Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BHI8nB3Lv_voIGLz_qbZgPlrVjs.roa
File: BHI8nB3Lv_voIGLz_qbZgPlrVjs.roa (raw, json)
Hash identifier: eHungxyrpCUugeylHFE05pZkUy5a2Fg2F3jr1qlXf6Y=
Subject key identifier: 04:72:3C:9C:1D:CB:BF:FB:E8:20:62:F3:FE:A6:D9:80:F9:6B:56:3B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AE0
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BHI8nB3Lv_voIGLz_qbZgPlrVjs.roa
Signing time: Sun 07 Feb 2021 11:40:45 +0000
ROA not before: Sun 07 Feb 2021 11:40:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 203.77.80.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2784 (0xae0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:40:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=04723C9C1DCBBFFBE82062F3FEA6D980F96B563B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:07:eb:c7:a6:15:8d:38:4a:8b:ad:1e:36:13:
df:55:75:0f:00:8a:e4:f9:b2:9f:88:00:5e:66:ed:
e8:de:5a:43:95:b4:51:c1:b7:99:74:28:1b:15:9b:
22:8c:15:ce:25:c6:4b:a1:0c:77:d8:5b:b2:f2:bf:
3e:18:77:2a:74:67:d2:90:76:94:e0:f1:06:e7:ec:
4d:2c:c3:74:46:3a:f8:56:06:31:ad:f2:04:e1:84:
bd:b3:29:1c:f4:4b:ca:9e:50:7e:0a:1b:ad:13:fa:
73:38:1b:cd:d3:0a:32:3d:8d:1d:a5:f1:e6:90:b6:
8f:eb:2f:ec:a0:e4:2b:38:1b:d5:a5:d1:52:c5:61:
81:f4:35:ba:d3:a6:54:3f:aa:5e:8c:5b:f5:cc:52:
34:3f:2e:7a:eb:e7:f0:1a:6b:fa:18:7b:df:80:cf:
38:42:14:3d:cc:6d:ae:49:bc:c9:5c:4d:4d:15:d9:
e1:80:cc:44:26:5a:55:49:66:b7:c6:c8:cb:c0:38:
20:d4:0d:f7:8e:c6:40:c2:26:90:07:1b:28:7e:3a:
02:b0:86:4a:e4:e9:77:32:fa:e3:6e:90:61:32:c0:
da:e6:0a:5f:76:7b:4a:3a:11:c8:42:34:d8:ca:14:
31:5a:c5:05:34:c7:fe:f4:e6:4b:16:c7:fd:f2:a8:
02:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:72:3C:9C:1D:CB:BF:FB:E8:20:62:F3:FE:A6:D9:80:F9:6B:56:3B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BHI8nB3Lv_voIGLz_qbZgPlrVjs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.80.0/23
Signature Algorithm: sha256WithRSAEncryption
38:19:35:20:2b:8f:47:69:21:09:73:2e:ac:84:a8:98:6c:74:
ff:34:3c:40:99:11:93:c0:28:4b:98:d4:d2:85:f2:0e:b7:40:
7f:b9:5a:e4:23:b7:65:b8:a1:ea:e9:74:44:9e:c5:db:85:03:
e1:30:68:a5:8e:98:1b:18:4c:17:18:c6:31:26:7f:c1:2c:c3:
4e:a9:00:8a:e4:0c:0f:16:98:be:05:68:68:74:bc:63:a3:b7:
13:6c:18:1e:2b:59:da:d2:d3:12:9a:44:f2:ff:21:76:ce:60:
95:37:91:e1:04:53:9c:bf:ef:c3:00:29:b1:38:71:2c:09:9d:
23:0e:2b:5c:65:d4:e0:ce:9f:ec:36:bc:9b:5e:7a:7b:40:f4:
1d:72:22:aa:e8:8d:1f:32:d6:b7:c3:f0:c9:60:18:b0:fc:00:
b1:b6:87:b6:6f:d9:04:21:2e:56:ae:28:09:03:49:62:c9:81:
b7:78:28:1e:f5:13:6b:b9:b0:04:0b:65:ad:33:08:0b:bc:07:
e1:db:05:fc:ea:41:d0:38:da:ce:1e:4b:a5:f0:43:72:43:70:
a8:0d:d4:db:1d:85:42:f3:d9:c0:77:60:12:6b:34:38:fd:69:
88:3f:13:5c:50:16:b4:89:46:c1:52:4e:73:8a:18:c7:f1:a3:
1c:68:d7:7b
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCuAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MTQwNDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA0NzIzQzlDMURDQkJG
RkJFODIwNjJGM0ZFQTZEOTgwRjk2QjU2M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDXB+vHphWNOEqLrR42E99VdQ8AiuT5sp+IAF5m7ejeWkOVtFHB
t5l0KBsVmyKMFc4lxkuhDHfYW7Lyvz4Ydyp0Z9KQdpTg8Qbn7E0sw3RGOvhWBjGt
8gThhL2zKRz0S8qeUH4KG60T+nM4G83TCjI9jR2l8eaQto/rL+yg5Cs4G9Wl0VLF
YYH0NbrTplQ/ql6MW/XMUjQ/Lnrr5/Aaa/oYe9+AzzhCFD3Mba5JvMlcTU0V2eGA
zEQmWlVJZrfGyMvAOCDUDfeOxkDCJpAHGyh+OgKwhkrk6Xcy+uNukGEywNrmCl92
e0o6EchCNNjKFDFaxQU0x/705ksWx/3yqAIfAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUBHI8nB3Lv/voIGLz/qbZgPlrVjswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQkhJOG5CM0x2X3ZvSUdM
el9xYlpnUGxyVmpzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ActNUDANBgkqhkiG9w0BAQsFAAOCAQEAOBk1ICuPR2khCXMurISomGx0/zQ8QJkR
k8AoS5jU0oXyDrdAf7la5CO3Zbih6ul0RJ7F24UD4TBopY6YGxhMFxjGMSZ/wSzD
TqkAiuQMDxaYvgVoaHS8Y6O3E2wYHitZ2tLTEppE8v8hds5glTeR4QRTnL/vwwAp
sThxLAmdIw4rXGXU4M6f7Da8m156e0D0HXIiquiNHzLWt8PwyWAYsPwAsbaHtm/Z
BCEuVq4oCQNJYsmBt3goHvUTa7mwBAtlrTMIC7wH4dsF/OpB0Djazh5LpfBDckNw
qA3U2x2FQvPZwHdgEms0OP1piD8TXFAWtIlGwVJOc4oYx/GjHGjXew==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:41:06 2025 by rpki-client