Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/H8RvfMCoHwUVA42K1GiLlSfceSc.roa
File: H8RvfMCoHwUVA42K1GiLlSfceSc.roa (raw, json)
Hash identifier: pgUb9HiZ5gSdaAmjruQxvB18A87qvNWMMiUaGUXkCjM=
Subject key identifier: 1F:C4:6F:7C:C0:A8:1F:05:15:03:8D:8A:D4:68:8B:95:27:DC:79:27
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B44
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/H8RvfMCoHwUVA42K1GiLlSfceSc.roa
Signing time: Sun 07 Feb 2021 13:12:41 +0000
ROA not before: Sun 07 Feb 2021 13:12:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.96.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2884 (0xb44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:12:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1FC46F7CC0A81F0515038D8AD4688B9527DC7927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:66:94:d0:2f:81:f0:e6:90:ed:b5:3b:6b:ae:
df:54:d7:ab:3f:45:30:90:0f:46:4c:75:42:6c:1d:
60:b1:67:73:7b:86:6c:59:79:0c:42:f8:b2:62:63:
ce:66:20:4c:a3:21:84:0c:56:a0:cc:ba:d4:18:bf:
e5:bc:d9:3d:9e:23:5b:95:b8:92:86:a1:61:78:37:
24:3e:3f:ac:ab:57:e0:89:ee:9b:3b:1f:90:49:c5:
06:b5:a9:d4:8f:1e:18:cd:b3:c1:90:18:1a:57:4c:
99:ee:6e:69:9d:ee:c9:bb:52:e1:23:a0:dc:24:75:
be:95:9e:5b:13:7b:35:84:b7:5d:9b:10:ba:bd:5b:
3e:82:36:78:3d:7c:c9:0c:52:bb:d2:55:61:39:8f:
db:76:b1:fd:40:ec:65:a7:c3:10:34:a2:e5:0d:6b:
33:0f:d1:8e:67:92:c4:95:51:5b:43:52:32:45:3c:
45:a9:38:5e:b9:0f:ab:5b:62:bc:bd:ba:f1:2c:9e:
3c:a3:ce:26:2b:e1:8d:96:00:e7:d1:34:51:5d:26:
31:25:da:f8:13:0a:c2:94:f0:c0:04:05:d8:f4:6f:
bb:60:c7:32:d8:7b:20:71:53:20:0f:a9:87:c8:ef:
98:86:d4:69:14:0a:b5:25:38:6a:f6:72:f7:68:95:
68:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C4:6F:7C:C0:A8:1F:05:15:03:8D:8A:D4:68:8B:95:27:DC:79:27
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/H8RvfMCoHwUVA42K1GiLlSfceSc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.96.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:66:d0:7f:68:74:23:7c:fc:a1:3c:06:7b:72:ac:89:7f:48:
79:81:b8:5a:6a:e2:56:7b:ba:bf:f7:ab:4d:32:26:55:e8:fe:
70:eb:01:61:18:f4:bb:f1:c9:83:cb:46:fd:b9:87:cd:58:44:
51:d0:94:0b:ad:b1:b5:eb:96:ac:78:01:66:68:77:0d:71:41:
a3:80:a6:57:97:eb:f0:f7:05:53:bd:5c:d1:1f:7c:36:bf:44:
0d:51:c5:8b:af:ce:1a:00:3e:67:01:27:65:73:ce:73:27:61:
58:60:f0:30:93:94:63:00:7d:bd:f9:4e:cf:cd:3f:78:a2:fe:
a0:c8:0e:f3:55:8d:d7:23:ad:c6:96:63:1f:95:e3:2f:05:5c:
16:db:33:8f:b2:14:d6:e1:c2:f4:52:04:5d:42:54:4c:fe:51:
f3:ab:8a:ab:bd:5f:d1:8e:b2:42:9b:fa:fd:ef:ac:0f:59:be:
6d:26:6f:77:41:80:6d:46:80:05:0c:0d:70:7f:74:5f:a2:28:
54:ca:31:68:0b:3d:ab:80:99:2a:ef:ee:83:67:5f:d5:c2:67:
2e:1c:1c:ac:e8:9c:a0:54:98:3b:be:b8:58:d8:fd:49:f1:af:
c3:4b:14:39:66:3f:e8:3c:88:c2:fe:77:24:15:77:b2:6c:e9:
3c:08:86:47
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICC0QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MzEyNDFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFGQzQ2RjdDQzBBODFG
MDUxNTAzOEQ4QUQ0Njg4Qjk1MjdEQzc5MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYZpTQL4Hw5pDttTtrrt9U16s/RTCQD0ZMdUJsHWCxZ3N7hmxZ
eQxC+LJiY85mIEyjIYQMVqDMutQYv+W82T2eI1uVuJKGoWF4NyQ+P6yrV+CJ7ps7
H5BJxQa1qdSPHhjNs8GQGBpXTJnubmmd7sm7UuEjoNwkdb6VnlsTezWEt12bELq9
Wz6CNng9fMkMUrvSVWE5j9t2sf1A7GWnwxA0ouUNazMP0Y5nksSVUVtDUjJFPEWp
OF65D6tbYry9uvEsnjyjziYr4Y2WAOfRNFFdJjEl2vgTCsKU8MAEBdj0b7tgxzLY
eyBxUyAPqYfI75iG1GkUCrUlOGr2cvdolWjBAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUH8RvfMCoHwUVA42K1GiLlSfceScwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSDhSdmZNQ29Id1VWQTQy
SzFHaUxsU2ZjZVNjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AtIRYDANBgkqhkiG9w0BAQsFAAOCAQEAG2bQf2h0I3z8oTwGe3KsiX9IeYG4Wmri
Vnu6v/erTTImVej+cOsBYRj0u/HJg8tG/bmHzVhEUdCUC62xteuWrHgBZmh3DXFB
o4CmV5fr8PcFU71c0R98Nr9EDVHFi6/OGgA+ZwEnZXPOcydhWGDwMJOUYwB9vflO
z80/eKL+oMgO81WN1yOtxpZjH5XjLwVcFtszj7IU1uHC9FIEXUJUTP5R86uKq71f
0Y6yQpv6/e+sD1m+bSZvd0GAbUaABQwNcH90X6IoVMoxaAs9q4CZKu/ug2df1cJn
LhwcrOicoFSYO764WNj9SfGvw0sUOWY/6DyIwv53JBV3smzpPAiGRw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org