Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MU8lSv9CYlHv1llAqzDmmWMqcWA.roa
File: MU8lSv9CYlHv1llAqzDmmWMqcWA.roa (raw, json)
Hash identifier: WBbjDNKxWhe9s1Yl7Gh6uPCWvnwwQV2QiJwWJO9984E=
Subject key identifier: 31:4F:25:4A:FF:42:62:51:EF:D6:59:40:AB:30:E6:99:63:2A:71:60
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FB3
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MU8lSv9CYlHv1llAqzDmmWMqcWA.roa
Signing time: Fri 01 Sep 2023 09:37:10 +0000
ROA not before: Fri 01 Sep 2023 09:37:10 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17213
IP address blocks: 60.198.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4019 (0xfb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:10 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=314F254AFF426251EFD65940AB30E699632A7160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b1:08:d7:ba:ca:75:68:63:59:ac:f6:d6:83:
82:e3:d1:fc:a7:61:49:54:18:b9:25:9a:f5:c0:cb:
3d:f8:6c:6d:2e:13:a7:ea:5e:53:98:65:b9:04:ff:
e7:fb:d7:a5:d9:f9:46:0a:25:df:e5:d1:d4:67:2f:
bb:b7:dc:51:50:41:7c:d9:67:dc:b5:2e:06:b6:23:
00:82:c6:a4:82:a9:f7:4e:bc:47:ab:c1:b1:b8:6e:
5d:a6:cf:eb:53:b4:e3:6b:28:c4:fc:06:8c:89:2b:
13:84:e6:4f:4b:b4:76:3f:38:4f:2f:1a:8b:58:a8:
47:d0:1f:4a:52:f3:3b:d6:cb:89:db:cb:b2:72:4e:
ee:d4:5b:9c:2f:29:ea:a8:e3:18:30:a6:bc:ba:ae:
87:45:61:7c:3f:30:bf:18:9c:f0:6c:47:42:5e:95:
6d:81:9e:e2:72:50:4a:00:b7:eb:dd:f2:3f:86:c7:
ae:d5:ae:d6:e1:18:34:eb:5f:5b:a4:c2:39:df:49:
66:78:a3:f3:57:01:00:c3:6e:cc:2d:9d:ce:23:bc:
11:0d:14:05:a3:e4:6a:3a:bb:d3:43:b7:ec:17:24:
22:1b:e0:fa:16:86:20:50:64:36:ff:26:a4:c5:20:
97:8e:e0:4f:fd:5a:79:a2:b6:2c:43:74:e8:d4:83:
ff:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:4F:25:4A:FF:42:62:51:EF:D6:59:40:AB:30:E6:99:63:2A:71:60
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MU8lSv9CYlHv1llAqzDmmWMqcWA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.155.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:fe:30:36:72:27:db:aa:c6:88:25:11:6f:5e:ed:87:58:a9:
04:fd:5b:b5:14:fe:34:a2:83:09:10:07:12:4b:12:4e:00:a8:
20:7f:92:77:ed:47:cf:5b:7f:55:cf:55:84:6e:29:32:57:37:
7f:82:11:1c:9e:95:4b:98:62:5c:7e:60:a3:df:c4:3f:75:78:
41:1c:24:3e:b9:10:02:b6:05:42:25:3b:84:f0:0a:cd:36:e3:
b7:50:5f:b2:5c:a6:1d:58:35:cf:57:e3:3f:44:4b:4b:40:09:
fc:a8:9b:7e:0c:5d:68:56:00:73:82:e6:34:e6:0e:1c:0d:f7:
1e:c0:0c:e4:09:ee:7c:c4:bd:50:89:11:24:5c:51:8f:10:c8:
06:cb:fc:d7:53:77:6a:5a:de:36:e1:56:93:a2:6c:02:34:87:
b7:e5:42:eb:c8:5e:f1:d5:eb:0c:ab:e3:61:ff:ab:c4:31:68:
af:75:ba:57:ac:21:89:65:f0:6b:d3:39:72:9c:b9:75:92:09:
39:ac:3d:48:10:49:a7:9f:df:fb:6b:35:60:7e:95:97:c3:24:
95:58:bf:15:b0:cf:27:1c:56:da:d8:6c:f3:a9:af:9f:73:07:
25:bb:74:66:99:92:39:e6:90:49:d6:94:71:e2:2d:1b:44:30:
50:c4:4d:0b
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICD7MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw
OTM3MTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDMxNEYyNTRBRkY0MjYy
NTFFRkQ2NTk0MEFCMzBFNjk5NjMyQTcxNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9sQjXusp1aGNZrPbWg4Lj0fynYUlUGLklmvXAyz34bG0uE6fq
XlOYZbkE/+f716XZ+UYKJd/l0dRnL7u33FFQQXzZZ9y1Lga2IwCCxqSCqfdOvEer
wbG4bl2mz+tTtONrKMT8BoyJKxOE5k9LtHY/OE8vGotYqEfQH0pS8zvWy4nby7Jy
Tu7UW5wvKeqo4xgwpry6rodFYXw/ML8YnPBsR0JelW2BnuJyUEoAt+vd8j+Gx67V
rtbhGDTrX1ukwjnfSWZ4o/NXAQDDbswtnc4jvBENFAWj5Go6u9NDt+wXJCIb4PoW
hiBQZDb/JqTFIJeO4E/9WnmitixDdOjUg/9nAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUMU8lSv9CYlHv1llAqzDmmWMqcWAwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvTVU4bFN2OUNZbEh2MWxs
QXF6RG1tV01xY1dBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ADzGmzANBgkqhkiG9w0BAQsFAAOCAQEAf/4wNnIn26rGiCURb17th1ipBP1btRT+
NKKDCRAHEksSTgCoIH+Sd+1Hz1t/Vc9VhG4pMlc3f4IRHJ6VS5hiXH5go9/EP3V4
QRwkPrkQArYFQiU7hPAKzTbjt1BfslymHVg1z1fjP0RLS0AJ/KibfgxdaFYAc4Lm
NOYOHA33HsAM5AnufMS9UIkRJFxRjxDIBsv811N3alreNuFWk6JsAjSHt+VC68he
8dXrDKvjYf+rxDFor3W6V6whiWXwa9M5cpy5dZIJOaw9SBBJp5/f+2s1YH6Vl8Mk
lVi/FbDPJxxW2ths86mvn3MHJbt0ZpmSOeaQSdaUceItG0QwUMRNCw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:37 2025 by rpki-client