Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YGu8f_EQUOxxuhYSTq2aAGb1g9Y.roa
File: YGu8f_EQUOxxuhYSTq2aAGb1g9Y.roa (raw, json)
Hash identifier: +evHSgAns74t5mi7FZhZbtJaWvfZvXnn06DOosb1GYg=
Subject key identifier: 60:6B:BC:7F:F1:10:50:EC:71:BA:16:12:4E:AD:9A:00:66:F5:83:D6
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0834
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YGu8f_EQUOxxuhYSTq2aAGb1g9Y.roa
Signing time: Tue 29 Sep 2020 09:57:53 +0000
ROA not before: Tue 29 Sep 2020 09:57:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 211.79.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2100 (0x834)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=606BBC7FF11050EC71BA16124EAD9A0066F583D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c7:ab:91:89:75:8a:55:a3:a9:84:37:b4:8a:
3f:a5:1c:9d:c2:e4:a6:5f:91:06:9b:57:14:da:75:
fb:60:32:9d:55:aa:2c:86:a8:45:ae:e6:97:a9:79:
f7:c6:48:5f:56:31:40:57:88:06:9e:5d:54:2b:8c:
2a:a2:9f:a5:2f:ae:83:b9:57:bd:a9:72:5f:ce:7d:
d6:d8:f4:6c:c2:70:e2:dc:c7:91:de:76:35:7c:f1:
b0:33:0a:5f:b0:8c:d1:01:f0:cf:6a:92:d6:5a:f7:
97:78:07:36:06:38:3d:07:cf:4c:47:4a:2a:fc:69:
e8:d9:d8:ba:e3:b3:a4:38:85:ff:18:e4:3a:b1:36:
f6:3b:6b:9a:e7:33:bf:2d:b2:25:dc:eb:c9:b1:4a:
2d:f6:0f:1d:df:55:4b:87:a8:48:ec:02:51:65:b0:
0a:62:88:54:d0:4b:60:f5:40:a4:85:06:49:f6:6d:
21:d7:8b:d5:13:53:9b:e6:34:e1:ce:03:55:ff:e1:
60:73:89:e7:f2:78:28:f2:33:3d:da:17:32:c5:78:
88:1c:98:e2:1b:37:aa:07:34:ee:52:18:11:92:30:
43:8f:20:b0:e4:f8:ca:f6:b5:6e:4b:ac:50:f7:f0:
d9:a1:ad:47:1c:b2:f2:32:9b:55:bf:ad:63:65:25:
b9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:6B:BC:7F:F1:10:50:EC:71:BA:16:12:4E:AD:9A:00:66:F5:83:D6
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YGu8f_EQUOxxuhYSTq2aAGb1g9Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.0.0/19
Signature Algorithm: sha256WithRSAEncryption
5f:51:5e:e3:c7:3b:a1:3d:08:be:49:a7:d3:44:59:98:e5:c9:
f7:e7:bf:3d:80:7d:83:a9:6c:16:bc:28:40:60:82:ba:c9:74:
7b:9f:c6:6e:7a:f2:e9:cd:08:81:0a:30:4d:2d:53:87:06:8e:
84:02:f5:b1:b8:9f:7e:b9:6a:91:d8:24:49:ae:59:19:7f:e1:
6e:69:ec:8a:13:3f:76:5c:ed:f2:18:ff:40:78:01:00:42:65:
5f:03:22:2e:41:47:d0:eb:dd:d9:dc:08:e5:98:69:31:0f:6f:
16:54:d2:00:dc:28:79:56:d6:63:4f:16:66:12:1d:b3:2e:58:
aa:b8:d9:45:a8:16:8c:4b:05:cd:2e:f0:bd:fc:a0:d0:65:b4:
50:08:e7:7e:e4:b1:a7:13:61:b6:df:ba:24:b1:ad:12:c3:af:
39:a4:b7:e8:b8:be:f1:24:16:35:f6:51:b2:e3:d6:d5:2b:71:
45:2e:b7:88:59:ee:7d:78:37:3b:c7:66:86:12:14:4c:0c:79:
3f:01:2b:1c:54:bf:ec:77:df:d4:57:90:75:56:f1:18:70:bf:
62:74:6e:ee:67:76:23:77:0a:f7:2f:b1:b3:5d:88:1c:96:cd:
26:46:d6:9e:18:50:8e:49:04:f6:28:f8:04:85:6c:9b:6e:51:
76:a9:25:7a
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDA5Mjkw
OTU3NTNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDYwNkJCQzdGRjExMDUw
RUM3MUJBMTYxMjRFQUQ5QTAwNjZGNTgzRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwx6uRiXWKVaOphDe0ij+lHJ3C5KZfkQabVxTadftgMp1VqiyG
qEWu5pepeffGSF9WMUBXiAaeXVQrjCqin6UvroO5V72pcl/OfdbY9GzCcOLcx5He
djV88bAzCl+wjNEB8M9qktZa95d4BzYGOD0Hz0xHSir8aejZ2Lrjs6Q4hf8Y5Dqx
NvY7a5rnM78tsiXc68mxSi32Dx3fVUuHqEjsAlFlsApiiFTQS2D1QKSFBkn2bSHX
i9UTU5vmNOHOA1X/4WBziefyeCjyMz3aFzLFeIgcmOIbN6oHNO5SGBGSMEOPILDk
+Mr2tW5LrFD38NmhrUccsvIym1W/rWNlJbkjAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUYGu8f/EQUOxxuhYSTq2aAGb1g9YwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWUd1OGZfRVFVT3h4dWhZ
U1RxMmFBR2IxZzlZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BdNPADANBgkqhkiG9w0BAQsFAAOCAQEAX1Fe48c7oT0Ivkmn00RZmOXJ9+e/PYB9
g6lsFrwoQGCCusl0e5/Gbnry6c0IgQowTS1ThwaOhAL1sbiffrlqkdgkSa5ZGX/h
bmnsihM/dlzt8hj/QHgBAEJlXwMiLkFH0Ovd2dwI5ZhpMQ9vFlTSANwoeVbWY08W
ZhIdsy5YqrjZRagWjEsFzS7wvfyg0GW0UAjnfuSxpxNhtt+6JLGtEsOvOaS36Li+
8SQWNfZRsuPW1StxRS63iFnufXg3O8dmhhIUTAx5PwErHFS/7Hff1FeQdVbxGHC/
YnRu7md2I3cK9y+xs12IHJbNJkbWnhhQjkkE9ij4BIVsm25Rdqkleg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org