Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/V4NsdssROv0tyA1zxlSw_weQyF0.roa
File: V4NsdssROv0tyA1zxlSw_weQyF0.roa (raw, json)
Hash identifier: x1jeUwAXbCE1QU/E1X7GhbA2MHDLZoPHGun5QDgvvGI=
Subject key identifier: 57:83:6C:76:CB:11:3A:FD:2D:C8:0D:73:C6:54:B0:FF:07:90:C8:5D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B1A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/V4NsdssROv0tyA1zxlSw_weQyF0.roa
Signing time: Sun 07 Feb 2021 13:10:20 +0000
ROA not before: Sun 07 Feb 2021 13:10:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.199.171.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2842 (0xb1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=57836C76CB113AFD2DC80D73C654B0FF0790C85D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1d:00:5f:26:3e:c6:dc:dd:49:73:7a:73:79:
b5:74:7e:35:a9:92:e5:fa:6b:f1:60:c4:12:d6:d7:
ae:48:61:8c:52:d3:5d:44:bb:4b:41:b9:41:b1:ce:
75:99:21:3b:96:9b:2e:06:06:d4:ac:78:86:56:85:
65:db:6c:dc:f0:fd:6a:a0:08:69:fc:de:88:54:fc:
ed:78:c9:56:fa:1d:81:5b:f7:13:33:fd:ab:b7:c2:
45:74:1d:5f:e7:1c:c6:a3:1f:59:eb:0c:1a:00:0a:
ba:7e:b9:2d:07:ea:08:a3:e1:8e:d4:e2:81:e2:97:
23:1b:e0:eb:77:70:70:8d:68:22:b8:f7:48:2a:c7:
e1:00:33:eb:8a:d4:d1:44:4b:02:c0:89:ab:68:b8:
1a:da:90:d9:95:00:69:04:df:4f:92:d1:12:e7:49:
a8:3b:bd:f2:ca:a4:06:66:61:de:33:cd:fa:21:6a:
0e:fb:7f:69:19:4f:02:b3:76:75:9e:9a:b7:9d:ca:
1c:20:5a:c9:ec:16:3c:e0:1d:2f:83:7e:10:9d:60:
3b:5a:7d:1f:c7:b3:79:e4:37:a5:d6:96:e1:b8:92:
11:69:31:a6:81:b3:5b:92:c0:1b:26:fd:30:29:d2:
15:36:2e:90:95:c1:ed:34:d7:93:26:22:6a:db:6b:
1f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:83:6C:76:CB:11:3A:FD:2D:C8:0D:73:C6:54:B0:FF:07:90:C8:5D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/V4NsdssROv0tyA1zxlSw_weQyF0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.171.0/24
Signature Algorithm: sha256WithRSAEncryption
89:5e:32:be:5c:80:f7:18:15:bb:b9:56:b4:c6:56:f3:a0:bf:
b0:80:04:b8:25:9d:ff:b4:d9:d9:5a:17:c6:fd:db:cb:4d:41:
14:4b:8c:af:a0:fa:69:de:58:2a:a4:1b:cc:f4:b3:ee:55:4e:
ed:30:4d:bc:61:70:76:6a:ca:38:49:0a:bb:fb:ca:e5:69:06:
99:4a:69:5d:d7:32:7d:7e:30:e8:64:b2:2b:e7:86:a0:1e:09:
bd:46:5f:6f:f7:01:2a:7c:65:25:ac:6b:fd:8f:a3:3a:8a:ef:
c7:9f:5f:a4:ae:8c:61:aa:77:0f:8c:b5:bb:3a:00:e8:13:58:
a7:55:c0:a5:c8:06:41:37:3a:85:41:8a:bf:50:dd:93:8c:c3:
5d:11:8e:75:29:d6:c9:71:a5:04:a0:3d:60:8d:e3:de:eb:e5:
3e:40:1f:5b:10:ec:35:7d:5b:f2:50:c8:a8:dc:18:16:7e:df:
d2:86:63:2f:7f:aa:20:91:56:2f:8a:de:e1:81:a1:ae:4d:74:
8b:47:c0:3f:88:80:55:59:ac:10:00:b8:98:68:7a:93:bd:b9:
be:1b:2d:a6:ab:bf:b5:60:6e:aa:c5:2f:63:7a:85:3b:86:da:
da:e5:07:70:44:e3:0f:67:bb:ed:cf:25:62:8d:93:97:5f:34:
c1:ba:f9:26
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCxowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MzEwMjBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDU3ODM2Qzc2Q0IxMTNB
RkQyREM4MEQ3M0M2NTRCMEZGMDc5MEM4NUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDjHQBfJj7G3N1Jc3pzebV0fjWpkuX6a/FgxBLW165IYYxS011E
u0tBuUGxznWZITuWmy4GBtSseIZWhWXbbNzw/WqgCGn83ohU/O14yVb6HYFb9xMz
/au3wkV0HV/nHMajH1nrDBoACrp+uS0H6gij4Y7U4oHilyMb4Ot3cHCNaCK490gq
x+EAM+uK1NFESwLAiatouBrakNmVAGkE30+S0RLnSag7vfLKpAZmYd4zzfohag77
f2kZTwKzdnWemredyhwgWsnsFjzgHS+DfhCdYDtafR/Hs3nkN6XWluG4khFpMaaB
s1uSwBsm/TAp0hU2LpCVwe0015MmImrbax+tAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUV4NsdssROv0tyA1zxlSw/weQyF0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvVjROc2Rzc1JPdjB0eUEx
enhsU3dfd2VReUYwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ADzHqzANBgkqhkiG9w0BAQsFAAOCAQEAiV4yvlyA9xgVu7lWtMZW86C/sIAEuCWd
/7TZ2VoXxv3by01BFEuMr6D6ad5YKqQbzPSz7lVO7TBNvGFwdmrKOEkKu/vK5WkG
mUppXdcyfX4w6GSyK+eGoB4JvUZfb/cBKnxlJaxr/Y+jOorvx59fpK6MYap3D4y1
uzoA6BNYp1XApcgGQTc6hUGKv1Ddk4zDXRGOdSnWyXGlBKA9YI3j3uvlPkAfWxDs
NX1b8lDIqNwYFn7f0oZjL3+qIJFWL4re4YGhrk10i0fAP4iAVVmsEAC4mGh6k725
vhstpqu/tWBuqsUvY3qFO4ba2uUHcETjD2e77c8lYo2Tl180wbr5Jg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org