Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QeNDf6mOSPDN9oqkeqKuKFp_Ub4.roa
File: QeNDf6mOSPDN9oqkeqKuKFp_Ub4.roa (raw, json)
Hash identifier: 9fXQ7pSMI88nunHMu3zpD/Srea1mKsdkqlcKGPygffU=
Subject key identifier: 41:E3:43:7F:A9:8E:48:F0:CD:F6:8A:A4:7A:A2:AE:28:5A:7F:51:BE
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C74
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QeNDf6mOSPDN9oqkeqKuKFp_Ub4.roa
Signing time: Wed 29 Sep 2021 02:49:51 +0000
ROA not before: Wed 29 Sep 2021 02:49:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.17.96.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3188 (0xc74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=41E3437FA98E48F0CDF68AA47AA2AE285A7F51BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b2:e8:79:4a:74:cd:fb:0a:b1:37:1a:76:34:
5c:9d:6b:2d:23:15:58:9b:79:8d:1f:25:04:0b:8a:
3a:4b:04:f9:66:92:83:24:0f:66:ad:3a:86:56:9d:
0e:46:4e:ca:e1:8e:4d:eb:68:71:97:2e:0a:19:2e:
d7:f2:cf:5f:cc:71:cb:ee:6d:26:aa:e6:ee:e1:0e:
cd:22:a1:bd:f6:ab:a8:51:5e:64:6c:c2:e3:61:d9:
6c:d1:be:2a:50:71:59:a9:d6:bf:c9:70:88:c8:5d:
ae:31:ec:31:b5:ae:b7:d9:c3:f4:b5:0b:8e:2d:44:
f4:93:30:98:9b:d4:84:4a:00:b5:c3:c7:83:75:da:
15:62:d1:78:33:ec:01:1e:7f:52:63:c0:0f:67:a7:
f4:9d:61:e5:59:4d:4f:a7:fe:19:0c:b8:d8:c0:9c:
89:4d:5b:ba:78:ff:ab:94:db:ed:6e:ea:d7:40:9b:
ae:80:fd:95:97:b5:f5:d8:96:4f:cc:68:08:1c:e1:
9d:bf:ac:6e:23:55:00:b0:4a:0a:c4:3b:15:e2:fe:
ce:3d:74:91:2a:b8:de:61:14:c4:fd:a2:69:ff:61:
5d:a5:a3:d6:13:90:9e:b2:a0:4f:59:44:d4:ed:9d:
a3:02:99:87:7a:27:af:73:73:ac:8d:98:dc:34:2c:
c2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E3:43:7F:A9:8E:48:F0:CD:F6:8A:A4:7A:A2:AE:28:5A:7F:51:BE
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QeNDf6mOSPDN9oqkeqKuKFp_Ub4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.96.0/22
Signature Algorithm: sha256WithRSAEncryption
17:66:18:aa:43:87:9c:a8:e5:c6:bf:fb:92:3e:af:f4:8a:d1:
95:de:d8:6f:01:bf:28:cf:ca:5a:13:eb:29:bd:30:4c:51:51:
2b:d2:44:55:6d:13:8e:dc:b8:f0:76:b5:db:f8:6e:b6:87:d7:
bf:27:3d:98:c5:8f:31:75:02:11:b3:57:bb:78:49:60:25:9f:
17:7a:3d:a8:39:df:40:52:50:06:fd:00:e1:de:d8:a1:6a:56:
4c:8f:33:de:16:6c:e1:d1:bd:49:af:dc:0a:0d:05:f4:77:56:
4c:5d:6e:0d:b5:8a:0f:00:23:f5:22:92:41:a1:d7:48:54:dd:
be:29:a8:b6:dc:3c:92:99:51:d8:de:b6:45:c6:f6:ef:12:26:
0d:12:e0:87:61:f8:15:17:83:ac:9f:e2:68:4a:03:6b:4c:55:
74:20:30:78:d0:07:56:a2:ea:70:c0:5b:f4:a9:5a:82:dd:5e:
1c:ad:0d:41:c6:59:b9:ed:71:3f:56:46:01:4e:a8:04:77:72:
c4:e9:91:a9:a9:1e:68:32:da:bf:b9:70:41:d9:04:44:86:6b:
77:7f:08:1f:4e:73:e4:cc:79:26:34:83:fd:82:a0:22:8d:a0:
97:8a:e6:77:75:dc:ac:87:3a:59:9c:67:80:86:96:43:4b:ed:
78:9c:b5:e4
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDHQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjQ5NTFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDQxRTM0MzdGQTk4RTQ4
RjBDREY2OEFBNDdBQTJBRTI4NUE3RjUxQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDosuh5SnTN+wqxNxp2NFyday0jFVibeY0fJQQLijpLBPlmkoMk
D2atOoZWnQ5GTsrhjk3raHGXLgoZLtfyz1/MccvubSaq5u7hDs0iob32q6hRXmRs
wuNh2WzRvipQcVmp1r/JcIjIXa4x7DG1rrfZw/S1C44tRPSTMJib1IRKALXDx4N1
2hVi0Xgz7AEef1JjwA9np/SdYeVZTU+n/hkMuNjAnIlNW7p4/6uU2+1u6tdAm66A
/ZWXtfXYlk/MaAgc4Z2/rG4jVQCwSgrEOxXi/s49dJEquN5hFMT9omn/YV2lo9YT
kJ6yoE9ZRNTtnaMCmYd6J69zc6yNmNw0LMLVAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUQeNDf6mOSPDN9oqkeqKuKFp/Ub4wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvUWVORGY2bU9TUEROOW9x
a2VxS3VLRnBfVWI0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AtIRYDANBgkqhkiG9w0BAQsFAAOCAQEAF2YYqkOHnKjlxr/7kj6v9IrRld7YbwG/
KM/KWhPrKb0wTFFRK9JEVW0Tjty48Ha12/hutofXvyc9mMWPMXUCEbNXu3hJYCWf
F3o9qDnfQFJQBv0A4d7YoWpWTI8z3hZs4dG9Sa/cCg0F9HdWTF1uDbWKDwAj9SKS
QaHXSFTdvimottw8kplR2N62Rcb27xImDRLgh2H4FReDrJ/iaEoDa0xVdCAweNAH
VqLqcMBb9Klagt1eHK0NQcZZue1xP1ZGAU6oBHdyxOmRqakeaDLav7lwQdkERIZr
d38IH05z5Mx5JjSD/YKgIo2gl4rmd3XcrIc6WZxngIaWQ0vteJy15A==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org