Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AtyOAhFgxhkqzQGPbFcpUisVvQs.roa
File: AtyOAhFgxhkqzQGPbFcpUisVvQs.roa (raw, json)
Hash identifier: RC4tz6ulpO4rPMCLQKj9IIzNz3PU/QND3305Ku+qfFM=
Subject key identifier: 02:DC:8E:02:11:60:C6:19:2A:CD:01:8F:6C:57:29:52:2B:15:BD:0B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CCA
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AtyOAhFgxhkqzQGPbFcpUisVvQs.roa
Signing time: Wed 29 Sep 2021 02:50:16 +0000
ROA not before: Wed 29 Sep 2021 02:50:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 60.199.162.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3274 (0xcca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=02DC8E021160C6192ACD018F6C5729522B15BD0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e7:c7:e0:cc:8a:c8:98:43:df:db:29:3b:37:
3a:8d:20:d6:e3:ef:a9:e0:c1:dc:e1:05:e2:9f:90:
a0:d6:a4:f1:ea:c0:b2:39:d4:1b:c3:60:c2:67:f5:
8c:58:b9:cd:97:55:0a:2e:dd:92:be:af:8b:bd:c8:
fc:6c:7c:de:b4:19:4c:5d:0d:1c:d5:33:40:6a:d2:
5e:ba:04:51:f6:8e:4c:a5:22:8e:c9:f4:33:49:af:
80:32:12:82:8e:04:0e:0d:18:f2:14:6b:74:73:c2:
34:86:66:7f:ce:d4:90:a8:19:1a:d1:92:6a:eb:7c:
bf:04:a2:c1:c5:51:0a:7f:84:2d:a6:86:24:2d:5e:
fe:8b:d2:e0:91:bb:67:5f:19:a6:51:e4:15:21:76:
1c:06:36:39:2d:95:2d:e1:28:9c:4f:02:b8:ff:5d:
43:35:e7:d4:26:a8:42:a9:7d:d4:07:d3:5a:8e:03:
f5:25:67:64:82:8a:3b:fe:a2:e9:9d:9c:b2:79:01:
d9:cb:ce:c4:b7:d9:17:67:9b:99:4e:08:1c:fb:59:
80:3a:d6:00:98:a0:1e:1d:0e:e7:f8:1d:9d:98:53:
38:b1:10:e8:b1:f7:a4:e3:e7:85:74:21:7d:2a:31:
94:59:da:30:d2:3e:87:c7:69:d5:e9:f4:69:7e:65:
cc:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DC:8E:02:11:60:C6:19:2A:CD:01:8F:6C:57:29:52:2B:15:BD:0B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AtyOAhFgxhkqzQGPbFcpUisVvQs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.162.0/24
Signature Algorithm: sha256WithRSAEncryption
09:2e:39:95:09:e1:5d:dd:9c:c3:0b:0b:1b:c4:d9:d4:eb:90:
1f:59:61:ed:f0:95:c9:4b:fd:b5:e3:cb:3a:f1:f8:14:e3:02:
fb:dc:d6:e1:bf:22:1c:26:9b:5b:88:76:65:c0:2a:8d:e0:8b:
13:61:3c:fc:92:ff:70:bd:9b:79:71:93:a5:57:90:bb:5c:d0:
17:6b:03:61:31:13:ad:64:53:d5:20:b7:84:b3:7f:24:19:68:
16:09:e0:8a:c8:68:77:19:51:11:38:48:d2:ac:3b:d5:34:5f:
95:e7:a7:9a:b2:4e:09:0d:1c:05:34:34:38:c5:6d:89:41:3b:
20:d2:d5:6d:b3:a9:1f:53:51:31:5f:c6:40:0a:85:f5:37:9a:
93:f3:d7:b1:38:23:e7:11:82:1d:2c:6c:35:0e:e6:d1:d0:af:
79:34:0e:fe:11:88:95:d6:bb:e9:9b:06:ba:ec:0c:59:30:fa:
f7:d5:6b:ba:2c:11:ae:01:3f:1d:1a:e2:41:9d:91:79:01:9f:
ae:aa:c9:be:c5:76:35:37:0b:ca:a5:22:85:2f:7f:4f:99:84:
db:ba:29:74:4f:91:a6:11:95:10:39:6f:a1:5d:3b:9b:9a:d0:
62:08:81:ea:25:31:a4:65:48:8a:a1:2c:28:84:4e:d7:e9:99:
4b:d2:d8:e8
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDMowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjUwMTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDAyREM4RTAyMTE2MEM2
MTkyQUNEMDE4RjZDNTcyOTUyMkIxNUJEMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC958fgzIrImEPf2yk7NzqNINbj76ngwdzhBeKfkKDWpPHqwLI5
1BvDYMJn9YxYuc2XVQou3ZK+r4u9yPxsfN60GUxdDRzVM0Bq0l66BFH2jkylIo7J
9DNJr4AyEoKOBA4NGPIUa3RzwjSGZn/O1JCoGRrRkmrrfL8EosHFUQp/hC2mhiQt
Xv6L0uCRu2dfGaZR5BUhdhwGNjktlS3hKJxPArj/XUM159QmqEKpfdQH01qOA/Ul
Z2SCijv+oumdnLJ5AdnLzsS32Rdnm5lOCBz7WYA61gCYoB4dDuf4HZ2YUzixEOix
96Tj54V0IX0qMZRZ2jDSPofHadXp9Gl+Zcy/AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUAtyOAhFgxhkqzQGPbFcpUisVvQswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQXR5T0FoRmd4aGtxelFH
UGJGY3BVaXNWdlFzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ADzHojANBgkqhkiG9w0BAQsFAAOCAQEACS45lQnhXd2cwwsLG8TZ1OuQH1lh7fCV
yUv9tePLOvH4FOMC+9zW4b8iHCabW4h2ZcAqjeCLE2E8/JL/cL2beXGTpVeQu1zQ
F2sDYTETrWRT1SC3hLN/JBloFgngishodxlREThI0qw71TRfleenmrJOCQ0cBTQ0
OMVtiUE7INLVbbOpH1NRMV/GQAqF9Teak/PXsTgj5xGCHSxsNQ7m0dCveTQO/hGI
lda76ZsGuuwMWTD699VruiwRrgE/HRriQZ2ReQGfrqrJvsV2NTcLyqUihS9/T5mE
27opdE+RphGVEDlvoV07m5rQYgiB6iUxpGVIiqEsKIRO1+mZS9LY6A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org