Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kM5tIq8aEzjPtcTbna0PD2Bw5Ic.roa
File: kM5tIq8aEzjPtcTbna0PD2Bw5Ic.roa (raw, json)
Hash identifier: P8KBn72BqstXkJuV9IghiutRoHazUKVIvXgH7E+fBNU=
Subject key identifier: 90:CE:6D:22:AF:1A:13:38:CF:B5:C4:DB:9D:AD:0F:0F:60:70:E4:87
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AE4
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kM5tIq8aEzjPtcTbna0PD2Bw5Ic.roa
Signing time: Sun 07 Feb 2021 11:40:48 +0000
ROA not before: Sun 07 Feb 2021 11:40:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4662
IP address blocks: 210.62.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2788 (0xae4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:40:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=90CE6D22AF1A1338CFB5C4DB9DAD0F0F6070E487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b0:a2:d7:51:be:09:5f:9b:39:16:24:53:15:
f6:8e:10:4e:1a:3b:db:68:97:1e:ba:89:8b:6e:41:
5f:5d:4e:eb:02:48:33:15:36:35:ed:a1:19:a8:73:
d1:eb:d6:9b:8f:0a:30:a0:29:23:f3:ef:ab:a4:e8:
72:df:14:48:0a:d6:83:5b:d4:84:1f:7c:87:16:18:
9a:59:46:b8:8d:dd:3e:63:35:f6:1e:2d:dd:d8:72:
a9:25:09:8b:1a:72:5d:20:e8:dc:23:97:01:ab:53:
e6:3e:f8:d4:58:91:1c:54:95:7e:f4:54:24:13:6f:
ab:13:e5:dc:a1:e5:20:69:a3:66:30:e9:db:ed:53:
ef:62:14:69:2d:6d:ee:5a:3b:c1:df:bf:e3:9a:f1:
f0:f8:8f:65:58:79:4d:41:ba:21:c8:71:63:6a:2f:
7c:9b:6b:65:4d:c0:d7:2a:f2:50:c5:25:ff:33:ba:
8b:2f:b9:86:5c:b4:61:58:aa:72:67:6e:56:5e:ea:
98:22:ce:96:c1:00:a1:8d:b8:e0:12:be:50:39:61:
d7:13:86:eb:65:cf:2e:fa:70:17:7a:8e:d0:a2:9e:
d9:8f:50:e8:01:27:90:18:8d:34:9d:fd:6e:c6:b2:
47:1b:e5:74:85:28:6d:63:f7:86:ac:e8:f6:04:61:
1c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:CE:6D:22:AF:1A:13:38:CF:B5:C4:DB:9D:AD:0F:0F:60:70:E4:87
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kM5tIq8aEzjPtcTbna0PD2Bw5Ic.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.192.0/19
Signature Algorithm: sha256WithRSAEncryption
4c:eb:df:5e:69:c7:7e:7d:8a:41:cd:8f:a5:c4:bd:48:6e:0b:
7d:ab:5a:8a:55:1e:33:65:1a:3c:45:93:75:60:03:06:67:1b:
a5:7d:c9:08:42:d1:85:81:b2:ee:b4:80:45:e9:7d:c1:49:21:
a4:47:ef:73:02:58:6f:81:4c:ae:82:79:12:a9:0a:76:2b:6f:
a0:97:7c:a2:59:8e:d0:48:bc:51:41:84:81:ce:78:c5:90:9a:
52:29:61:ed:83:31:8e:53:fa:a7:bf:3d:7d:b3:ac:1a:e0:c3:
10:64:b2:cf:68:8e:35:59:71:cd:71:ae:e0:a0:cd:06:3e:1e:
fa:36:58:41:26:cb:58:c5:70:bc:c7:46:4a:b0:24:88:40:63:
c1:e5:f5:07:f8:f7:fd:54:74:41:b2:0e:8f:49:e2:8f:2a:94:
d5:e1:62:8e:0b:f2:05:7e:83:93:ef:08:5d:a5:03:39:de:60:
68:62:b8:37:a9:0b:29:ce:25:00:a5:07:43:64:67:88:00:e4:
c4:e0:f3:93:db:cc:c4:fa:83:22:5f:5c:67:d1:ca:d3:46:c3:
20:b2:97:3d:71:0c:d5:7d:c6:b1:f8:b5:c2:07:e1:95:fd:c4:
12:a5:38:df:92:9c:a3:c0:14:03:7a:5b:08:b4:08:8b:12:95:
00:3c:cd:99
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCuQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MTQwNDhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDkwQ0U2RDIyQUYxQTEz
MzhDRkI1QzREQjlEQUQwRjBGNjA3MEU0ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6sKLXUb4JX5s5FiRTFfaOEE4aO9tolx66iYtuQV9dTusCSDMV
NjXtoRmoc9Hr1puPCjCgKSPz76uk6HLfFEgK1oNb1IQffIcWGJpZRriN3T5jNfYe
Ld3YcqklCYsacl0g6NwjlwGrU+Y++NRYkRxUlX70VCQTb6sT5dyh5SBpo2Yw6dvt
U+9iFGktbe5aO8Hfv+Oa8fD4j2VYeU1BuiHIcWNqL3yba2VNwNcq8lDFJf8zuosv
uYZctGFYqnJnblZe6pgizpbBAKGNuOASvlA5YdcThutlzy76cBd6jtCintmPUOgB
J5AYjTSd/W7Gskcb5XSFKG1j94as6PYEYRxnAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUkM5tIq8aEzjPtcTbna0PD2Bw5IcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQva001dElxOGFFempQdGNU
Ym5hMFBEMkJ3NUljLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BdI+wDANBgkqhkiG9w0BAQsFAAOCAQEATOvfXmnHfn2KQc2PpcS9SG4LfatailUe
M2UaPEWTdWADBmcbpX3JCELRhYGy7rSARel9wUkhpEfvcwJYb4FMroJ5EqkKditv
oJd8olmO0Ei8UUGEgc54xZCaUilh7YMxjlP6p789fbOsGuDDEGSyz2iONVlxzXGu
4KDNBj4e+jZYQSbLWMVwvMdGSrAkiEBjweX1B/j3/VR0QbIOj0nijyqU1eFijgvy
BX6Dk+8IXaUDOd5gaGK4N6kLKc4lAKUHQ2RniADkxODzk9vMxPqDIl9cZ9HK00bD
ILKXPXEM1X3Gsfi1wgfhlf3EEqU435Kco8AUA3pbCLQIixKVADzNmQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org