Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/A9bG9GAYe-BGECxx2n5Ex1XKu_Y.roa
File: A9bG9GAYe-BGECxx2n5Ex1XKu_Y.roa (raw, json)
Hash identifier: oDy/dTsPuxNLpTUlThtxVHSQ65Z0bq87ehVlx0ZUskM=
Subject key identifier: 03:D6:C6:F4:60:18:7B:E0:46:10:2C:71:DA:7E:44:C7:55:CA:BB:F6
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 099A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/A9bG9GAYe-BGECxx2n5Ex1XKu_Y.roa
Signing time: Wed 16 Dec 2020 02:35:55 +0000
ROA not before: Wed 16 Dec 2020 02:35:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.17.224/27 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2458 (0x99a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:35:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=03D6C6F460187BE046102C71DA7E44C755CABBF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c6:5f:76:11:38:e7:af:d2:d6:a7:b8:ae:c8:
96:b0:9f:50:a1:a3:4a:b6:53:2c:08:c0:96:fe:7d:
1a:bd:e4:97:5c:55:8c:75:0d:8e:17:7b:e4:d1:f2:
2b:1f:ee:7e:62:e0:ca:c1:00:38:02:41:32:fb:39:
92:2d:25:c5:e1:5a:8f:5b:2b:bd:9f:63:2e:16:28:
19:8f:a0:01:b2:b6:e2:c0:8a:c2:dd:cb:21:ae:65:
d8:91:b0:4e:45:63:55:b4:6c:d1:9c:32:f1:6d:e3:
7e:c9:93:c6:55:ba:47:08:4c:3e:ad:df:d6:cc:42:
df:07:6c:67:a6:95:45:a9:90:e3:fa:96:16:15:b7:
b8:15:8e:a8:ab:df:52:a1:93:6e:00:cb:95:f8:6f:
4c:72:b1:bb:d9:55:1e:ad:b4:f3:10:fc:c4:f2:72:
00:d5:65:44:bd:70:ee:c3:0c:27:4f:c6:05:c2:7c:
b5:7e:97:92:4f:d6:f0:ae:37:e5:04:8a:d8:ce:48:
13:20:82:91:4c:c8:c8:5b:1e:81:1c:98:cc:5c:a5:
de:a4:f9:f0:cc:26:7e:5d:6c:79:3a:68:90:01:41:
ca:06:36:53:bb:ee:6a:d8:d3:13:ec:b7:eb:16:1f:
c4:21:14:d3:56:1c:02:56:85:d1:1f:c4:09:c9:ff:
89:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D6:C6:F4:60:18:7B:E0:46:10:2C:71:DA:7E:44:C7:55:CA:BB:F6
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/A9bG9GAYe-BGECxx2n5Ex1XKu_Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.17.224/27
Signature Algorithm: sha256WithRSAEncryption
49:b0:c5:87:e3:8c:ab:3d:96:e9:e5:47:5c:56:2b:f8:94:17:
34:7b:1f:f2:76:ab:86:b1:2c:92:e2:be:c3:af:bb:f2:15:c8:
1e:c6:f0:4d:a8:5a:67:5d:78:3b:6b:dd:c8:50:b9:43:e7:13:
b9:b2:8c:ca:c9:81:2f:d5:39:05:c5:0e:7e:61:24:18:6f:77:
c4:0a:2a:d5:2a:d9:b4:8c:25:52:e2:81:a1:8e:ba:82:7b:8b:
8e:ba:b1:0a:9e:fa:80:e4:af:ca:99:9a:57:15:ac:0c:16:87:
47:5b:2d:e9:5a:ac:12:79:a9:7b:1c:36:fe:da:d9:69:46:ae:
c3:b4:7d:a0:50:3b:8f:85:cc:96:99:df:19:47:31:2b:5c:1d:
e8:62:ad:91:b2:eb:28:4a:4b:3b:9c:e3:fb:54:ea:7a:34:ed:
07:a3:95:d7:40:82:e7:e4:b6:61:11:bc:11:14:e8:e8:75:e1:
53:aa:d6:7c:05:e4:55:ee:ee:e0:52:df:8e:6a:8e:18:03:c0:
e6:24:b9:19:48:b3:eb:68:b9:62:a4:85:b5:06:75:2c:60:43:
da:27:c4:cf:84:0f:0b:33:b1:c3:64:b1:1c:3b:13:7e:22:9e:
f8:74:f5:32:8b:37:e2:d5:d9:57:9b:27:5f:71:ff:c1:76:26:
ba:b1:95:13
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICCZowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDEyMTYw
MjM1NTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDAzRDZDNkY0NjAxODdC
RTA0NjEwMkM3MURBN0U0NEM3NTVDQUJCRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDWxl92ETjnr9LWp7iuyJawn1Cho0q2UywIwJb+fRq95JdcVYx1
DY4Xe+TR8isf7n5i4MrBADgCQTL7OZItJcXhWo9bK72fYy4WKBmPoAGytuLAisLd
yyGuZdiRsE5FY1W0bNGcMvFt437Jk8ZVukcITD6t39bMQt8HbGemlUWpkOP6lhYV
t7gVjqir31Khk24Ay5X4b0xysbvZVR6ttPMQ/MTycgDVZUS9cO7DDCdPxgXCfLV+
l5JP1vCuN+UEitjOSBMggpFMyMhbHoEcmMxcpd6k+fDMJn5dbHk6aJABQcoGNlO7
7mrY0xPst+sWH8QhFNNWHAJWhdEfxAnJ/4k9AgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUA9bG9GAYe+BGECxx2n5Ex1XKu/YwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQTliRzlHQVllLUJHRUN4
eDJuNUV4MVhLdV9ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMF
BdIREeAwDQYJKoZIhvcNAQELBQADggEBAEmwxYfjjKs9lunlR1xWK/iUFzR7H/J2
q4axLJLivsOvu/IVyB7G8E2oWmddeDtr3chQuUPnE7myjMrJgS/VOQXFDn5hJBhv
d8QKKtUq2bSMJVLigaGOuoJ7i466sQqe+oDkr8qZmlcVrAwWh0dbLelarBJ5qXsc
Nv7a2WlGrsO0faBQO4+FzJaZ3xlHMStcHehirZGy6yhKSzuc4/tU6no07QejlddA
gufktmERvBEU6Oh14VOq1nwF5FXu7uBS345qjhgDwOYkuRlIs+touWKkhbUGdSxg
Q9onxM+EDwszscNksRw7E34invh09TKLN+LV2VebJ19x/8F2JrqxlRM=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:02 2023 by rpki-client on console-ams.rpki-client.org