Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qjn2iXfoiVbP1yt5PkRnUlHcxC8.roa
File: qjn2iXfoiVbP1yt5PkRnUlHcxC8.roa (raw, json)
Hash identifier: mQXqH920ATwoSwzMgbSSN1AeZ3OwyJ15kYgjTch2zTI=
Subject key identifier: AA:39:F6:89:77:E8:89:56:CF:D7:2B:79:3E:44:67:52:51:DC:C4:2F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CCC
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qjn2iXfoiVbP1yt5PkRnUlHcxC8.roa
Signing time: Wed 29 Sep 2021 02:50:17 +0000
ROA not before: Wed 29 Sep 2021 02:50:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 60.199.134.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3276 (0xccc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AA39F68977E88956CFD72B793E44675251DCC42F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:47:7a:e5:53:48:9f:ef:53:b4:1c:95:a9:09:
72:04:cf:b0:2e:e4:a6:e1:c8:d6:ec:f1:d5:f7:3b:
7c:a2:8e:53:ba:94:3b:9c:15:e1:5c:c4:51:7e:ae:
fe:41:00:52:5c:71:1b:23:9c:70:48:32:07:2f:a0:
69:66:6e:56:d1:c2:a1:50:c9:13:f3:02:c8:35:10:
5c:85:87:24:f9:a5:4d:b5:50:ea:f4:2b:a6:22:3a:
44:fb:03:63:e1:cb:61:4a:90:7d:fd:8a:b3:67:0f:
08:8a:e6:d8:e1:d5:6a:a2:10:1f:81:42:e0:98:4a:
49:4b:eb:2e:27:ba:2b:e4:35:ba:b4:ed:61:be:ed:
0e:79:ae:f5:86:4e:66:95:a4:d7:b8:f4:c7:4e:70:
b4:93:51:e1:0d:b2:41:7a:ac:1a:4f:ea:97:fe:f9:
b0:e2:6f:65:0b:aa:0a:cf:ae:70:c9:a0:b2:66:5e:
09:fe:9a:fc:1b:b2:63:84:f5:74:74:fb:d6:42:8e:
0b:b7:4a:c9:fb:b4:52:3e:48:41:23:1f:02:34:35:
80:33:c5:7c:25:08:98:07:e5:c9:4f:3c:82:6c:94:
dd:3b:82:84:ae:5b:13:65:16:dd:bf:f6:07:d2:ab:
00:58:71:9a:8c:8b:48:8a:86:84:50:cf:c8:38:84:
ee:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:39:F6:89:77:E8:89:56:CF:D7:2B:79:3E:44:67:52:51:DC:C4:2F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qjn2iXfoiVbP1yt5PkRnUlHcxC8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.134.0/24
Signature Algorithm: sha256WithRSAEncryption
46:d3:01:d5:69:c5:35:99:9c:37:97:35:db:6c:71:6a:a4:e3:
b7:da:64:3a:3c:a3:ef:b7:f4:dd:af:96:ec:f6:65:1c:d6:eb:
86:4b:ab:b8:79:e4:e5:ba:c8:3b:38:af:b4:be:d9:7b:9c:ec:
4a:70:dd:7d:05:43:8b:12:a3:45:a9:f1:26:13:11:c7:17:40:
b7:0e:c8:f5:39:fa:37:ea:23:f9:d6:86:d3:66:68:61:89:fb:
00:63:9a:7f:2d:e3:4d:9d:7a:05:22:9e:a7:91:4d:ae:72:dd:
70:67:67:80:83:9f:45:d8:7b:93:a1:d8:9c:c5:fc:33:27:14:
87:ed:17:2a:35:b4:73:e2:12:c0:50:2e:7e:ab:d6:10:ad:4b:
ff:c6:2d:4b:1d:36:ed:9c:6c:27:b0:e2:f4:96:41:c9:21:23:
92:0d:f9:52:e9:61:02:fc:cc:5a:b3:28:e4:05:6b:d2:64:df:
d3:41:f7:37:ca:1d:b9:50:7e:c4:55:50:88:3a:59:fe:7c:36:
eb:73:e4:00:ad:c9:15:c9:0e:38:e8:35:ae:f1:62:f7:e5:5c:
29:c7:8d:28:ff:16:7c:64:20:66:be:65:5b:64:63:1d:de:f0:
f5:7a:9f:b8:72:c7:da:dd:8e:c4:b0:30:49:e8:a4:38:6c:f0:
16:14:ea:a0
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDMwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjUwMTdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEFBMzlGNjg5NzdFODg5
NTZDRkQ3MkI3OTNFNDQ2NzUyNTFEQ0M0MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRR3rlU0if71O0HJWpCXIEz7Au5KbhyNbs8dX3O3yijlO6lDuc
FeFcxFF+rv5BAFJccRsjnHBIMgcvoGlmblbRwqFQyRPzAsg1EFyFhyT5pU21UOr0
K6YiOkT7A2Phy2FKkH39irNnDwiK5tjh1WqiEB+BQuCYSklL6y4nuivkNbq07WG+
7Q55rvWGTmaVpNe49MdOcLSTUeENskF6rBpP6pf++bDib2ULqgrPrnDJoLJmXgn+
mvwbsmOE9XR0+9ZCjgu3Ssn7tFI+SEEjHwI0NYAzxXwlCJgH5clPPIJslN07goSu
WxNlFt2/9gfSqwBYcZqMi0iKhoRQz8g4hO4pAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUqjn2iXfoiVbP1yt5PkRnUlHcxC8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvcWpuMmlYZm9pVmJQMXl0
NVBrUm5VbEhjeEM4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ADzHhjANBgkqhkiG9w0BAQsFAAOCAQEARtMB1WnFNZmcN5c122xxaqTjt9pkOjyj
77f03a+W7PZlHNbrhkuruHnk5brIOzivtL7Ze5zsSnDdfQVDixKjRanxJhMRxxdA
tw7I9Tn6N+oj+daG02ZoYYn7AGOafy3jTZ16BSKep5FNrnLdcGdngIOfRdh7k6HY
nMX8MycUh+0XKjW0c+ISwFAufqvWEK1L/8YtSx027ZxsJ7Di9JZBySEjkg35Uulh
AvzMWrMo5AVr0mTf00H3N8oduVB+xFVQiDpZ/nw263PkAK3JFckOOOg1rvFi9+Vc
KceNKP8WfGQgZr5lW2RjHd7w9XqfuHLH2t2OxLAwSeikOGzwFhTqoA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org