Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/7PZ78xS-QOUJxTT6HmOQC71KMxc.roa
File: 7PZ78xS-QOUJxTT6HmOQC71KMxc.roa (raw, json)
Hash identifier: qhZikdBwFyhspqueOX4mt+0aGnqLKT7oyydqAJAzApU=
Subject key identifier: EC:F6:7B:F3:14:BE:40:E5:09:C5:34:FA:1E:63:90:0B:BD:4A:33:17
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C40
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/7PZ78xS-QOUJxTT6HmOQC71KMxc.roa
Signing time: Wed 29 Sep 2021 02:49:36 +0000
ROA not before: Wed 29 Sep 2021 02:49:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.17.43.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3136 (0xc40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=ECF67BF314BE40E509C534FA1E63900BBD4A3317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:cb:a8:5a:9f:95:2f:dc:cf:c5:90:8d:81:8c:
16:54:96:dd:c1:45:b5:0c:fe:61:8a:8a:af:86:e1:
88:5e:fd:66:cb:7f:e5:97:f0:1f:3a:c8:60:0a:81:
c1:c0:c0:cd:e1:77:7f:fc:41:42:16:8a:cd:96:7e:
0b:ed:59:21:6a:9d:0f:e3:79:3a:e0:c4:03:22:e9:
8b:59:bd:fb:d3:28:3c:ed:e4:86:7d:d5:91:c9:43:
d3:51:cd:f1:be:c2:a5:06:c4:16:a4:03:fe:d6:5c:
ed:77:3c:ae:e4:c9:e2:a4:a0:a2:cc:87:19:dd:4f:
58:09:4e:67:54:58:38:e5:af:17:c6:88:f1:32:98:
99:6f:90:3c:43:55:ea:17:3f:a2:33:ff:9e:6b:94:
ab:e2:31:d2:42:25:83:d5:81:62:b5:b3:a2:ca:db:
7b:2c:17:8c:14:bc:71:f7:cf:46:e1:72:c7:9c:72:
cc:92:c5:a2:23:69:7f:97:7a:31:30:78:7f:9a:b2:
38:16:a0:e1:b6:74:38:2a:43:29:f5:72:52:aa:e7:
e5:5c:92:20:44:4a:25:1e:d8:2b:9b:49:68:12:a0:
48:bc:84:03:ee:f4:5d:d3:2f:a7:ae:e3:8e:8a:49:
b1:3c:83:cc:d4:e9:18:7d:69:a9:e4:20:f2:64:eb:
2b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F6:7B:F3:14:BE:40:E5:09:C5:34:FA:1E:63:90:0B:BD:4A:33:17
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/7PZ78xS-QOUJxTT6HmOQC71KMxc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.43.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:8d:9b:98:85:0e:8b:c1:9a:3b:f1:5a:29:ba:5e:46:ff:c4:
74:e0:e1:6c:7b:9d:bb:8b:49:18:a1:39:40:23:2b:36:62:09:
99:a8:12:ab:52:76:0d:a2:90:f3:60:be:95:e2:15:c0:14:9d:
7c:db:6a:3e:11:98:fb:aa:24:48:35:a2:23:e0:b8:d1:77:f8:
71:a0:a6:2f:2e:b3:1a:96:88:3a:34:06:09:07:e5:c7:b9:8c:
5e:4f:aa:a5:1a:34:c5:20:78:56:f8:bd:95:ea:ed:e7:a3:76:
72:8b:64:71:21:ac:3e:81:cd:c0:75:7e:05:4f:df:c8:a9:b4:
63:eb:9b:cd:51:3c:13:b2:ef:1d:99:ae:24:fe:c2:01:d2:85:
9e:78:5d:44:c9:42:5b:41:36:30:19:26:fe:f3:1e:31:d2:01:
61:5d:2c:a9:35:a0:d8:eb:d2:4c:9a:bc:b4:87:f1:84:ce:b5:
fb:e0:15:25:73:db:ad:49:e3:b1:28:fa:a9:26:3a:32:81:f5:
c4:08:33:27:ab:41:ab:71:cd:cc:21:76:b1:9f:06:10:6b:1b:
0c:f0:f2:5b:9f:50:1c:4f:cc:fc:6c:dd:98:1f:da:f1:d1:fb:
e0:48:47:84:c6:3e:c4:82:17:1b:2c:ae:52:03:09:a0:e3:97:
7d:ea:0c:36
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDEAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjQ5MzZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEVDRjY3QkYzMTRCRTQw
RTUwOUM1MzRGQTFFNjM5MDBCQkQ0QTMzMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCly6han5Uv3M/FkI2BjBZUlt3BRbUM/mGKiq+G4Yhe/WbLf+WX
8B86yGAKgcHAwM3hd3/8QUIWis2WfgvtWSFqnQ/jeTrgxAMi6YtZvfvTKDzt5IZ9
1ZHJQ9NRzfG+wqUGxBakA/7WXO13PK7kyeKkoKLMhxndT1gJTmdUWDjlrxfGiPEy
mJlvkDxDVeoXP6Iz/55rlKviMdJCJYPVgWK1s6LK23ssF4wUvHH3z0bhcseccsyS
xaIjaX+XejEweH+asjgWoOG2dDgqQyn1clKq5+VckiBESiUe2CubSWgSoEi8hAPu
9F3TL6eu446KSbE8g8zU6Rh9aankIPJk6yvNAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU7PZ78xS+QOUJxTT6HmOQC71KMxcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvN1BaNzh4Uy1RT1VKeFRU
NkhtT1FDNzFLTXhjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ANIRKzANBgkqhkiG9w0BAQsFAAOCAQEAXI2bmIUOi8GaO/FaKbpeRv/EdODhbHud
u4tJGKE5QCMrNmIJmagSq1J2DaKQ82C+leIVwBSdfNtqPhGY+6okSDWiI+C40Xf4
caCmLy6zGpaIOjQGCQflx7mMXk+qpRo0xSB4Vvi9lert56N2cotkcSGsPoHNwHV+
BU/fyKm0Y+ubzVE8E7LvHZmuJP7CAdKFnnhdRMlCW0E2MBkm/vMeMdIBYV0sqTWg
2OvSTJq8tIfxhM61++AVJXPbrUnjsSj6qSY6MoH1xAgzJ6tBq3HNzCF2sZ8GEGsb
DPDyW59QHE/M/GzdmB/a8dH74EhHhMY+xIIXGyyuUgMJoOOXfeoMNg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org