Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NvyKlQKG6TfF7fq11L7jVtMPRko.roa
File: NvyKlQKG6TfF7fq11L7jVtMPRko.roa (raw, json)
Hash identifier: /k6OANzU718RUpAFoK988zLfy0IWrTy0uIVDT3Pu1T0=
Subject key identifier: 36:FC:8A:95:02:86:E9:37:C5:ED:FA:B5:D4:BE:E3:56:D3:0F:46:4A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 080C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NvyKlQKG6TfF7fq11L7jVtMPRko.roa
Signing time: Tue 29 Sep 2020 09:57:42 +0000
ROA not before: Tue 29 Sep 2020 09:57:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2060 (0x80c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:42 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=36FC8A950286E937C5EDFAB5D4BEE356D30F464A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:95:9e:95:61:54:62:ae:27:be:87:a8:22:07:
ec:bc:a2:80:db:5e:ee:96:f1:c2:d3:25:ce:73:34:
d6:3c:e4:3c:38:78:56:3e:13:8d:d7:01:35:e7:89:
5b:e7:92:45:f1:fa:0b:28:be:0d:a9:55:f9:46:be:
82:a3:74:13:83:1e:72:86:0e:f3:f4:d3:f2:64:24:
50:d9:8b:1e:d8:bd:40:55:c0:56:f3:de:48:9d:d6:
28:db:10:46:18:67:06:be:f9:18:b5:e9:07:56:67:
2b:14:30:23:72:e8:01:32:82:01:c8:b2:9e:1b:c5:
80:51:d2:79:40:d8:54:eb:2c:1e:0c:8c:e6:22:67:
ec:a6:45:7b:13:ac:f4:17:d0:57:1f:d6:9a:14:01:
b1:79:e9:bb:74:9d:c3:55:16:3d:ec:35:f1:3d:4c:
21:26:9f:2d:86:05:24:69:9c:a9:83:9d:79:88:b0:
d6:5b:f5:ab:4a:f9:5b:ba:30:ee:61:40:40:63:c2:
d6:66:3f:ef:76:66:64:a9:22:fd:de:be:62:b0:c3:
9f:ff:bc:e3:d9:07:52:6f:db:90:c8:ff:1e:4a:e4:
0b:9c:91:fc:8d:fd:ed:bd:04:43:e8:24:bd:30:b1:
99:f0:dc:8e:c4:3c:a5:61:fc:ee:9a:b6:44:64:4e:
47:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:FC:8A:95:02:86:E9:37:C5:ED:FA:B5:D4:BE:E3:56:D3:0F:46:4A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NvyKlQKG6TfF7fq11L7jVtMPRko.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.0.0/17
Signature Algorithm: sha256WithRSAEncryption
1a:b5:d7:f3:48:e7:50:3a:73:fc:13:61:ed:b0:29:f3:cf:3a:
17:7d:0a:c6:1c:34:b6:db:80:48:ea:2b:37:c0:0c:f1:a8:af:
14:1b:59:7c:47:86:a3:6f:ac:e4:6c:25:0d:fc:e4:36:b2:6b:
29:f7:a0:df:8d:ae:2a:07:85:68:37:54:6f:4d:ce:bb:89:1d:
3f:02:00:26:dc:70:1e:6b:fd:67:5f:88:c0:b9:50:71:4a:6e:
da:56:da:12:10:58:a9:4e:80:8b:5c:f4:b6:2a:92:46:f9:38:
4f:9b:e3:e6:03:e6:5e:e7:75:67:4b:cb:d4:a6:89:e6:4a:32:
de:45:a7:0a:a0:b6:0f:06:c8:a4:4f:82:2f:fb:cb:73:82:c6:
e0:1b:b6:f5:10:5c:e9:7e:40:c9:44:2f:ea:14:90:d4:32:5c:
3b:28:d8:37:de:39:af:3e:a7:5f:17:d7:0f:6e:d7:1e:6a:b5:
98:d9:d5:67:d6:90:9b:f7:23:6c:ff:69:3d:54:dd:69:ae:80:
e5:e6:50:0c:49:0f:77:dd:5a:a7:79:30:69:f2:bd:9d:1e:e2:
a3:a8:03:b4:e1:66:4d:23:1c:3b:ea:b0:5f:8c:2c:f9:62:72:
1a:26:e3:3a:4e:a2:dc:a6:e3:b0:8e:94:16:2d:4f:de:43:8f:
0e:67:da:d0
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCAwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDA5Mjkw
OTU3NDJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM2RkM4QTk1MDI4NkU5
MzdDNUVERkFCNUQ0QkVFMzU2RDMwRjQ2NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMlZ6VYVRirie+h6giB+y8ooDbXu6W8cLTJc5zNNY85Dw4eFY+
E43XATXniVvnkkXx+gsovg2pVflGvoKjdBODHnKGDvP00/JkJFDZix7YvUBVwFbz
3kid1ijbEEYYZwa++Ri16QdWZysUMCNy6AEyggHIsp4bxYBR0nlA2FTrLB4MjOYi
Z+ymRXsTrPQX0Fcf1poUAbF56bt0ncNVFj3sNfE9TCEmny2GBSRpnKmDnXmIsNZb
9atK+Vu6MO5hQEBjwtZmP+92ZmSpIv3evmKww5//vOPZB1Jv25DI/x5K5AuckfyN
/e29BEPoJL0wsZnw3I7EPKVh/O6atkRkTkcdAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUNvyKlQKG6TfF7fq11L7jVtMPRkowHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvTnZ5S2xRS0c2VGZGN2Zx
MTFMN2pWdE1QUmtvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
B9IRADANBgkqhkiG9w0BAQsFAAOCAQEAGrXX80jnUDpz/BNh7bAp8886F30Kxhw0
ttuASOorN8AM8aivFBtZfEeGo2+s5GwlDfzkNrJrKfeg342uKgeFaDdUb03Ou4kd
PwIAJtxwHmv9Z1+IwLlQcUpu2lbaEhBYqU6Ai1z0tiqSRvk4T5vj5gPmXud1Z0vL
1KaJ5koy3kWnCqC2DwbIpE+CL/vLc4LG4Bu29RBc6X5AyUQv6hSQ1DJcOyjYN945
rz6nXxfXD27XHmq1mNnVZ9aQm/cjbP9pPVTdaa6A5eZQDEkPd91ap3kwafK9nR7i
o6gDtOFmTSMcO+qwX4ws+WJyGibjOk6i3KbjsI6UFi1P3kOPDmfa0A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org