Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/A1-U2ZKxB3kNJgVPol13ZtFrfb4.roa
File: A1-U2ZKxB3kNJgVPol13ZtFrfb4.roa (raw, json)
Hash identifier: wdIllr28Tlos833rsZYLFpRe5mRMWLtKIwFhIWXoyKk=
Subject key identifier: 03:5F:94:D9:92:B1:07:79:0D:26:05:4F:A2:5D:77:66:D1:6B:7D:BE
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AC8
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/A1-U2ZKxB3kNJgVPol13ZtFrfb4.roa
Signing time: Sun 07 Feb 2021 11:40:25 +0000
ROA not before: Sun 07 Feb 2021 11:40:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17213
IP address blocks: 60.198.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2760 (0xac8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:40:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=035F94D992B107790D26054FA25D7766D16B7DBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e8:63:3b:cf:5a:25:dd:e3:84:3d:4f:be:6a:
d9:06:38:06:15:7e:28:fc:9a:bd:10:41:5e:3d:bd:
db:72:1a:f8:38:b7:86:6a:c6:0b:74:b1:87:1d:7d:
81:9a:2f:1c:53:67:61:d0:e6:67:0b:f0:20:19:33:
0e:14:ca:21:e6:bd:1d:04:79:82:7e:ac:72:0f:c9:
61:a1:27:d1:1b:c2:9e:77:33:d8:4d:2d:31:b2:a4:
d1:7a:6b:38:36:ff:2b:50:15:90:ba:38:a2:3a:fb:
6a:0d:b2:ac:47:30:7d:37:46:db:f0:6e:02:dc:03:
a7:e4:c6:ef:da:40:2a:df:e7:a7:38:3b:78:d8:ed:
e0:34:2b:84:ec:9c:55:fc:49:3d:b0:c0:44:9e:8e:
33:fb:d6:d2:2c:5c:da:a1:09:7b:fd:c1:b1:06:33:
30:45:3f:f1:26:2a:37:2f:34:48:11:e7:41:b4:18:
d2:0f:bc:18:d4:67:16:91:1d:39:7d:6d:1e:12:d8:
a2:4f:6e:d8:86:28:03:92:93:4c:1b:46:c9:4f:ff:
c4:a1:37:90:17:2b:8a:ff:22:ac:70:67:f6:7b:41:
f5:37:8e:f3:c2:7e:ca:01:2f:b9:ee:46:50:5c:73:
22:de:3f:5a:1d:f3:a9:84:27:cf:17:65:80:36:f2:
f0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:5F:94:D9:92:B1:07:79:0D:26:05:4F:A2:5D:77:66:D1:6B:7D:BE
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/A1-U2ZKxB3kNJgVPol13ZtFrfb4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.154.0/24
Signature Algorithm: sha256WithRSAEncryption
80:3b:b9:eb:a2:c9:dc:8e:f3:4e:e1:09:ed:c0:31:5a:0e:cf:
3f:23:42:d6:78:0a:00:93:04:c4:c4:55:fe:8c:a9:e4:d8:e5:
7b:81:99:6d:93:15:1c:ba:c7:57:13:2b:47:da:1b:a4:c0:22:
bd:89:98:c4:e7:ac:15:e1:38:39:e7:b1:bb:c2:56:e3:f5:33:
82:5c:47:1a:e6:7f:b2:39:ee:18:c4:40:87:c1:c8:74:eb:e8:
63:d8:e6:fe:8f:47:05:5a:4f:a6:0c:64:2a:71:a3:65:fa:bf:
8d:ff:ed:47:af:c4:b7:6a:71:04:5f:95:2d:52:8e:24:60:93:
11:7c:e4:c9:9d:6f:3e:15:f3:75:c0:cd:89:7c:af:80:b0:2a:
7c:36:0c:90:fa:9f:86:73:de:b7:66:cf:ad:55:02:19:46:c6:
7c:7c:98:6e:d0:c3:1e:33:13:45:ed:ca:ad:af:3e:51:5b:d6:
4a:60:70:62:c8:03:b8:5a:bb:5c:dc:fc:9a:9b:99:97:2b:49:
57:35:fb:fd:90:4b:85:bd:2f:dd:da:73:6c:90:ae:89:7b:53:
a3:7f:15:1b:05:83:a2:c7:0a:5e:fc:a5:79:5c:e7:2b:55:3d:
a8:1c:45:88:6b:37:03:ff:61:60:9a:df:a7:0f:bb:a5:a7:67:
ec:9e:9c:4f
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCsgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MTQwMjVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDAzNUY5NEQ5OTJCMTA3
NzkwRDI2MDU0RkEyNUQ3NzY2RDE2QjdEQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDM6GM7z1ol3eOEPU++atkGOAYVfij8mr0QQV49vdtyGvg4t4Zq
xgt0sYcdfYGaLxxTZ2HQ5mcL8CAZMw4UyiHmvR0EeYJ+rHIPyWGhJ9Ebwp53M9hN
LTGypNF6azg2/ytQFZC6OKI6+2oNsqxHMH03RtvwbgLcA6fkxu/aQCrf56c4O3jY
7eA0K4TsnFX8ST2wwESejjP71tIsXNqhCXv9wbEGMzBFP/EmKjcvNEgR50G0GNIP
vBjUZxaRHTl9bR4S2KJPbtiGKAOSk0wbRslP/8ShN5AXK4r/IqxwZ/Z7QfU3jvPC
fsoBL7nuRlBccyLeP1od86mEJ88XZYA28vDzAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUA1+U2ZKxB3kNJgVPol13ZtFrfb4wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQTEtVTJaS3hCM2tOSmdW
UG9sMTNadEZyZmI0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ADzGmjANBgkqhkiG9w0BAQsFAAOCAQEAgDu566LJ3I7zTuEJ7cAxWg7PPyNC1ngK
AJMExMRV/oyp5Njle4GZbZMVHLrHVxMrR9obpMAivYmYxOesFeE4Oeexu8JW4/Uz
glxHGuZ/sjnuGMRAh8HIdOvoY9jm/o9HBVpPpgxkKnGjZfq/jf/tR6/Et2pxBF+V
LVKOJGCTEXzkyZ1vPhXzdcDNiXyvgLAqfDYMkPqfhnPet2bPrVUCGUbGfHyYbtDD
HjMTRe3Kra8+UVvWSmBwYsgDuFq7XNz8mpuZlytJVzX7/ZBLhb0v3dpzbJCuiXtT
o38VGwWDoscKXvyleVznK1U9qBxFiGs3A/9hYJrfpw+7padn7J6cTw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org