Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NLZwNk8lRDGtGZ2JlDfbo_nkWMY.roa
File: NLZwNk8lRDGtGZ2JlDfbo_nkWMY.roa (raw, json)
Hash identifier: diJ//0ATPHGsuNCTwHmHiWRxQQDO4ir9INNpgeUPMCU=
Subject key identifier: 34:B6:70:36:4F:25:44:31:AD:19:9D:89:94:37:DB:A3:F9:E4:58:C6
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C8D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NLZwNk8lRDGtGZ2JlDfbo_nkWMY.roa
Signing time: Wed 29 Sep 2021 02:49:57 +0000
ROA not before: Wed 29 Sep 2021 02:49:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4662
IP address blocks: 210.62.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3213 (0xc8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=34B670364F254431AD199D899437DBA3F9E458C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:13:dd:98:a8:2c:0c:2e:19:0c:33:29:cb:3a:
7b:48:9c:0e:74:26:53:b9:42:27:1b:18:fd:54:f5:
13:44:27:0a:03:88:b9:12:cc:0b:b6:39:bf:89:31:
51:5f:d8:2b:62:6f:ae:57:f9:a6:53:e6:72:9a:6d:
8e:a6:ad:98:a2:cf:36:ca:24:52:49:63:93:03:b2:
9f:dd:75:44:80:a5:dd:d8:d0:f7:95:eb:45:50:4f:
7e:d7:9d:8a:32:b0:5d:1c:0c:26:4f:c3:89:8b:27:
f8:45:4a:48:67:81:01:9f:28:c0:59:df:cb:7b:90:
21:94:60:f9:44:f2:74:45:fc:80:5f:5e:57:65:20:
49:47:5a:ec:8c:09:43:35:96:55:fe:cc:bf:12:61:
4b:57:6a:6d:23:49:09:bd:60:b9:dd:b2:db:88:36:
71:ea:81:76:7b:6e:b9:4d:06:41:dd:8a:38:65:27:
f8:63:96:c9:1c:48:d8:eb:65:57:5c:8e:d8:ee:68:
37:00:d5:3a:1e:50:60:8e:41:17:bb:27:80:90:7c:
6f:d3:51:f0:86:b7:eb:f8:86:69:30:52:a9:94:be:
71:e3:48:a5:30:4d:87:40:b8:96:a9:19:bf:3b:8f:
5b:be:b9:0f:9c:39:e0:ee:05:d3:7f:a7:d6:d1:e9:
ea:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B6:70:36:4F:25:44:31:AD:19:9D:89:94:37:DB:A3:F9:E4:58:C6
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NLZwNk8lRDGtGZ2JlDfbo_nkWMY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.192.0/19
Signature Algorithm: sha256WithRSAEncryption
50:ae:86:2f:e7:65:d2:df:15:7b:99:2e:b4:aa:ba:ff:98:4d:
3c:be:6f:6c:88:d5:a0:c8:0b:48:3f:f1:c4:94:e6:ae:95:35:
3e:2e:c8:8d:c8:09:f8:55:67:20:12:9c:02:da:5a:d1:e8:ee:
e6:85:03:53:8f:9f:df:05:45:1a:e3:b7:92:df:8d:93:2b:7a:
d2:b8:db:72:d0:5c:4b:66:cd:6b:d1:48:75:eb:0b:1e:33:ca:
49:cb:13:ee:cb:f6:59:66:45:09:54:42:c9:de:f9:0d:9c:37:
c8:9f:83:c7:2a:54:7f:d1:92:e0:68:99:13:83:e5:ac:c6:81:
98:d2:0c:57:b0:6f:c3:61:f5:ac:d4:b6:e8:18:c7:e5:be:b2:
c0:13:fd:13:1f:b3:c1:d5:15:c8:f8:6f:7e:cb:47:b6:79:25:
bf:8c:e8:42:bf:d9:e4:97:f9:ad:9c:45:61:26:22:5a:7b:31:
eb:d8:10:e7:fb:b1:94:fa:2c:9a:60:7e:e0:3b:80:8e:47:06:
8b:6f:a3:69:13:04:93:ef:01:b9:23:fd:f3:8b:98:7a:0a:b3:
14:79:34:3c:06:37:d6:47:e5:25:62:c8:03:bd:0d:78:8a:58:
ec:35:bb:7e:94:bd:29:04:68:17:c2:e5:45:2d:b0:96:d8:0a:
ab:55:19:10
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDI0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjQ5NTdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM0QjY3MDM2NEYyNTQ0
MzFBRDE5OUQ4OTk0MzdEQkEzRjlFNDU4QzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2E92YqCwMLhkMMynLOntInA50JlO5QicbGP1U9RNEJwoDiLkS
zAu2Ob+JMVFf2Ctib65X+aZT5nKabY6mrZiizzbKJFJJY5MDsp/ddUSApd3Y0PeV
60VQT37XnYoysF0cDCZPw4mLJ/hFSkhngQGfKMBZ38t7kCGUYPlE8nRF/IBfXldl
IElHWuyMCUM1llX+zL8SYUtXam0jSQm9YLndstuINnHqgXZ7brlNBkHdijhlJ/hj
lskcSNjrZVdcjtjuaDcA1ToeUGCOQRe7J4CQfG/TUfCGt+v4hmkwUqmUvnHjSKUw
TYdAuJapGb87j1u+uQ+cOeDuBdN/p9bR6erNAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUNLZwNk8lRDGtGZ2JlDfbo/nkWMYwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvTkxad05rOGxSREd0R1oy
SmxEZmJvX25rV01ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BdI+wDANBgkqhkiG9w0BAQsFAAOCAQEAUK6GL+dl0t8Ve5kutKq6/5hNPL5vbIjV
oMgLSD/xxJTmrpU1Pi7IjcgJ+FVnIBKcAtpa0eju5oUDU4+f3wVFGuO3kt+Nkyt6
0rjbctBcS2bNa9FIdesLHjPKScsT7sv2WWZFCVRCyd75DZw3yJ+DxypUf9GS4GiZ
E4PlrMaBmNIMV7Bvw2H1rNS26BjH5b6ywBP9Ex+zwdUVyPhvfstHtnklv4zoQr/Z
5Jf5rZxFYSYiWnsx69gQ5/uxlPosmmB+4DuAjkcGi2+jaRMEk+8BuSP984uYegqz
FHk0PAY31kflJWLIA70NeIpY7DW7fpS9KQRoF8LlRS2wltgKq1UZEA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org