7c:2e:7d:1d:1f:92:fb:fa:38:86:4e:14:47:
b8:43:3e:af:00:a2:73:dc:4c:d7:ac:bf:9d:13:a6:
f8:7e:d0:b2:1e:4e:b3:da:bf:02:83:e9:72:5d:b7:
80:83:bd:91:2d:5e:e9:2c:97:fb:17:91:25:9e:cd:
17:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5C:87:3B:F7:7E:5C:F6:08:FF:63:9F:38:22:86:B1:63:97:67:91
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vlyHO_d-XPYI_2OfOCKGsWOXZ5E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.146.0/24
Signature Algorithm: sha256WithRSAEncryption
41:a5:d4:f0:85:b7:a9:f8:cb:05:24:72:81:a4:5c:d8:43:ef:
5e:93:68:5f:64:90:de:62:07:a3:a5:c0:a0:32:97:d1:3c:84:
85:51:df:10:e0:a0:52:c5:5c:9a:89:ba:88:02:e6:63:c4:93:
64:d4:9d:56:a9:2e:5c:be:97:e8:a3:11:3b:8b:d7:f6:f2:44:
2a:6b:70:84:d4:7b:88:37:57:33:1c:72:6d:d2:95:af:00:8e:
6b:b7:f7:88:0f:9f:12:68:1e:01:f6:79:94:ec:8e:81:c6:f8:
aa:7d:51:07:3c:32:80:eb:c2:d3:f0:85:95:d7:35:64:0d:97:
be:e6:f5:11:83:11:27:3d:c2:df:6d:22:15:a6:bd:72:6b:28:
0f:87:a8:23:8b:ab:f4:22:ad:93:5d:2c:48:98:0b:bd:a0:e1:
d1:0d:0c:61:f7:c9:bb:ea:49:ec:c7:3a:fd:45:58:55:e6:15:
34:5b:7d:a1:e6:32:68:a2:8f:1f:82:ef:24:6f:b0:0f:00:c4:
3e:20:dc:34:e6:88:6c:e1:9b:45:4a:35:46:ec:9d:6b:07:af:
8c:72:6d:ca:aa:5c:6e:71:3c:da:89:5d:ff:c8:58:e2:b2:36:
39:12:a4:99:e3:28:bd:0c:51:31:de:75:b8:23:0f:49:f1:09:
68:a2:7f:e8
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGTgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NjA2MTRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEJFNUM4NzNCRjc3RTVD
RjYwOEZGNjM5RjM4MjI4NkIxNjM5NzY3OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrL0aaTqgdlMt8OAS01R98pGJs/uHb7xVK1SMww1aCWg938RBB
Ejib3nn10qCZytUhDRc65h/PC9gMjFcb2gCPe5W1vnK9YcXM7ktXo+4f4XPD8oPn
IJCeRtGXYLzJv12TJ9ehVJAwV/GCc0A/rJWgkk5Wrs9io58JPLJ/aMYcoz3ZEXZB
H6eGYPrbDLRW3yqNuAyN4ssbICewGx/vy5zJs+aFz3zhi87YumEUxXn9OMmNbhos
inD4j1HBygzt4lJl5qQwfC59HR+S+/o4hk4UR7hDPq8AonPcTNesv50Tpvh+0LIe
TrPavwKD6XJdt4CDvZEtXuksl/sXkSWezRd/AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUvlyHO/d+XPYI/2OfOCKGsWOXZ5EwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3ZseUhPX2QtWFBZSV8yT2ZP
Q0tHc1dPWFo1RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAx
npIwDQYJKoZIhvcNAQELBQADggEBAEGl1PCFt6n4ywUkcoGkXNhD716TaF9kkN5i
B6OlwKAyl9E8hIVR3xDgoFLFXJqJuogC5mPEk2TUnVapLly+l+ijETuL1/byRCpr
cITUe4g3VzMccm3Sla8Ajmu394gPnxJoHgH2eZTsjoHG+Kp9UQc8MoDrwtPwhZXX
NWQNl77m9RGDESc9wt9tIhWmvXJrKA+HqCOLq/QirZNdLEiYC72g4dENDGH3ybvq
SezHOv1FWFXmFTRbfaHmMmiijx+C7yRvsA8AxD4g3DTmiGzhm0VKNUbsnWsHr4xy
bcqqXG5xPNqJXf/IWOKyNjkSpJnjKL0MUTHedbgjD0nxCWiif+g=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org