Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UXrMQrbYNGeBgykXGtUh3eFx5zE.roa
File: UXrMQrbYNGeBgykXGtUh3eFx5zE.roa (raw, json)
Hash identifier: i8RpAea4nNqYefnK5CNsgM/iBxpasAlDFaAfISoI4Ao=
Subject key identifier: 51:7A:CC:42:B6:D8:34:67:81:83:29:17:1A:D5:21:DD:E1:71:E7:31
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0D7D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UXrMQrbYNGeBgykXGtUh3eFx5zE.roa
Signing time: Wed 15 Jun 2022 06:35:36 +0000
ROA not before: Wed 15 Jun 2022 06:35:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 203.77.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3453 (0xd7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Jun 15 06:35:36 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=517ACC42B6D83467818329171AD521DDE171E731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:99:b4:d2:28:87:63:a6:1b:db:3f:ec:db:a5:
d8:e4:a5:12:bd:3b:ae:ad:08:79:32:7d:8f:b9:61:
11:e5:54:70:90:0d:6c:69:05:03:8a:58:1f:ef:5b:
02:21:e5:2c:aa:19:e9:29:b8:44:e1:91:f3:1e:06:
5d:cd:1a:6b:06:43:d0:2e:94:ef:1c:e4:e3:34:73:
aa:c0:e7:6a:70:0c:19:6b:1e:9a:67:90:9a:64:4b:
8e:d0:e9:b6:e0:ed:6c:3b:77:e7:1c:5c:d3:28:6a:
42:84:0c:c0:a5:36:2a:8e:8d:2e:bf:f6:ec:7f:f0:
3e:8e:bd:94:23:47:aa:56:e0:8f:d8:d7:0f:a5:95:
60:8c:e6:06:a9:30:55:d7:f8:1d:ed:0a:67:ef:1c:
90:7b:37:d4:a1:8c:c5:f9:00:c9:15:9e:5c:d1:a0:
77:e6:70:2c:8b:5f:4f:35:3c:2c:f0:63:3b:6c:05:
be:1e:1c:5b:4b:4f:03:22:c6:26:43:b6:1d:75:e2:
17:55:f6:f9:65:aa:7b:dc:33:11:07:44:98:5a:5b:
27:5e:3d:29:64:1e:fd:8e:9b:37:ec:fb:78:32:c6:
69:87:36:e7:ab:6e:39:d9:fa:be:05:31:49:d2:70:
82:39:54:b5:a6:59:b0:2d:ae:c5:c7:26:4a:ce:26:
e9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:7A:CC:42:B6:D8:34:67:81:83:29:17:1A:D5:21:DD:E1:71:E7:31
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UXrMQrbYNGeBgykXGtUh3eFx5zE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.56.0/21
Signature Algorithm: sha256WithRSAEncryption
8f:9f:bc:65:c0:49:06:d8:c9:0a:c9:3f:4c:4a:f1:df:24:ec:
2e:65:6c:b0:f7:b2:14:fe:c4:be:ed:c4:e1:e2:6a:46:f6:c2:
cb:26:3b:8f:62:2e:56:0e:ac:6d:fb:d3:12:19:3d:0e:5f:24:
95:4f:8a:5e:a0:0c:1e:e8:89:b8:8b:49:ff:17:c0:dc:58:57:
b1:b2:1a:10:bd:3d:6e:d5:97:47:c6:34:89:85:99:6c:a9:83:
c7:b5:c5:d8:7d:d1:a2:74:0a:ca:54:b1:23:2d:a9:85:44:58:
08:5a:bf:73:7f:e3:00:e3:6d:11:b1:75:e7:2b:0a:81:c1:91:
5f:95:d3:58:4f:11:e3:00:8b:b3:3c:b1:cc:84:b3:21:96:64:
4f:54:70:e0:19:b7:70:b2:b0:63:f0:ec:22:be:c6:78:49:21:
c4:02:28:3b:79:8b:d1:6e:fe:8e:fd:c6:47:31:47:35:cd:57:
c0:0c:5b:26:4b:d6:90:5a:1b:52:4d:6d:54:6d:5c:38:d5:54:
25:90:24:ce:44:bc:53:82:e8:fd:37:be:c3:cf:a5:fc:f2:36:
7c:3d:00:5c:a2:f6:67:be:c5:15:3c:61:12:eb:16:1c:91:87:
c8:9a:be:f8:9b:4a:71:ad:69:78:96:49:1e:dc:5a:8e:c7:9c:
7a:df:28:71
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDX0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA2MTUw
NjM1MzZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDUxN0FDQzQyQjZEODM0
Njc4MTgzMjkxNzFBRDUyMURERTE3MUU3MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSmbTSKIdjphvbP+zbpdjkpRK9O66tCHkyfY+5YRHlVHCQDWxp
BQOKWB/vWwIh5SyqGekpuEThkfMeBl3NGmsGQ9AulO8c5OM0c6rA52pwDBlrHppn
kJpkS47Q6bbg7Ww7d+ccXNMoakKEDMClNiqOjS6/9ux/8D6OvZQjR6pW4I/Y1w+l
lWCM5gapMFXX+B3tCmfvHJB7N9ShjMX5AMkVnlzRoHfmcCyLX081PCzwYztsBb4e
HFtLTwMixiZDth114hdV9vllqnvcMxEHRJhaWydePSlkHv2Omzfs+3gyxmmHNuer
bjnZ+r4FMUnScII5VLWmWbAtrsXHJkrOJulLAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUUXrMQrbYNGeBgykXGtUh3eFx5zEwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvVVhyTVFyYllOR2VCZ3lr
WEd0VWgzZUZ4NXpFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
A8tNODANBgkqhkiG9w0BAQsFAAOCAQEAj5+8ZcBJBtjJCsk/TErx3yTsLmVssPey
FP7Evu3E4eJqRvbCyyY7j2IuVg6sbfvTEhk9Dl8klU+KXqAMHuiJuItJ/xfA3FhX
sbIaEL09btWXR8Y0iYWZbKmDx7XF2H3RonQKylSxIy2phURYCFq/c3/jAONtEbF1
5ysKgcGRX5XTWE8R4wCLszyxzISzIZZkT1Rw4Bm3cLKwY/DsIr7GeEkhxAIoO3mL
0W7+jv3GRzFHNc1XwAxbJkvWkFobUk1tVG1cONVUJZAkzkS8U4Lo/Te+w8+l/PI2
fD0AXKL2Z77FFTxhEusWHJGHyJq++JtKca1peJZJHtxajsecet8ocQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org