Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3fwYA2AHnYifx9qzQmZs7yeTRdQ.roa
File: 3fwYA2AHnYifx9qzQmZs7yeTRdQ.roa (raw, json)
Hash identifier: EqiqA7LGpsy8IK1QHTzTKQh3aK1Pbsr01CqEQAvNrNQ=
Subject key identifier: DD:FC:18:03:60:07:9D:88:9F:C7:DA:B3:42:66:6C:EF:27:93:45:D4
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C50
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3fwYA2AHnYifx9qzQmZs7yeTRdQ.roa
Signing time: Wed 29 Sep 2021 02:49:40 +0000
ROA not before: Wed 29 Sep 2021 02:49:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 175.96.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3152 (0xc50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DDFC180360079D889FC7DAB342666CEF279345D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:68:ee:6f:ae:a0:39:f2:cf:e5:73:90:4b:8d:
16:24:51:e6:78:1d:bd:ca:45:90:d2:b7:5f:eb:f0:
1c:24:09:78:40:93:35:0f:75:38:92:70:54:01:c8:
1c:7f:19:34:f7:ad:a0:fb:57:7c:a5:89:92:40:9b:
9b:04:7b:f4:11:6f:55:56:45:7d:0a:9a:e4:33:6b:
aa:27:56:01:fa:37:43:12:02:75:88:3b:24:6d:aa:
68:d6:dc:c0:12:51:aa:36:10:39:8b:8c:f1:61:73:
67:4b:7d:1d:71:ee:f4:77:a4:c7:e2:48:cb:b8:ff:
16:34:6f:ee:3b:6d:81:c7:7e:58:2e:63:fa:93:8b:
a4:99:d9:b6:47:4a:da:3b:45:ae:97:94:ed:82:43:
43:dc:0d:eb:2a:8d:47:98:34:fe:34:5e:fa:64:08:
5d:73:78:35:b3:e0:f7:9b:63:48:ec:f0:2d:09:44:
de:99:7e:1d:19:cf:77:a9:6f:e4:9f:c9:49:9b:d1:
8d:97:14:06:6e:8f:12:a3:dc:35:a7:92:46:79:3f:
c8:12:cc:52:b8:f4:4e:52:ba:3e:22:6a:21:93:ef:
c6:fe:ca:33:d9:fa:d7:28:63:32:42:85:ed:31:7a:
6e:e0:5e:fe:a0:ef:48:c0:f0:8d:98:cb:ba:1e:05:
60:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:FC:18:03:60:07:9D:88:9F:C7:DA:B3:42:66:6C:EF:27:93:45:D4
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3fwYA2AHnYifx9qzQmZs7yeTRdQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.96.0.0/14
Signature Algorithm: sha256WithRSAEncryption
78:05:9b:3a:ab:14:f1:87:ea:38:91:66:07:ef:2e:08:92:e9:
f3:4b:99:0a:5a:5c:3b:dc:0b:41:31:2e:cc:45:b9:35:7c:b6:
33:8e:8c:c9:66:92:d4:2c:a2:a2:78:d9:ca:56:a0:90:71:cb:
0c:4f:6b:99:a4:48:ce:0c:5f:57:d7:b0:bd:6c:c1:07:69:83:
ee:ce:af:50:f1:5d:c8:ea:17:4c:42:e8:5b:10:f0:04:bf:be:
d8:12:a3:d1:a5:8a:40:66:2c:d2:c2:d3:9d:70:b2:3b:0e:41:
05:2a:d0:14:1f:d3:37:90:15:a3:ef:d1:a6:ad:ad:b7:89:ab:
70:47:6a:c1:31:4a:ac:ea:89:9b:e8:ab:d5:1f:00:64:08:74:
69:4c:b1:e7:f8:07:b0:95:e7:8a:1e:8b:a3:8e:fc:75:9c:50:
2c:7c:1d:4d:93:48:1b:1b:60:fa:3d:87:47:2a:e9:c9:c8:2c:
b5:ac:8e:18:91:eb:63:3f:a2:ee:29:bc:0f:61:aa:cf:4c:9e:
56:40:8a:72:be:a9:45:c5:9e:bd:75:64:0b:9b:cd:2b:35:ea:
de:10:83:5e:8a:f2:79:26:bc:22:59:62:53:49:fd:c4:0c:e0:
3d:3a:aa:3a:fc:09:47:6b:84:bc:62:86:7c:70:e8:8f:55:44:
ac:eb:ee:c4
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDFAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjQ5NDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERERkMxODAzNjAwNzlE
ODg5RkM3REFCMzQyNjY2Q0VGMjc5MzQ1RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4aO5vrqA58s/lc5BLjRYkUeZ4Hb3KRZDSt1/r8BwkCXhAkzUP
dTiScFQByBx/GTT3raD7V3yliZJAm5sEe/QRb1VWRX0KmuQza6onVgH6N0MSAnWI
OyRtqmjW3MASUao2EDmLjPFhc2dLfR1x7vR3pMfiSMu4/xY0b+47bYHHflguY/qT
i6SZ2bZHSto7Ra6XlO2CQ0PcDesqjUeYNP40XvpkCF1zeDWz4PebY0js8C0JRN6Z
fh0Zz3epb+SfyUmb0Y2XFAZujxKj3DWnkkZ5P8gSzFK49E5Suj4iaiGT78b+yjPZ
+tcoYzJChe0xem7gXv6g70jA8I2Yy7oeBWBlAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQU3fwYA2AHnYifx9qzQmZs7yeTRdQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvM2Z3WUEyQUhuWWlmeDlx
elFtWnM3eWVUUmRRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
Aq9gMA0GCSqGSIb3DQEBCwUAA4IBAQB4BZs6qxTxh+o4kWYH7y4IkunzS5kKWlw7
3AtBMS7MRbk1fLYzjozJZpLULKKieNnKVqCQccsMT2uZpEjODF9X17C9bMEHaYPu
zq9Q8V3I6hdMQuhbEPAEv77YEqPRpYpAZizSwtOdcLI7DkEFKtAUH9M3kBWj79Gm
ra23iatwR2rBMUqs6omb6KvVHwBkCHRpTLHn+AewleeKHoujjvx1nFAsfB1Nk0gb
G2D6PYdHKunJyCy1rI4YketjP6LuKbwPYarPTJ5WQIpyvqlFxZ69dWQLm80rNere
EINeivJ5JrwiWWJTSf3EDOA9Oqo6/AlHa4S8YoZ8cOiPVUSs6+7E
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org