Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JOEo0zdt7j0o6cFEA7IGd2kfFRs.roa
File: JOEo0zdt7j0o6cFEA7IGd2kfFRs.roa (raw, json)
Hash identifier: a6dY9TPFJ6NmS5gcDDW7zjUONSLIRPoBv4NqpWhHvP4=
Subject key identifier: 24:E1:28:D3:37:6D:EE:3D:28:E9:C1:44:03:B2:06:77:69:1F:15:1B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CB7
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JOEo0zdt7j0o6cFEA7IGd2kfFRs.roa
Signing time: Wed 29 Sep 2021 02:50:10 +0000
ROA not before: Wed 29 Sep 2021 02:50:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 219.86.80.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3255 (0xcb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=24E128D3376DEE3D28E9C14403B20677691F151B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:61:1a:11:69:b0:15:73:52:61:90:79:7f:cc:
75:64:f4:3c:91:4d:58:05:a9:9b:a3:c2:61:a7:91:
14:4b:f8:d8:4c:3c:fd:ea:4b:ca:97:dc:10:ea:c9:
a5:b1:69:58:30:69:33:a1:5d:47:72:f9:36:8c:16:
91:00:f5:61:f8:46:7b:f7:bc:93:64:3b:ef:8d:bf:
68:05:e1:75:d2:c3:ab:59:b8:c8:4f:31:f1:7e:da:
85:bf:e3:9a:34:b2:f3:58:10:2b:73:76:d8:26:d2:
a8:20:bd:25:23:53:b9:d6:0c:d1:c2:51:86:bb:75:
68:be:45:8b:e4:e5:05:d2:81:1b:ac:45:91:ac:3e:
23:47:d7:12:12:97:42:ae:ed:b3:5b:e9:9f:2f:5b:
50:22:2c:7a:02:60:60:8d:fd:87:38:ff:ab:30:d9:
0e:23:71:4f:5d:ce:49:41:86:04:b9:0c:0a:91:a5:
83:4a:50:ed:d5:a2:0e:bc:59:66:e2:70:b2:ba:cf:
1a:03:0d:70:89:cc:7d:c3:71:3d:fa:70:ee:17:95:
d4:1a:df:3a:56:62:15:c6:86:f6:a2:84:6f:e8:b3:
05:a5:59:a6:7b:0e:89:59:52:f3:75:ae:09:a5:14:
b7:95:f8:6c:3c:a5:73:05:4e:45:e7:0d:34:db:db:
a7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E1:28:D3:37:6D:EE:3D:28:E9:C1:44:03:B2:06:77:69:1F:15:1B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JOEo0zdt7j0o6cFEA7IGd2kfFRs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.86.80.0/21
Signature Algorithm: sha256WithRSAEncryption
40:7c:89:3c:52:4b:67:9a:5b:2b:d2:9d:c9:73:f9:3e:56:cd:
82:bf:39:12:94:dd:16:82:18:73:d6:36:ad:2e:b5:51:20:0c:
69:01:03:ef:7d:32:56:da:20:80:06:3d:c2:c1:ad:1b:ec:75:
37:3c:34:e1:60:8b:c4:aa:cf:aa:fa:de:06:73:f5:e1:26:35:
2c:af:ac:eb:b6:8d:3b:91:78:32:cb:3e:0f:c8:9b:f0:92:17:
37:ff:f7:74:d5:81:d8:e9:03:f7:a1:b3:f7:be:1a:55:bd:66:
28:40:ac:c0:2c:68:f1:15:0b:a6:0e:a1:7f:cc:a2:07:8f:20:
3b:08:39:67:8b:04:2e:43:a1:3d:90:d3:91:13:6f:d3:89:18:
3a:b1:8f:de:2e:73:37:1f:2f:f2:7e:37:1c:88:85:28:96:da:
ce:30:4f:24:81:e3:9b:11:a1:75:48:e5:86:b8:22:7c:f8:81:
fa:e4:b1:cc:b7:bf:46:ea:04:5a:9d:1f:0f:88:fe:6c:9e:3c:
a7:24:66:2c:89:64:c2:b3:04:b1:b6:e9:2a:83:04:f6:3f:b8:
33:54:f8:33:28:47:d9:bd:ff:bf:95:07:75:4f:7b:2a:1a:63:
d4:b9:16:bf:38:1f:c0:ed:1a:f3:2e:bb:75:aa:73:0e:62:01:
f5:3b:09:bd
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDLcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjUwMTBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDI0RTEyOEQzMzc2REVF
M0QyOEU5QzE0NDAzQjIwNjc3NjkxRjE1MUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4YRoRabAVc1JhkHl/zHVk9DyRTVgFqZujwmGnkRRL+NhMPP3q
S8qX3BDqyaWxaVgwaTOhXUdy+TaMFpEA9WH4Rnv3vJNkO++Nv2gF4XXSw6tZuMhP
MfF+2oW/45o0svNYECtzdtgm0qggvSUjU7nWDNHCUYa7dWi+RYvk5QXSgRusRZGs
PiNH1xISl0Ku7bNb6Z8vW1AiLHoCYGCN/Yc4/6sw2Q4jcU9dzklBhgS5DAqRpYNK
UO3Vog68WWbicLK6zxoDDXCJzH3DcT36cO4XldQa3zpWYhXGhvaihG/oswWlWaZ7
DolZUvN1rgmlFLeV+Gw8pXMFTkXnDTTb26dFAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUJOEo0zdt7j0o6cFEA7IGd2kfFRswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSk9FbzB6ZHQ3ajBvNmNG
RUE3SUdkMmtmRlJzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
A9tWUDANBgkqhkiG9w0BAQsFAAOCAQEAQHyJPFJLZ5pbK9KdyXP5PlbNgr85EpTd
FoIYc9Y2rS61USAMaQED730yVtoggAY9wsGtG+x1Nzw04WCLxKrPqvreBnP14SY1
LK+s67aNO5F4Mss+D8ib8JIXN//3dNWB2OkD96Gz974aVb1mKECswCxo8RULpg6h
f8yiB48gOwg5Z4sELkOhPZDTkRNv04kYOrGP3i5zNx8v8n43HIiFKJbazjBPJIHj
mxGhdUjlhrgifPiB+uSxzLe/RuoEWp0fD4j+bJ48pyRmLIlkwrMEsbbpKoME9j+4
M1T4MyhH2b3/v5UHdU97Khpj1LkWvzgfwO0a8y67dapzDmIB9TsJvQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org