Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DJHDHcsjr3tHeQpQy2EyI0diavI.roa
File: DJHDHcsjr3tHeQpQy2EyI0diavI.roa (raw, json)
Hash identifier: 9Bd5zaz4lEZi/mQ0ZZNTn1soUSEOitVlI2Ef7Vseh+0=
Subject key identifier: 0C:91:C3:1D:CB:23:AF:7B:47:79:0A:50:CB:61:32:23:47:62:6A:F2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AA8
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DJHDHcsjr3tHeQpQy2EyI0diavI.roa
Signing time: Sun 07 Feb 2021 11:36:53 +0000
ROA not before: Sun 07 Feb 2021 11:36:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.243.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2728 (0xaa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0C91C31DCB23AF7B47790A50CB61322347626AF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c3:2e:cf:af:1d:cf:a7:03:4c:43:c6:30:5e:
af:6d:e7:17:fe:ee:f2:c1:77:6a:fb:b7:d8:4d:e1:
cd:6e:4a:1c:a6:d0:ce:f6:86:bc:3b:c8:ee:78:61:
db:cb:2a:e6:7c:70:66:8c:42:3a:ac:2e:1a:86:f0:
2b:ed:a9:61:f2:c8:ba:1e:64:72:24:0a:ed:a6:80:
40:ef:24:89:bc:cc:3e:63:59:ec:11:ed:f8:67:5b:
62:39:95:67:c9:aa:1c:3f:0d:0c:64:3c:d1:c3:90:
b4:88:d0:10:59:01:d0:1e:63:c8:c0:68:52:d4:bd:
1e:90:4e:77:0f:70:c2:a6:2f:2b:d4:63:5a:c8:ee:
1e:89:ce:91:3a:a3:00:10:a8:cf:f9:11:15:e9:8d:
36:2b:97:66:93:bb:ed:8c:df:74:22:cb:1c:2e:18:
63:84:ba:c7:d5:7f:32:31:14:b2:aa:fc:fb:17:ac:
03:19:1b:74:7d:92:5a:06:b2:7f:e1:d2:95:73:b6:
ff:87:eb:59:c4:a6:97:f2:92:ac:e9:ab:d5:1f:f1:
e6:29:3c:3f:ce:23:a4:a9:b7:62:8d:23:9f:6b:de:
71:f2:9c:c1:b2:a5:bf:cf:22:e6:d6:a4:b2:23:dc:
11:7d:2d:b6:73:3f:92:de:af:14:cc:b5:46:1c:6e:
3b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:91:C3:1D:CB:23:AF:7B:47:79:0A:50:CB:61:32:23:47:62:6A:F2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DJHDHcsjr3tHeQpQy2EyI0diavI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.64.0/19
Signature Algorithm: sha256WithRSAEncryption
39:24:8b:89:98:76:ca:14:bc:a1:d6:fe:df:54:ec:8d:38:5d:
44:5f:51:e7:25:c6:d5:6e:15:9e:98:2d:6c:79:3e:20:52:47:
90:52:c3:8c:7d:d0:dd:68:0a:8d:f7:12:42:ed:ae:e4:19:06:
f8:2d:f5:26:54:81:0d:1c:d5:2a:c6:6f:a9:d3:3f:de:bd:61:
e9:90:2a:d1:42:02:98:1c:11:4f:df:20:18:63:e8:6f:b1:2e:
ba:4f:c6:24:05:c6:a5:7a:e3:e1:64:18:ff:5a:89:6c:ef:53:
64:4e:4f:71:22:e6:2a:2c:e7:a1:1f:d1:a6:6d:f1:bd:67:ad:
07:e7:63:8c:4b:bd:79:f1:9d:03:40:88:67:16:15:8b:98:ff:
bc:81:f0:67:87:f4:38:a0:95:9c:e0:13:55:74:13:52:49:9e:
54:bc:12:17:ff:66:55:96:51:03:a7:4f:fa:7e:23:35:9c:6b:
2e:33:03:63:8e:9f:f0:fa:ad:7e:26:de:a4:07:f5:fa:39:0b:
06:b0:eb:18:cb:05:d2:b8:93:ce:1c:22:d4:eb:33:58:57:53:
60:e6:df:05:0c:99:b2:b4:f4:5b:ee:7e:fa:a1:4a:cf:1c:53:
67:55:d5:0d:e9:76:26:25:65:ae:bb:87:9e:6e:8b:02:2d:b8:
38:39:21:62
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCqgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MTM2NTNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDBDOTFDMzFEQ0IyM0FG
N0I0Nzc5MEE1MENCNjEzMjIzNDc2MjZBRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8wy7Prx3PpwNMQ8YwXq9t5xf+7vLBd2r7t9hN4c1uShym0M72
hrw7yO54YdvLKuZ8cGaMQjqsLhqG8CvtqWHyyLoeZHIkCu2mgEDvJIm8zD5jWewR
7fhnW2I5lWfJqhw/DQxkPNHDkLSI0BBZAdAeY8jAaFLUvR6QTncPcMKmLyvUY1rI
7h6JzpE6owAQqM/5ERXpjTYrl2aTu+2M33QiyxwuGGOEusfVfzIxFLKq/PsXrAMZ
G3R9kloGsn/h0pVztv+H61nEppfykqzpq9Uf8eYpPD/OI6Spt2KNI59r3nHynMGy
pb/PIubWpLIj3BF9LbZzP5LerxTMtUYcbjtBAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUDJHDHcsjr3tHeQpQy2EyI0diavIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvREpIREhjc2pyM3RIZVFw
UXkyRXlJMGRpYXZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BdLzQDANBgkqhkiG9w0BAQsFAAOCAQEAOSSLiZh2yhS8odb+31TsjThdRF9R5yXG
1W4VnpgtbHk+IFJHkFLDjH3Q3WgKjfcSQu2u5BkG+C31JlSBDRzVKsZvqdM/3r1h
6ZAq0UICmBwRT98gGGPob7Euuk/GJAXGpXrj4WQY/1qJbO9TZE5PcSLmKiznoR/R
pm3xvWetB+djjEu9efGdA0CIZxYVi5j/vIHwZ4f0OKCVnOATVXQTUkmeVLwSF/9m
VZZRA6dP+n4jNZxrLjMDY46f8PqtfibepAf1+jkLBrDrGMsF0riTzhwi1OszWFdT
YObfBQyZsrT0W+5++qFKzxxTZ1XVDel2JiVlrruHnm6LAi24ODkhYg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:41 2025 by rpki-client