Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GjBwPvB1dBaNTsS558-pJzZ-96w.roa
File: GjBwPvB1dBaNTsS558-pJzZ-96w.roa (raw, json)
Hash identifier: EhI1tyI+y40fAOge7HeO2CAJoLPder2QnN3arbs6t5U=
Subject key identifier: 1A:30:70:3E:F0:75:74:16:8D:4E:C4:B9:E7:CF:A9:27:36:7E:F7:AC
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C84
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GjBwPvB1dBaNTsS558-pJzZ-96w.roa
Signing time: Wed 29 Sep 2021 02:49:56 +0000
ROA not before: Wed 29 Sep 2021 02:49:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 203.77.40.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3204 (0xc84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1A30703EF07574168D4EC4B9E7CFA927367EF7AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a3:fd:1d:70:75:e6:f8:dc:30:25:14:c0:e2:
58:68:68:d6:59:bd:cd:86:b7:c4:57:28:a0:fc:7c:
eb:f7:6a:38:b6:6f:5a:45:19:cd:7e:91:93:dc:4d:
f5:32:38:04:5d:d9:51:7f:6c:86:af:52:1a:f4:4c:
fe:d8:28:71:1e:fb:a4:e9:5b:48:d6:b9:ca:4f:b3:
b6:f6:b0:19:ae:7b:de:f1:00:ca:4b:e2:58:de:c5:
08:c0:9c:c0:dc:99:de:fa:85:53:fd:42:55:46:bf:
00:b2:1a:f9:50:6c:77:da:b3:d6:66:6c:8f:28:40:
cc:65:fc:7c:2c:4d:c6:96:94:4f:86:11:cb:c0:36:
9a:0a:df:16:86:74:cd:9f:2f:0e:f0:e3:95:9e:27:
77:e2:31:d2:5f:d3:c6:e2:26:49:12:b3:94:e8:8d:
63:d2:55:a3:0f:fc:36:ba:13:67:b6:14:b5:c5:23:
55:99:fe:e3:95:d4:05:13:42:e3:56:ed:5d:64:11:
43:10:ec:44:2f:aa:6f:4c:e5:c9:85:0c:e3:30:4f:
53:a6:2d:03:36:ce:5c:53:30:21:75:19:2f:65:ad:
23:0e:78:0d:dc:3d:4c:b7:7a:3b:bf:7e:17:2d:f5:
9c:cf:63:ab:fd:cc:c6:f9:c1:38:48:1b:5d:2b:e1:
c7:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:30:70:3E:F0:75:74:16:8D:4E:C4:B9:E7:CF:A9:27:36:7E:F7:AC
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GjBwPvB1dBaNTsS558-pJzZ-96w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.40.0/21
Signature Algorithm: sha256WithRSAEncryption
64:73:c2:44:1a:a1:c3:7a:c0:05:cb:d1:5b:0e:86:44:4a:a1:
35:f2:a4:6e:6b:68:62:7b:d6:bf:59:d4:f0:79:af:bd:ee:20:
40:99:26:28:d9:03:04:17:5e:b9:3b:29:43:94:4a:2b:7f:da:
b4:23:13:20:aa:43:36:19:37:33:b5:42:ef:e3:0d:a0:c8:a0:
41:52:77:bf:69:12:63:39:e7:63:6d:d8:ab:c5:7c:86:04:d9:
bf:24:05:36:fd:5e:6e:44:6b:8e:da:86:6d:f9:1e:d4:9b:24:
77:64:2e:29:a6:ed:49:a0:87:2e:b8:89:1d:9f:33:ec:09:2d:
b6:c8:f9:86:42:36:ef:ba:5c:df:c4:80:c0:9b:b4:85:a5:f3:
af:0a:2d:f2:0c:97:a4:14:df:9c:d1:4f:21:68:b1:14:de:b6:
c3:6a:3b:2f:ed:60:a6:a2:5e:2b:b0:1c:82:0b:74:4e:5c:7e:
94:14:96:fb:40:6f:76:33:ce:6c:7b:c7:71:eb:ae:7d:b7:2e:
95:57:c8:7d:7c:9b:0f:66:5c:f9:52:ee:5a:e8:02:ab:ce:60:
26:48:0d:22:ad:5a:77:a3:9a:c6:c0:73:2a:a8:2e:4d:5b:1b:
ca:94:41:46:6c:91:ab:6f:04:88:11:b8:22:d3:f0:72:c2:5d:
e4:79:bc:f3
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDIQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjQ5NTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDFBMzA3MDNFRjA3NTc0
MTY4RDRFQzRCOUU3Q0ZBOTI3MzY3RUY3QUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVo/0dcHXm+NwwJRTA4lhoaNZZvc2Gt8RXKKD8fOv3aji2b1pF
Gc1+kZPcTfUyOARd2VF/bIavUhr0TP7YKHEe+6TpW0jWucpPs7b2sBmue97xAMpL
4ljexQjAnMDcmd76hVP9QlVGvwCyGvlQbHfas9ZmbI8oQMxl/HwsTcaWlE+GEcvA
NpoK3xaGdM2fLw7w45WeJ3fiMdJf08biJkkSs5TojWPSVaMP/Da6E2e2FLXFI1WZ
/uOV1AUTQuNW7V1kEUMQ7EQvqm9M5cmFDOMwT1OmLQM2zlxTMCF1GS9lrSMOeA3c
PUy3eju/fhct9ZzPY6v9zMb5wThIG10r4ceVAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUGjBwPvB1dBaNTsS558+pJzZ+96wwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvR2pCd1B2QjFkQmFOVHNT
NTU4LXBKelotOTZ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
A8tNKDANBgkqhkiG9w0BAQsFAAOCAQEAZHPCRBqhw3rABcvRWw6GREqhNfKkbmto
YnvWv1nU8Hmvve4gQJkmKNkDBBdeuTspQ5RKK3/atCMTIKpDNhk3M7VC7+MNoMig
QVJ3v2kSYznnY23Yq8V8hgTZvyQFNv1ebkRrjtqGbfke1Jskd2QuKabtSaCHLriJ
HZ8z7Akttsj5hkI277pc38SAwJu0haXzrwot8gyXpBTfnNFPIWixFN62w2o7L+1g
pqJeK7Acggt0Tlx+lBSW+0BvdjPObHvHceuufbculVfIfXybD2Zc+VLuWugCq85g
JkgNIq1ad6OaxsBzKqguTVsbypRBRmyRq28EiBG4ItPwcsJd5Hm88w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org