Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5R1mqUriBCgGyu5nltcbZU1aWZA.roa
File: 5R1mqUriBCgGyu5nltcbZU1aWZA.roa (raw, json)
Hash identifier: sMXFxeqqj6BccW7AFAOreItpJV8Czl9R5CX7+m/iZ2A=
Subject key identifier: E5:1D:66:A9:4A:E2:04:28:06:CA:EE:67:96:D7:1B:65:4D:5A:59:90
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0816
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5R1mqUriBCgGyu5nltcbZU1aWZA.roa
Signing time: Tue 29 Sep 2020 09:57:45 +0000
ROA not before: Tue 29 Sep 2020 09:57:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4662
IP address blocks: 210.67.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2070 (0x816)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E51D66A94AE2042806CAEE6796D71B654D5A5990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3e:49:b1:01:8c:43:be:c2:94:2d:f9:98:d0:
90:33:01:5f:2e:af:66:da:23:0c:b8:9b:2c:f7:81:
c6:cc:ec:2d:fa:4c:72:ab:29:de:5c:70:15:ba:1d:
58:4f:b3:36:ad:77:a9:95:ca:24:73:ed:31:a3:cb:
05:48:87:25:ee:62:99:23:ea:df:6e:5c:2f:94:83:
17:e8:f1:f1:77:c5:e6:8e:32:57:1d:03:11:ae:10:
ff:a7:45:67:4c:2f:9e:ef:b5:58:34:38:98:f9:a5:
57:5d:46:cf:94:54:ca:f8:10:ed:31:e3:e3:63:b1:
8c:2f:18:87:0a:17:31:a7:ce:b2:d5:d4:82:12:67:
fc:ea:15:a8:33:56:fc:7d:4e:5b:e0:66:92:85:39:
f6:27:a5:49:e4:96:ed:2f:b6:8f:dc:a9:af:e4:c1:
67:08:47:5b:18:36:8d:15:f8:7f:30:0f:07:28:e9:
22:a4:a4:7d:aa:59:ea:ca:84:0c:23:78:7b:42:df:
38:07:7e:52:20:ea:40:bd:a4:91:77:54:0b:17:27:
2f:a5:00:b7:56:8c:b2:37:0e:6c:9d:74:c9:a6:5b:
54:b9:07:76:72:f7:a3:7c:05:e6:51:71:30:78:5e:
ef:79:48:de:03:82:b6:d9:10:f0:1e:fe:eb:0c:58:
39:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:1D:66:A9:4A:E2:04:28:06:CA:EE:67:96:D7:1B:65:4D:5A:59:90
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5R1mqUriBCgGyu5nltcbZU1aWZA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.160.0/19
Signature Algorithm: sha256WithRSAEncryption
56:a2:e3:66:44:d4:3a:a7:87:a6:dc:5e:40:84:5a:79:7c:4a:
31:e0:50:15:ae:aa:e6:f5:60:f9:f5:57:38:97:f9:1c:23:45:
2c:b3:fd:9b:97:6c:24:cd:cb:5d:b3:ec:b8:a1:bf:8a:7d:0e:
e3:5f:ec:0e:79:10:70:bf:94:75:20:06:2d:31:9b:c1:70:ed:
c7:a6:9d:00:ef:42:77:ce:b3:c1:2b:23:40:f8:19:22:b1:8b:
9d:5d:8b:a4:c5:38:3d:0d:c8:b4:d7:e5:73:61:03:7f:3c:6e:
34:03:b0:7c:68:04:2c:92:6f:5e:e9:5e:9a:c5:6e:23:6e:c4:
37:41:b0:d9:59:31:16:0f:b9:ea:de:36:d9:f0:44:ee:44:8c:
e9:8d:b0:88:13:d7:37:f2:48:c1:95:bc:26:3a:41:67:13:c2:
12:4a:17:c8:ca:75:2a:4c:b4:06:94:2e:b4:9f:3f:c2:cf:c1:
4a:9d:e3:39:1a:1f:c9:be:e1:64:dd:ca:30:20:04:5a:48:00:
c6:30:7d:10:60:1c:63:ac:00:9b:53:fa:8a:ba:81:fb:38:22:
89:07:cf:15:17:4e:e8:14:5a:47:8e:03:0b:fa:3d:2e:8a:63:
b3:45:8f:4e:27:24:8c:8f:2e:74:cb:0f:51:0a:7d:f4:92:8c:
d8:4b:b8:91
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCBYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDA5Mjkw
OTU3NDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEU1MUQ2NkE5NEFFMjA0
MjgwNkNBRUU2Nzk2RDcxQjY1NEQ1QTU5OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCdPkmxAYxDvsKULfmY0JAzAV8ur2baIwy4myz3gcbM7C36THKr
Kd5ccBW6HVhPszatd6mVyiRz7TGjywVIhyXuYpkj6t9uXC+Ugxfo8fF3xeaOMlcd
AxGuEP+nRWdML57vtVg0OJj5pVddRs+UVMr4EO0x4+NjsYwvGIcKFzGnzrLV1IIS
Z/zqFagzVvx9TlvgZpKFOfYnpUnklu0vto/cqa/kwWcIR1sYNo0V+H8wDwco6SKk
pH2qWerKhAwjeHtC3zgHflIg6kC9pJF3VAsXJy+lALdWjLI3DmyddMmmW1S5B3Zy
96N8BeZRcTB4Xu95SN4DgrbZEPAe/usMWDk3AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU5R1mqUriBCgGyu5nltcbZU1aWZAwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNVIxbXFVcmlCQ2dHeXU1
bmx0Y2JaVTFhV1pBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BdJDoDANBgkqhkiG9w0BAQsFAAOCAQEAVqLjZkTUOqeHptxeQIRaeXxKMeBQFa6q
5vVg+fVXOJf5HCNFLLP9m5dsJM3LXbPsuKG/in0O41/sDnkQcL+UdSAGLTGbwXDt
x6adAO9Cd86zwSsjQPgZIrGLnV2LpMU4PQ3ItNflc2EDfzxuNAOwfGgELJJvXule
msVuI27EN0Gw2VkxFg+56t422fBE7kSM6Y2wiBPXN/JIwZW8JjpBZxPCEkoXyMp1
Kky0BpQutJ8/ws/BSp3jORofyb7hZN3KMCAEWkgAxjB9EGAcY6wAm1P6irqB+zgi
iQfPFRdO6BRaR44DC/o9Lopjs0WPTickjI8udMsPUQp99JKM2Eu4kQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org