Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0Q-7H7tx2Yrz_bWW3jGC2TCXtRk.roa
File: 0Q-7H7tx2Yrz_bWW3jGC2TCXtRk.roa (raw, json)
Hash identifier: FvvpKOa+DnWDEmdlTDKJEwvsBdNuJGTWWPKv1QAF1bE=
Subject key identifier: D1:0F:BB:1F:BB:71:D9:8A:F3:FD:B5:96:DE:31:82:D9:30:97:B5:19
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C7E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0Q-7H7tx2Yrz_bWW3jGC2TCXtRk.roa
Signing time: Wed 29 Sep 2021 02:49:54 +0000
ROA not before: Wed 29 Sep 2021 02:49:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17213
IP address blocks: 60.198.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3198 (0xc7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:54 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D10FBB1FBB71D98AF3FDB596DE3182D93097B519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:25:4b:d0:9d:59:f9:c6:c0:fb:8f:9b:75:7f:
f8:35:d0:99:a0:38:24:2c:81:d3:96:c0:1e:9b:b8:
bf:32:d5:7b:d8:64:85:22:c4:5a:20:35:8d:49:ac:
a4:44:59:fa:73:e7:21:4b:bf:ba:1e:09:01:34:1a:
16:28:05:8b:ea:21:7a:40:14:a4:09:b8:b4:65:80:
b4:e9:96:9d:bd:92:bf:07:f4:d7:48:d1:c8:2c:95:
d4:c0:51:c4:ca:c0:7f:1e:a6:4b:41:ef:80:0e:03:
50:c7:cc:b1:2e:bc:87:ee:7e:b0:db:b4:54:ce:5f:
e4:93:62:41:73:3c:76:56:8b:ae:8a:a9:71:32:0c:
e6:22:d6:1d:c0:00:c9:bf:89:ca:4d:97:56:9c:b3:
a2:d8:f9:7d:fd:76:78:54:b7:9c:00:9e:41:c5:95:
c4:d1:71:21:5b:d2:55:80:cb:88:81:66:a1:d7:a1:
4e:3b:6b:b3:3f:22:42:9e:ed:5c:e7:00:4a:98:9d:
72:b2:49:51:00:ad:4b:4e:46:00:ef:9b:e3:3c:f6:
8c:c7:51:d5:49:bb:99:5c:02:bc:50:92:e2:c2:78:
4a:a7:c9:92:17:83:71:0e:f5:2c:43:41:c1:ef:e3:
1f:6e:c8:f8:70:33:a1:3e:0a:b3:e0:77:b9:de:07:
22:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:0F:BB:1F:BB:71:D9:8A:F3:FD:B5:96:DE:31:82:D9:30:97:B5:19
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0Q-7H7tx2Yrz_bWW3jGC2TCXtRk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.153.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:50:6b:60:76:47:3a:66:e7:c4:ca:a7:e5:e4:ec:92:16:95:
b3:92:e4:f2:2f:95:34:34:c0:c1:e8:0b:b0:fb:b9:fc:db:89:
56:49:4b:4a:46:56:9e:09:cd:60:27:e7:73:1d:6e:d7:6a:f0:
f8:65:5d:17:35:19:99:a8:93:b4:01:be:bc:c9:23:c5:c5:23:
82:49:f1:2c:a4:70:7a:df:d3:58:77:fb:da:b1:18:f8:7f:a0:
46:f5:3c:5d:47:cf:0d:0f:d0:e8:32:04:51:a7:82:ab:44:c0:
f2:e7:1c:1f:b8:00:96:1c:9e:c9:94:ab:61:44:ed:3b:bb:80:
b9:8a:6c:2a:43:cd:9a:eb:62:a9:c6:9e:1b:e7:a8:9a:bf:78:
a9:62:28:9e:cb:18:a9:70:f5:c4:13:55:92:4b:f1:52:34:2b:
44:da:62:22:2c:4a:b1:c6:84:27:46:a5:0e:00:d6:7c:2f:50:
f1:e3:ea:4b:e7:ab:7d:8e:ca:34:bc:07:04:c7:22:8a:26:9b:
e4:4f:9c:f5:a0:0d:5d:39:a8:26:15:dd:f5:39:34:45:8c:2b:
49:02:dd:8f:e0:d6:0f:10:66:38:93:91:bc:1a:be:43:38:61:
fa:a2:bd:d4:35:12:31:7a:b2:ad:8e:37:66:2c:b8:db:66:95:
2b:00:4f:65
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjQ5NTRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQxMEZCQjFGQkI3MUQ5
OEFGM0ZEQjU5NkRFMzE4MkQ5MzA5N0I1MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDiJUvQnVn5xsD7j5t1f/g10JmgOCQsgdOWwB6buL8y1XvYZIUi
xFogNY1JrKREWfpz5yFLv7oeCQE0GhYoBYvqIXpAFKQJuLRlgLTplp29kr8H9NdI
0cgsldTAUcTKwH8epktB74AOA1DHzLEuvIfufrDbtFTOX+STYkFzPHZWi66KqXEy
DOYi1h3AAMm/icpNl1acs6LY+X39dnhUt5wAnkHFlcTRcSFb0lWAy4iBZqHXoU47
a7M/IkKe7VznAEqYnXKySVEArUtORgDvm+M89ozHUdVJu5lcArxQkuLCeEqnyZIX
g3EO9SxDQcHv4x9uyPhwM6E+CrPgd7neByIhAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU0Q+7H7tx2Yrz/bWW3jGC2TCXtRkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvMFEtN0g3dHgyWXJ6X2JX
VzNqR0MyVENYdFJrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ADzGmTANBgkqhkiG9w0BAQsFAAOCAQEAfFBrYHZHOmbnxMqn5eTskhaVs5Lk8i+V
NDTAwegLsPu5/NuJVklLSkZWngnNYCfncx1u12rw+GVdFzUZmaiTtAG+vMkjxcUj
gknxLKRwet/TWHf72rEY+H+gRvU8XUfPDQ/Q6DIEUaeCq0TA8uccH7gAlhyeyZSr
YUTtO7uAuYpsKkPNmutiqcaeG+eomr94qWIonssYqXD1xBNVkkvxUjQrRNpiIixK
scaEJ0alDgDWfC9Q8ePqS+erfY7KNLwHBMciiiab5E+c9aANXTmoJhXd9Tk0RYwr
SQLdj+DWDxBmOJORvBq+Qzhh+qK91DUSMXqyrY43Ziy422aVKwBPZQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:05 2025 by rpki-client