Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KHU4MejsBAIHrYAjuq_xSAHxkdM.roa
File: KHU4MejsBAIHrYAjuq_xSAHxkdM.roa (raw, json)
Hash identifier: UdAyphNH2FHO++mfi6uAdWqsC+1zr9iXP+14qNsIKDc=
Subject key identifier: 28:75:38:31:E8:EC:04:02:07:AD:80:23:BA:AF:F1:48:01:F1:91:D3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C79
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KHU4MejsBAIHrYAjuq_xSAHxkdM.roa
Signing time: Wed 29 Sep 2021 02:49:53 +0000
ROA not before: Wed 29 Sep 2021 02:49:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24158
IP address blocks: 61.30.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3193 (0xc79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=28753831E8EC040207AD8023BAAFF14801F191D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:74:d9:10:f7:da:fa:17:39:48:aa:cb:e1:96:
60:eb:08:62:61:0a:f7:90:a8:f4:76:91:77:6f:1e:
41:1d:b4:2f:b7:5a:04:65:5c:96:c6:66:15:b1:c2:
cc:08:cb:66:d2:16:68:bd:a8:ff:55:2b:6c:99:2c:
72:6d:9e:19:01:de:3f:c3:5e:df:36:6f:bd:99:d2:
01:8b:97:e7:76:ce:9a:fa:4b:fb:98:1b:ed:0e:5e:
e1:4b:3f:d8:4c:c8:0d:a7:b4:02:32:1c:76:ab:84:
84:f0:d2:fd:af:34:84:91:29:44:b7:69:7b:95:75:
a3:86:ba:15:36:48:5d:63:b8:dd:da:a8:16:91:6a:
09:a4:39:e0:bb:c4:37:d0:bd:6a:3b:70:ab:e9:a3:
ef:3c:3b:f7:da:75:22:a8:1a:43:51:0f:8c:8a:97:
42:21:39:a5:9f:7f:62:83:64:5f:66:30:c0:7d:03:
83:b5:c3:cb:ca:ec:98:39:99:82:50:ae:62:58:77:
91:43:56:4b:d6:eb:c7:84:e8:a6:f2:73:0b:da:64:
d1:ef:f4:0f:f6:73:8d:56:34:83:7c:53:32:37:71:
51:9e:e0:41:4f:f5:a9:a2:30:1c:7b:25:82:1f:8b:
b7:d6:f7:cd:83:74:11:18:8c:20:63:ea:35:1f:ee:
e4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:75:38:31:E8:EC:04:02:07:AD:80:23:BA:AF:F1:48:01:F1:91:D3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KHU4MejsBAIHrYAjuq_xSAHxkdM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.30.25.0/24
Signature Algorithm: sha256WithRSAEncryption
45:0d:21:18:d7:74:13:ed:49:9e:f8:73:c0:a2:ad:cb:d0:c9:
10:fa:92:1d:f3:bd:ee:81:a7:e2:90:3c:f2:cf:3b:5a:a4:51:
44:f0:1e:99:c3:67:73:c3:af:03:32:e1:6e:9c:3f:44:b7:f0:
26:45:f5:44:e3:c5:19:5c:ec:31:b2:f9:d6:06:de:a1:a2:74:
5b:21:8a:ec:6f:35:09:29:c6:3e:c7:9b:9a:2b:bd:e8:ac:05:
89:c4:18:cb:96:65:e2:89:6b:cd:12:60:5c:b9:53:e4:8a:a0:
4d:43:a2:8b:81:e5:4e:1c:61:20:b4:4c:36:31:d3:da:89:93:
2e:4c:1a:4f:d3:02:ae:24:b9:b7:6e:a1:36:36:e5:36:1a:5f:
a5:e8:24:11:fd:ac:ac:90:b8:02:f0:1f:7a:c3:1a:4e:bd:04:
07:91:ad:55:aa:6d:f3:7f:fd:98:fe:bc:df:d6:c6:98:e2:fc:
86:08:ba:8f:80:39:dc:c2:f6:4d:76:2b:93:e9:39:d3:39:05:
a3:92:0b:8b:3a:a1:63:ac:6d:53:e5:e4:49:71:1f:87:e2:77:
78:ae:4a:c2:9a:99:f4:76:d3:de:ff:c8:7e:a7:d1:f3:e2:fa:
11:49:d4:4c:68:d2:7c:52:49:08:a4:85:c1:42:7e:d2:da:39:
c3:e3:da:4d
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjQ5NTNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDI4NzUzODMxRThFQzA0
MDIwN0FEODAyM0JBQUZGMTQ4MDFGMTkxRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFdNkQ99r6FzlIqsvhlmDrCGJhCveQqPR2kXdvHkEdtC+3WgRl
XJbGZhWxwswIy2bSFmi9qP9VK2yZLHJtnhkB3j/DXt82b72Z0gGLl+d2zpr6S/uY
G+0OXuFLP9hMyA2ntAIyHHarhITw0v2vNISRKUS3aXuVdaOGuhU2SF1juN3aqBaR
agmkOeC7xDfQvWo7cKvpo+88O/fadSKoGkNRD4yKl0IhOaWff2KDZF9mMMB9A4O1
w8vK7Jg5mYJQrmJYd5FDVkvW68eE6KbycwvaZNHv9A/2c41WNIN8UzI3cVGe4EFP
9amiMBx7JYIfi7fW982DdBEYjCBj6jUf7uT1AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUKHU4MejsBAIHrYAjuq/xSAHxkdMwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvS0hVNE1lanNCQUlIcllB
anVxX3hTQUh4a2RNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AD0eGTANBgkqhkiG9w0BAQsFAAOCAQEARQ0hGNd0E+1JnvhzwKKty9DJEPqSHfO9
7oGn4pA88s87WqRRRPAemcNnc8OvAzLhbpw/RLfwJkX1ROPFGVzsMbL51gbeoaJ0
WyGK7G81CSnGPsebmiu96KwFicQYy5Zl4olrzRJgXLlT5IqgTUOii4HlThxhILRM
NjHT2omTLkwaT9MCriS5t26hNjblNhpfpegkEf2srJC4AvAfesMaTr0EB5GtVapt
83/9mP6839bGmOL8hgi6j4A53ML2TXYrk+k50zkFo5ILizqhY6xtU+XkSXEfh+J3
eK5KwpqZ9HbT3v/IfqfR8+L6EUnUTGjSfFJJCKSFwUJ+0to5w+PaTQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org