Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/OXXkcDX_cSHZRLwle-wnjMQ2Fr8.roa
File: OXXkcDX_cSHZRLwle-wnjMQ2Fr8.roa (raw, json)
Hash identifier: l4CofPS7C5btoxK4qbGt3vHeGs5nMjmQPFXl66Zi1X0=
Subject key identifier: 39:75:E4:70:35:FF:71:21:D9:44:BC:25:7B:EC:27:8C:C4:36:16:BF
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0814
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/OXXkcDX_cSHZRLwle-wnjMQ2Fr8.roa
Signing time: Tue 29 Sep 2020 09:57:44 +0000
ROA not before: Tue 29 Sep 2020 09:57:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17213
IP address blocks: 60.198.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2068 (0x814)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3975E47035FF7121D944BC257BEC278CC43616BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7b:6e:3d:6f:be:17:4f:a0:bb:db:9a:dc:dc:
c6:54:64:1e:31:16:df:b1:b8:7c:59:9e:98:2b:e5:
2b:47:c8:1a:4c:50:b3:0d:be:a2:3a:65:84:3d:8a:
04:4a:03:c6:8f:dc:f0:c1:c6:aa:75:ff:2e:9a:c4:
86:72:78:2a:f5:f2:01:d2:c3:49:bd:7a:c3:02:86:
45:31:17:19:24:af:81:02:f7:e0:6d:0b:94:b0:75:
a9:dc:df:7b:f3:f1:1a:f0:03:9f:c7:2f:3e:f5:8a:
87:cb:96:19:74:58:7a:18:1a:5d:9f:09:bf:d7:d6:
3a:2f:d1:28:0d:0e:cf:23:1a:02:fa:10:90:79:35:
9d:01:c9:10:18:55:a8:19:fe:43:84:4d:37:8a:45:
45:fd:eb:70:e2:f0:20:b1:4c:7e:0a:b3:9f:3c:a0:
37:1d:39:3f:2e:54:96:1a:2e:21:8a:39:28:ab:a1:
11:d3:5b:e3:71:b0:09:56:af:e0:f2:08:91:32:a5:
a0:38:1a:41:a6:47:71:c0:1d:5f:fe:70:72:03:f7:
db:57:9e:2f:45:4f:63:6f:10:92:6b:1f:49:4d:72:
c9:02:fd:f1:74:e0:45:c5:97:03:05:9b:1a:42:c2:
e4:65:a4:22:78:66:5c:c5:18:20:ca:ba:da:44:b5:
a8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:75:E4:70:35:FF:71:21:D9:44:BC:25:7B:EC:27:8C:C4:36:16:BF
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/OXXkcDX_cSHZRLwle-wnjMQ2Fr8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.154.0/24
Signature Algorithm: sha256WithRSAEncryption
12:b2:43:1c:41:67:38:60:62:f3:e1:0e:c2:1e:72:9f:0b:eb:
b3:8c:09:dc:40:d4:19:6b:0f:6b:2f:af:09:1c:34:b6:36:63:
b3:e5:00:0e:f5:03:4b:fb:3f:9c:cf:8d:78:eb:17:c9:f7:e4:
26:eb:17:c9:25:91:ac:46:f0:31:30:70:f4:fd:62:4b:d4:24:
8a:08:ad:c9:fa:27:8d:2f:23:b9:eb:7b:b9:03:5e:e5:7d:07:
21:f3:6c:50:62:5e:a5:3f:b1:4b:a9:51:74:92:6b:89:f2:98:
33:37:cf:21:f4:bf:ef:04:c5:8b:ee:8e:97:94:0d:61:2e:2d:
4d:fc:c7:55:f4:35:28:5b:e4:28:68:22:67:85:b5:f6:70:b9:
12:99:e7:36:43:0b:9e:7d:ed:12:c5:97:b3:8c:45:c2:bc:c4:
97:66:35:1d:fc:5f:d3:2e:5b:f3:08:98:60:88:55:15:33:59:
51:2a:60:0c:cf:f6:5e:7e:89:90:17:74:5a:9c:f4:0a:e7:79:
93:77:14:07:9a:77:a3:c9:2d:15:e5:0b:31:19:84:ce:76:47:
c6:a9:a3:42:e4:61:31:05:a2:b5:93:fe:e6:9c:ce:d9:93:c9:
3f:7d:bd:9a:3f:7b:a6:10:6e:89:ad:7f:14:24:a9:2b:c5:53:
3d:51:b5:60
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCBQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDA5Mjkw
OTU3NDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM5NzVFNDcwMzVGRjcx
MjFEOTQ0QkMyNTdCRUMyNzhDQzQzNjE2QkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDZe249b74XT6C725rc3MZUZB4xFt+xuHxZnpgr5StHyBpMULMN
vqI6ZYQ9igRKA8aP3PDBxqp1/y6axIZyeCr18gHSw0m9esMChkUxFxkkr4EC9+Bt
C5Swdanc33vz8RrwA5/HLz71iofLlhl0WHoYGl2fCb/X1jov0SgNDs8jGgL6EJB5
NZ0ByRAYVagZ/kOETTeKRUX963Di8CCxTH4Ks588oDcdOT8uVJYaLiGKOSiroRHT
W+NxsAlWr+DyCJEypaA4GkGmR3HAHV/+cHID99tXni9FT2NvEJJrH0lNcskC/fF0
4EXFlwMFmxpCwuRlpCJ4ZlzFGCDKutpEtahvAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUOXXkcDX/cSHZRLwle+wnjMQ2Fr8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvT1hYa2NEWF9jU0haUkx3
bGUtd25qTVEyRnI4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ADzGmjANBgkqhkiG9w0BAQsFAAOCAQEAErJDHEFnOGBi8+EOwh5ynwvrs4wJ3EDU
GWsPay+vCRw0tjZjs+UADvUDS/s/nM+NeOsXyffkJusXySWRrEbwMTBw9P1iS9Qk
igityfonjS8juet7uQNe5X0HIfNsUGJepT+xS6lRdJJrifKYMzfPIfS/7wTFi+6O
l5QNYS4tTfzHVfQ1KFvkKGgiZ4W19nC5EpnnNkMLnn3tEsWXs4xFwrzEl2Y1Hfxf
0y5b8wiYYIhVFTNZUSpgDM/2Xn6JkBd0Wpz0Cud5k3cUB5p3o8ktFeULMRmEznZH
xqmjQuRhMQWitZP+5pzO2ZPJP329mj97phBuia1/FCSpK8VTPVG1YA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:03 2025 by rpki-client