Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JDA/Jmi20eo3Fvjvkmq45wGoiin7iH0.roa
File: Jmi20eo3Fvjvkmq45wGoiin7iH0.roa (raw, json)
Hash identifier: jGFuR3xTbksoY5ETSwK3NeOHwWENa5vuc0MLZ3mBHIA=
Subject key identifier: 26:68:B6:D1:EA:37:16:F8:EF:92:6A:B8:E7:01:A8:8A:29:FB:88:7D
Certificate issuer: /CN=86F6D06B4049386A106E5ED22656A93D9F355274
Certificate serial: 05
Authority key identifier: 86:F6:D0:6B:40:49:38:6A:10:6E:5E:D2:26:56:A9:3D:9F:35:52:74
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/Jmi20eo3Fvjvkmq45wGoiin7iH0.roa
Signing time: Wed 06 Dec 2023 07:13:48 +0000
ROA not before: Wed 06 Dec 2023 07:13:48 +0000
ROA not after: Thu 28 Nov 2024 15:30:20 +0000
asID: 18041
IP address blocks: 210.79.154.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86F6D06B4049386A106E5ED22656A93D9F355274
Validity
Not Before: Dec 6 07:13:48 2023 GMT
Not After : Nov 28 15:30:20 2024 GMT
Subject: CN=2668B6D1EA3716F8EF926AB8E701A88A29FB887D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:04:a2:e2:78:c3:9f:d1:e1:43:e3:ab:65:36:
f3:c2:d1:c6:4b:a4:86:7d:e8:55:67:d7:39:9d:af:
79:a1:da:fe:df:72:bc:eb:ee:59:4c:4f:c7:83:7a:
75:f4:83:f0:ee:07:9c:b1:d2:2f:c4:e4:cd:b0:0b:
42:0c:7b:34:f6:14:15:95:35:5f:3f:17:81:a1:11:
7b:83:cf:f5:16:06:c5:83:ba:ac:9e:1f:d7:dd:b6:
0f:e1:1c:0a:34:3f:9b:78:27:f7:b0:79:0e:93:31:
7a:1d:08:73:42:3e:09:8e:b2:eb:b2:fa:20:bd:2d:
7c:07:ae:25:91:3f:af:c4:84:02:93:ea:bb:8f:c4:
35:87:d5:8e:4e:f0:67:63:0f:3d:e8:10:a5:62:48:
fe:99:d1:9b:cc:10:28:cb:f7:95:98:4f:32:63:4b:
70:72:ce:fd:e8:e9:18:8d:b8:cc:52:94:6f:88:65:
57:8a:8a:c1:49:44:b9:da:e2:3b:bd:f5:8b:88:b5:
db:31:68:62:4c:10:f2:45:47:3c:d4:b1:e7:9d:92:
5f:76:39:b8:ca:a7:24:ab:fa:2e:9b:4c:75:60:b6:
54:fe:31:52:39:dd:75:ae:72:52:6c:47:ad:78:6f:
70:fc:9b:06:aa:ed:08:0b:8d:11:36:ce:bc:85:9b:
44:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:68:B6:D1:EA:37:16:F8:EF:92:6A:B8:E7:01:A8:8A:29:FB:88:7D
X509v3 Authority Key Identifier:
keyid:86:F6:D0:6B:40:49:38:6A:10:6E:5E:D2:26:56:A9:3D:9F:35:52:74
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/Jmi20eo3Fvjvkmq45wGoiin7iH0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.79.154.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:d5:62:1e:7d:28:9b:f4:79:fc:5c:f8:36:86:67:f0:db:07:
db:8d:4c:1e:d8:05:ff:4e:63:3c:86:56:9c:ef:15:1e:38:34:
c1:53:f7:da:3e:c2:bf:42:13:16:d3:2c:a4:ba:69:9b:fd:84:
07:2f:b1:75:28:5c:a9:37:68:60:1a:98:3a:db:e3:a2:ea:78:
42:ff:99:95:7a:ca:cf:27:1f:f5:51:be:7e:6a:3b:d9:7d:72:
87:04:da:f8:a6:93:f0:c3:72:79:f2:cb:19:2a:c6:62:79:82:
09:00:0c:c4:12:86:c1:ce:e0:3e:69:94:a4:f7:52:02:33:4f:
3f:2e:49:7a:bb:3f:06:8b:c1:86:6b:ff:3a:4d:47:ca:4b:76:
eb:5b:f7:22:ff:81:c9:fb:c9:28:65:e0:bc:bb:40:d7:3f:94:
c0:2a:2c:64:21:ea:36:97:25:d7:78:32:ab:85:c2:a3:69:52:
56:8e:b2:49:6e:a7:2d:5b:4d:78:b9:b2:56:b6:4d:c6:1d:b7:
9a:cc:ac:78:05:c2:74:3e:5b:17:38:af:03:51:b0:db:61:8b:
88:6a:ef:19:da:5f:5a:97:72:2b:9d:21:40:f7:2f:b8:ce:b4:
57:84:58:5b:20:aa:b4:f9:5e:87:8f:bb:7d:42:38:f1:ad:30:
40:93:90:88
-----BEGIN CERTIFICATE-----
MIIEyzCCA7OgAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NkY2
RDA2QjQwNDkzODZBMTA2RTVFRDIyNjU2QTkzRDlGMzU1Mjc0MB4XDTIzMTIwNjA3
MTM0OFoXDTI0MTEyODE1MzAyMFowMzExMC8GA1UEAxMoMjY2OEI2RDFFQTM3MTZG
OEVGOTI2QUI4RTcwMUE4OEEyOUZCODg3RDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJUEouJ4w5/R4UPjq2U288LRxkukhn3oVWfXOZ2veaHa/t9yvOvu
WUxPx4N6dfSD8O4HnLHSL8TkzbALQgx7NPYUFZU1Xz8XgaERe4PP9RYGxYO6rJ4f
1922D+EcCjQ/m3gn97B5DpMxeh0Ic0I+CY6y67L6IL0tfAeuJZE/r8SEApPqu4/E
NYfVjk7wZ2MPPegQpWJI/pnRm8wQKMv3lZhPMmNLcHLO/ejpGI24zFKUb4hlV4qK
wUlEudriO731i4i12zFoYkwQ8kVHPNSx552SX3Y5uMqnJKv6LptMdWC2VP4xUjnd
da5yUmxHrXhvcPybBqrtCAuNETbOvIWbRNUCAwEAAaOCAegwggHkMB0GA1UdDgQW
BBQmaLbR6jcW+O+SarjnAaiKKfuIfTAfBgNVHSMEGDAWgBSG9tBrQEk4ahBuXtIm
Vqk9nzVSdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFkGA1UdHwRSMFAwTqBM
oEqGSHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9KREEvaHZi
UWEwQkpPR29RYmw3U0psYXBQWjgxVW5RLmNybDBgBggrBgEFBQcBAQRUMFIwUAYI
KwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9o
dmJRYTBCSk9Hb1FibDdTSmxhcFBaODFVblEuY2VyMA4GA1UdDwEB/wQEAwIHgDCB
mQYIKwYBBQUHAQsEgYwwgYkwVAYIKwYBBQUHMAuGSHJzeW5jOi8vcnBraWNhLnR3
bmljLnR3L3Jwa2kvVFdOSUNDQS9KREEvSm1pMjBlbzNGdmp2a21xNDV3R29paW43
aUgwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAv
bm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdJPmjANBgkq
hkiG9w0BAQsFAAOCAQEAtNViHn0om/R5/Fz4NoZn8NsH241MHtgF/05jPIZWnO8V
Hjg0wVP32j7Cv0ITFtMspLppm/2EBy+xdShcqTdoYBqYOtvjoup4Qv+ZlXrKzycf
9VG+fmo72X1yhwTa+KaT8MNyefLLGSrGYnmCCQAMxBKGwc7gPmmUpPdSAjNPPy5J
ers/BovBhmv/Ok1Hykt261v3Iv+ByfvJKGXgvLtA1z+UwCosZCHqNpcl13gyq4XC
o2lSVo6ySW6nLVtNeLmyVrZNxh23msyseAXCdD5bFzivA1Gw22GLiGrvGdpfWpdy
K50hQPcvuM60V4RYWyCqtPleh4+7fUI48a0wQJOQiA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:15:04 2025 by rpki-client