Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/EypjgxNuCx3hDiDrIvxHUCjiDwY.roa
File: EypjgxNuCx3hDiDrIvxHUCjiDwY.roa (raw, json)
Hash identifier: OduVf0zdPiSjszaJdloLi1afAUNgxhrUPN3PRkZQGzI=
Subject key identifier: 13:2A:63:83:13:6E:0B:1D:E1:0E:20:EB:22:FC:47:50:28:E2:0F:06
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0992
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/EypjgxNuCx3hDiDrIvxHUCjiDwY.roa
Signing time: Wed 16 Dec 2020 02:27:21 +0000
ROA not before: Wed 16 Dec 2020 02:27:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.13.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2450 (0x992)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:27:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=132A6383136E0B1DE10E20EB22FC475028E20F06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d5:7c:50:1e:25:95:af:cd:c7:11:54:2e:70:
ca:b8:b3:5a:16:9d:0a:13:f0:8d:8a:29:9b:2d:c2:
85:8b:8f:22:b1:c6:93:6a:02:91:53:2c:9b:83:f9:
8f:a6:2a:56:1a:6a:19:09:3c:ed:7a:3c:93:68:76:
51:e6:25:bd:47:5c:3d:20:e9:bb:cc:c2:4f:5b:dd:
97:b3:62:0f:c2:19:7d:c0:d0:ff:66:e7:3c:2e:6d:
1f:26:ab:47:0f:33:9a:2e:18:d1:77:4c:20:cf:e2:
77:58:e4:81:f9:c1:fb:ea:4e:f1:b2:ca:2e:c3:88:
bc:80:8d:24:9d:0b:19:bb:ee:02:2c:fa:52:ec:60:
bc:42:88:19:70:52:27:b7:b3:cf:ef:84:be:58:76:
d1:8a:72:c2:19:7f:ef:10:bf:00:7b:b2:95:ce:eb:
5d:7c:5d:97:c4:c7:8e:2b:52:5d:30:93:25:f5:84:
6d:87:14:01:33:70:89:4d:b2:91:fc:a4:1c:8e:0f:
d2:f9:ef:e6:a3:2d:36:68:19:7b:52:76:81:04:3c:
d6:eb:e7:59:65:c3:b5:cc:f7:2a:d0:78:53:4a:f2:
ad:84:e0:9d:a8:fb:de:0a:aa:96:93:42:54:69:9c:
6c:d6:fc:83:d1:cb:70:f2:36:57:73:1e:f9:70:67:
8d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:2A:63:83:13:6E:0B:1D:E1:0E:20:EB:22:FC:47:50:28:E2:0F:06
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/EypjgxNuCx3hDiDrIvxHUCjiDwY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.13.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:9f:5d:e1:73:48:05:21:75:be:ad:26:e9:4c:a2:ac:61:88:
6a:8c:d2:8f:cc:8f:41:50:06:23:8a:2e:dc:39:de:63:f0:e5:
03:d1:54:a3:7a:2a:8d:77:72:17:9d:87:11:fc:c2:f6:be:cb:
1c:24:9e:97:7a:4f:a4:41:e6:2a:68:8e:b5:d8:c7:e3:01:73:
78:9f:32:98:3d:88:cf:c8:7b:bb:3a:e8:04:c1:95:24:d5:b5:
fe:bd:d3:b5:df:a6:e5:e0:ab:fe:9f:3f:92:ef:8b:e5:05:36:
14:7c:fa:d7:73:0f:40:f1:1a:84:b2:2d:33:11:0e:a4:6a:17:
a2:d3:c3:5e:5e:8c:62:9f:7e:a3:bf:f9:79:1d:7b:b6:03:dd:
33:59:66:f7:fc:9e:d1:b9:e1:09:cd:2e:d8:5b:12:3b:8c:b6:
fe:c9:2a:97:3e:7c:01:54:bc:f9:29:5e:83:11:98:3b:a0:58:
e5:5e:6b:ca:16:a2:3b:32:a2:4d:7b:f6:c5:bd:61:f0:0c:d9:
4f:20:54:86:06:dc:33:d6:88:14:de:60:9e:70:91:10:32:12:
f6:2c:93:83:03:fa:6c:a3:0b:81:ff:8b:47:32:7b:ef:83:7c:
b9:38:10:3f:f3:b6:78:f4:03:a1:8f:ce:dd:8d:ca:b1:f6:d9:
12:f8:68:93
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCZIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDEyMTYw
MjI3MjFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDEzMkE2MzgzMTM2RTBC
MURFMTBFMjBFQjIyRkM0NzUwMjhFMjBGMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/1XxQHiWVr83HEVQucMq4s1oWnQoT8I2KKZstwoWLjyKxxpNq
ApFTLJuD+Y+mKlYaahkJPO16PJNodlHmJb1HXD0g6bvMwk9b3ZezYg/CGX3A0P9m
5zwubR8mq0cPM5ouGNF3TCDP4ndY5IH5wfvqTvGyyi7DiLyAjSSdCxm77gIs+lLs
YLxCiBlwUie3s8/vhL5YdtGKcsIZf+8QvwB7spXO6118XZfEx44rUl0wkyX1hG2H
FAEzcIlNspH8pByOD9L57+ajLTZoGXtSdoEEPNbr51llw7XM9yrQeFNK8q2E4J2o
+94KqpaTQlRpnGzW/IPRy3DyNldzHvlwZ43TAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUEypjgxNuCx3hDiDrIvxHUCjiDwYwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvRXlwamd4TnVDeDNoRGlE
ckl2eEhVQ2ppRHdZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ANIRDTANBgkqhkiG9w0BAQsFAAOCAQEAWp9d4XNIBSF1vq0m6UyirGGIaozSj8yP
QVAGI4ou3DneY/DlA9FUo3oqjXdyF52HEfzC9r7LHCSel3pPpEHmKmiOtdjH4wFz
eJ8ymD2Iz8h7uzroBMGVJNW1/r3Ttd+m5eCr/p8/ku+L5QU2FHz613MPQPEahLIt
MxEOpGoXotPDXl6MYp9+o7/5eR17tgPdM1lm9/ye0bnhCc0u2FsSO4y2/skqlz58
AVS8+SlegxGYO6BY5V5ryhaiOzKiTXv2xb1h8AzZTyBUhgbcM9aIFN5gnnCREDIS
9iyTgwP6bKMLgf+LRzJ774N8uTgQP/O2ePQDoY/O3Y3KsfbZEvhokw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org