Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5vUE_CQAZ-riLt94g0DMzPjAKy8.roa
File: 5vUE_CQAZ-riLt94g0DMzPjAKy8.roa (raw, json)
Hash identifier: HxzfAYBZU7/PnvV2cSVEb/pe5AC8ZWVjHA7+rhVHbb4=
Subject key identifier: E6:F5:04:FC:24:00:67:EA:E2:2E:DF:78:83:40:CC:CC:F8:C0:2B:2F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 07F9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5vUE_CQAZ-riLt94g0DMzPjAKy8.roa
Signing time: Tue 29 Sep 2020 09:57:36 +0000
ROA not before: Tue 29 Sep 2020 09:57:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 202.132.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2041 (0x7f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E6F504FC240067EAE22EDF788340CCCCF8C02B2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:84:18:bf:82:27:fd:01:b7:59:3a:55:0f:e7:
a7:78:62:d9:f2:5a:71:4f:45:c6:e9:8c:5c:cc:e7:
e4:35:ec:83:fe:9d:ea:cd:16:35:ed:15:03:4b:94:
30:f1:aa:68:57:88:23:d6:d4:6a:3a:f0:75:ec:26:
3e:76:22:30:62:6b:cc:c9:70:2d:f8:85:9a:e4:ce:
f3:f8:86:a9:5e:53:f1:5e:7d:24:30:23:ce:1e:51:
7b:9d:31:61:81:55:79:da:1c:ca:a4:8e:7f:d9:5f:
9f:1d:69:fe:a5:73:3b:2c:ff:ed:a2:d7:3a:a5:e8:
70:f3:8a:cb:41:a7:ec:fe:94:fe:07:83:a7:21:dd:
f4:cf:7a:3d:2c:71:db:4c:72:56:2a:69:47:d8:8b:
c5:92:4b:a3:a2:ec:ca:ba:95:f0:82:bc:a7:11:10:
ea:90:37:f7:4d:fe:ee:96:7a:7b:36:f8:95:e2:46:
3d:cf:14:c8:35:0f:72:9a:c0:34:05:65:06:35:1f:
34:9f:19:d7:72:3f:59:3c:92:7c:d3:52:e3:76:10:
67:b2:cb:c2:24:57:33:73:b8:af:14:6d:19:79:02:
aa:d0:bd:18:15:ab:00:eb:f6:e5:a7:21:6c:5b:df:
25:70:eb:bd:4c:3c:76:15:23:fd:79:73:f4:bb:9f:
8d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F5:04:FC:24:00:67:EA:E2:2E:DF:78:83:40:CC:CC:F8:C0:2B:2F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5vUE_CQAZ-riLt94g0DMzPjAKy8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.132.0.0/16
Signature Algorithm: sha256WithRSAEncryption
17:0b:56:74:59:81:1e:5f:fc:56:05:b7:27:1c:b5:d1:06:1e:
12:e7:e6:11:8a:14:b5:9a:8b:bf:8e:c3:0c:4d:2c:80:e6:ab:
6f:86:c4:b9:3a:89:0f:bf:77:bd:d0:f3:29:58:a8:93:cc:47:
f1:43:6c:d6:0f:1e:1c:d3:01:30:c4:0b:da:cd:7f:b9:27:c2:
e5:7a:fe:fc:7a:6c:77:4b:8f:a2:d4:27:d0:c7:85:d8:51:51:
b2:b7:87:f6:87:ba:a1:da:2c:a9:d7:05:1f:e5:e2:01:82:b0:
4d:bf:f4:31:22:56:e5:e1:fc:e8:db:6d:35:16:a8:29:fd:c4:
bc:c0:e5:b4:58:d9:bb:4e:d3:35:06:95:2b:eb:0f:b1:18:48:
32:b0:34:b3:33:42:c1:24:1d:a7:d6:10:b9:1e:8f:c2:7d:d7:
df:0a:44:3c:3c:3a:49:8d:7c:ee:36:ed:fc:bc:8a:a4:0c:5e:
d3:b6:48:99:77:cd:a5:0a:85:b7:2d:b1:60:ab:76:2e:f2:8a:
5d:e9:92:fc:12:02:97:d9:41:9d:31:d2:9b:03:da:62:a5:6d:
83:3d:ce:3b:56:fa:fb:3c:c2:bf:11:ec:42:f6:27:cf:81:38:
f7:51:cd:3e:3f:af:4d:46:c5:0e:f0:f5:ce:fc:05:fc:cd:c2:
02:93:9a:7d
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICB/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDA5Mjkw
OTU3MzZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEU2RjUwNEZDMjQwMDY3
RUFFMjJFREY3ODgzNDBDQ0NDRjhDMDJCMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDrhBi/gif9AbdZOlUP56d4YtnyWnFPRcbpjFzM5+Q17IP+nerN
FjXtFQNLlDDxqmhXiCPW1Go68HXsJj52IjBia8zJcC34hZrkzvP4hqleU/FefSQw
I84eUXudMWGBVXnaHMqkjn/ZX58daf6lczss/+2i1zql6HDzistBp+z+lP4Hg6ch
3fTPej0scdtMclYqaUfYi8WSS6Oi7Mq6lfCCvKcREOqQN/dN/u6Wens2+JXiRj3P
FMg1D3KawDQFZQY1HzSfGddyP1k8knzTUuN2EGeyy8IkVzNzuK8UbRl5AqrQvRgV
qwDr9uWnIWxb3yVw671MPHYVI/15c/S7n41RAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQU5vUE/CQAZ+riLt94g0DMzPjAKy8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvNXZVRV9DUUFaLXJpTHQ5
NGcwRE16UGpBS3k4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
AMqEMA0GCSqGSIb3DQEBCwUAA4IBAQAXC1Z0WYEeX/xWBbcnHLXRBh4S5+YRihS1
mou/jsMMTSyA5qtvhsS5OokPv3e90PMpWKiTzEfxQ2zWDx4c0wEwxAvazX+5J8Ll
ev78emx3S4+i1CfQx4XYUVGyt4f2h7qh2iyp1wUf5eIBgrBNv/QxIlbl4fzo2201
Fqgp/cS8wOW0WNm7TtM1BpUr6w+xGEgysDSzM0LBJB2n1hC5Ho/CfdffCkQ8PDpJ
jXzuNu38vIqkDF7TtkiZd82lCoW3LbFgq3Yu8opd6ZL8EgKX2UGdMdKbA9pipW2D
Pc47Vvr7PMK/EexC9ifPgTj3Uc0+P69NRsUO8PXO/AX8zcICk5p9
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org