Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1xbDFQmzsIxTh9sdzVwJRTVLGPw.roa
File: 1xbDFQmzsIxTh9sdzVwJRTVLGPw.roa (raw, json)
Hash identifier: SFejCDoVF8GvRIcLPDVhFn+miFMtu5NbBxJE73WkfEM=
Subject key identifier: D7:16:C3:15:09:B3:B0:8C:53:87:DB:1D:CD:5C:09:45:35:4B:18:FC
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1xbDFQmzsIxTh9sdzVwJRTVLGPw.roa
Signing time: Thu 15 Sep 2022 02:46:53 +0000
ROA not before: Thu 15 Sep 2022 02:46:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.67.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:46:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D716C31509B3B08C5387DB1DCD5C0945354B18FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:26:ff:70:fb:ef:45:7c:08:f3:18:c8:d7:91:
1b:4c:c8:a6:ed:a9:f5:63:34:79:bd:33:d1:b3:07:
6f:70:11:f8:1e:c2:5e:a7:a7:e7:e0:1e:cf:25:18:
63:93:f2:76:da:37:82:28:0b:4e:09:45:4d:0d:65:
c5:f9:c2:36:d2:da:40:43:db:9c:2a:5b:7b:f4:b4:
c0:1f:ab:da:3b:e3:ec:04:53:ea:b0:e4:68:be:2a:
7e:98:4b:1f:95:4d:b9:17:cb:5a:01:43:d9:0b:09:
f0:39:d7:c6:4a:e8:59:06:e2:55:69:2c:03:95:de:
6c:4c:19:04:d0:e4:f2:e5:22:13:45:35:4d:14:da:
3e:c8:f0:e3:a2:ff:0d:52:ce:6b:d1:19:09:da:26:
c4:d7:a0:a3:9a:6e:af:a7:c2:af:5e:84:b4:45:df:
34:0c:2a:c8:80:bd:a4:8b:76:04:0e:24:9f:df:c1:
1f:2b:41:8d:c6:44:ba:ef:af:ff:ef:c5:e4:5f:b5:
22:ef:65:a9:4d:75:87:f0:39:66:ee:f1:e0:84:e1:
70:b9:17:dc:b2:c9:04:6a:68:6e:6a:3f:3b:81:16:
ac:bb:8d:2e:ac:8c:d6:a8:80:83:dc:ee:0e:ed:52:
38:12:63:89:a3:b6:91:84:29:f0:ca:93:ec:ed:1b:
46:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:16:C3:15:09:B3:B0:8C:53:87:DB:1D:CD:5C:09:45:35:4B:18:FC
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1xbDFQmzsIxTh9sdzVwJRTVLGPw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.208.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:4b:2c:00:9b:74:90:64:cf:64:6a:c8:ec:4b:c5:38:99:dd:
b8:29:2b:5d:b4:30:f5:51:04:e0:c3:e5:a0:2f:21:f0:d8:ba:
2a:e6:90:9f:ce:b6:79:74:bc:db:77:c0:d8:e7:02:b0:ec:c6:
42:6b:c2:35:fa:92:39:a0:b7:22:89:ad:6a:05:a8:dc:52:02:
c0:3d:c4:95:66:ca:a0:f6:52:55:a6:6f:10:64:6b:34:64:d7:
f5:28:39:7a:2e:a7:83:02:ef:0f:d3:4d:53:f9:3e:38:3f:c2:
3e:60:c3:04:d4:9e:5d:64:00:62:1e:5a:5a:4d:ea:99:67:fa:
87:18:74:3f:1d:89:18:53:65:c2:b9:ea:15:9a:9a:c4:24:63:
c9:3a:6b:0e:f7:1c:4f:73:83:df:cd:a2:7f:46:65:a4:dd:98:
3a:47:a1:c1:7f:13:e1:fc:4a:d2:4c:87:6a:37:75:f6:8a:64:
0c:ad:cf:a5:b1:78:c3:17:02:6c:7f:d0:7c:eb:b0:d0:8a:b6:
fe:91:9e:4c:72:9e:46:71:4f:68:0c:4b:53:83:de:fb:25:dd:
cb:44:95:f1:d1:20:fc:ae:c4:7e:7b:4d:7d:1a:07:41:ef:fa:
1a:90:7c:35:44:00:aa:36:47:bc:64:8f:ae:5e:4c:7e:82:6c:
64:aa:b9:25
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ2NTNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQ3MTZDMzE1MDlCM0Iw
OEM1Mzg3REIxRENENUMwOTQ1MzU0QjE4RkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCeJv9w++9FfAjzGMjXkRtMyKbtqfVjNHm9M9GzB29wEfgewl6n
p+fgHs8lGGOT8nbaN4IoC04JRU0NZcX5wjbS2kBD25wqW3v0tMAfq9o74+wEU+qw
5Gi+Kn6YSx+VTbkXy1oBQ9kLCfA518ZK6FkG4lVpLAOV3mxMGQTQ5PLlIhNFNU0U
2j7I8OOi/w1SzmvRGQnaJsTXoKOabq+nwq9ehLRF3zQMKsiAvaSLdgQOJJ/fwR8r
QY3GRLrvr//vxeRftSLvZalNdYfwOWbu8eCE4XC5F9yyyQRqaG5qPzuBFqy7jS6s
jNaogIPc7g7tUjgSY4mjtpGEKfDKk+ztG0YFAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU1xbDFQmzsIxTh9sdzVwJRTVLGPwwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvMXhiREZRbXpzSXhUaDlz
ZHpWd0pSVFZMR1B3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BNJD0DANBgkqhkiG9w0BAQsFAAOCAQEAikssAJt0kGTPZGrI7EvFOJnduCkrXbQw
9VEE4MPloC8h8Ni6KuaQn862eXS823fA2OcCsOzGQmvCNfqSOaC3IomtagWo3FIC
wD3ElWbKoPZSVaZvEGRrNGTX9Sg5ei6ngwLvD9NNU/k+OD/CPmDDBNSeXWQAYh5a
Wk3qmWf6hxh0Px2JGFNlwrnqFZqaxCRjyTprDvccT3OD382if0ZlpN2YOkehwX8T
4fxK0kyHajd19opkDK3PpbF4wxcCbH/QfOuw0Iq2/pGeTHKeRnFPaAxLU4Pe+yXd
y0SV8dEg/K7EfntNfRoHQe/6GpB8NUQAqjZHvGSPrl5MfoJsZKq5JQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:09 2025 by rpki-client