Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Xn4jtusbjziXHq5SLjAjdcHFcJ8.roa
File: Xn4jtusbjziXHq5SLjAjdcHFcJ8.roa (raw, json)
Hash identifier: 5WorSvwO550vHdKinhW6db2fN7OAMwib39pwKxiGNl0=
Subject key identifier: 5E:7E:23:B6:EB:1B:8F:38:97:1E:AE:52:2E:30:23:75:C1:C5:70:9F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 097A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Xn4jtusbjziXHq5SLjAjdcHFcJ8.roa
Signing time: Wed 16 Dec 2020 02:13:34 +0000
ROA not before: Wed 16 Dec 2020 02:13:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.77.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2426 (0x97a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:13:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5E7E23B6EB1B8F38971EAE522E302375C1C5709F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3d:1a:85:45:f8:be:35:46:36:77:e5:71:74:
3f:f8:69:58:7e:34:fe:b3:7f:a7:85:73:2b:6e:b0:
d7:38:d4:7c:a7:47:0b:9e:62:e2:b9:81:e3:a3:16:
6b:64:8e:3d:24:41:9e:02:e3:4f:64:a6:98:07:60:
54:84:16:6d:84:91:84:5d:04:80:21:eb:19:1a:c3:
38:fa:a3:74:5f:91:48:ab:63:7c:34:29:d4:08:e5:
7e:c2:49:6e:d2:6a:5e:22:d5:fc:ef:93:97:8f:a2:
0a:70:fa:bd:d8:75:5e:f9:f7:f8:50:78:e7:f5:28:
44:96:a4:79:a9:f4:41:6d:ba:9a:12:0d:9a:92:ba:
eb:36:75:72:a8:20:a4:6f:98:35:7d:2f:b2:3a:51:
5c:0b:0a:31:51:f2:ac:8e:b3:d2:0a:43:51:f6:2d:
2b:6b:21:39:8a:1c:41:7f:e2:a7:b6:b7:8b:cf:9f:
ce:58:3d:9f:91:e5:d2:c7:fe:05:97:93:57:ae:5b:
10:52:15:7d:74:b8:76:bc:62:cc:9a:45:27:cd:d6:
8b:ee:df:5c:0f:c0:d1:08:bb:d6:9c:94:99:73:b6:
cf:7c:af:8c:7b:d2:8a:60:bf:64:55:8b:e2:44:b4:
e5:97:08:e4:ee:7f:62:4e:36:ab:ea:92:ee:0f:79:
99:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:7E:23:B6:EB:1B:8F:38:97:1E:AE:52:2E:30:23:75:C1:C5:70:9F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Xn4jtusbjziXHq5SLjAjdcHFcJ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.77.0/24
Signature Algorithm: sha256WithRSAEncryption
90:c5:f0:49:9f:b8:73:08:17:40:41:c3:ee:db:c3:9b:d0:44:
ee:64:e7:e3:ae:44:0a:43:94:ba:d9:95:18:9c:26:65:e3:c5:
56:ca:4c:08:85:da:85:27:26:9e:11:48:a8:4f:8a:47:43:41:
3b:28:72:85:ae:cd:af:d3:e7:e0:22:2e:b2:3d:90:45:08:c2:
38:ca:70:24:b9:d3:93:b3:a3:43:6b:b0:35:eb:f0:ab:55:b1:
0c:ab:a1:41:e8:a9:38:06:04:aa:34:22:f1:93:db:89:8a:e9:
29:ac:7f:c0:68:4f:7b:b4:44:80:05:9d:b4:99:ae:a9:53:ba:
c8:f7:02:2b:f9:91:53:ef:e9:e7:0f:c7:2a:d8:5a:93:57:fa:
8f:f0:d8:dc:e5:41:04:7f:78:65:98:e3:37:b2:3b:22:85:eb:
61:18:88:2c:df:d0:b0:89:7f:32:21:cd:f0:fc:57:16:9f:db:
15:54:bb:0d:34:42:11:14:a3:5d:81:f1:b1:9f:05:bf:21:63:
3f:fd:34:9c:e6:ba:7a:64:3c:ef:5e:dc:1b:52:77:9a:ac:58:
ee:14:53:db:71:c3:cd:54:da:88:d6:a0:eb:03:fa:0b:4f:56:
ae:e0:fe:2f:4a:d7:2a:e4:e1:78:f8:06:70:c1:5c:24:fb:89:
0e:73:d7:9a
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCXowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDEyMTYw
MjEzMzRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDVFN0UyM0I2RUIxQjhG
Mzg5NzFFQUU1MjJFMzAyMzc1QzFDNTcwOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCgPRqFRfi+NUY2d+VxdD/4aVh+NP6zf6eFcytusNc41HynRwue
YuK5geOjFmtkjj0kQZ4C409kppgHYFSEFm2EkYRdBIAh6xkawzj6o3RfkUirY3w0
KdQI5X7CSW7Sal4i1fzvk5ePogpw+r3YdV759/hQeOf1KESWpHmp9EFtupoSDZqS
uus2dXKoIKRvmDV9L7I6UVwLCjFR8qyOs9IKQ1H2LStrITmKHEF/4qe2t4vPn85Y
PZ+R5dLH/gWXk1euWxBSFX10uHa8YsyaRSfN1ovu31wPwNEIu9aclJlzts98r4x7
0opgv2RVi+JEtOWXCOTuf2JONqvqku4PeZnDAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUXn4jtusbjziXHq5SLjAjdcHFcJ8wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvWG40anR1c2JqemlYSHE1
U0xqQWpkY0hGY0o4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ANIRTTANBgkqhkiG9w0BAQsFAAOCAQEAkMXwSZ+4cwgXQEHD7tvDm9BE7mTn465E
CkOUutmVGJwmZePFVspMCIXahScmnhFIqE+KR0NBOyhyha7Nr9Pn4CIusj2QRQjC
OMpwJLnTk7OjQ2uwNevwq1WxDKuhQeipOAYEqjQi8ZPbiYrpKax/wGhPe7REgAWd
tJmuqVO6yPcCK/mRU+/p5w/HKthak1f6j/DY3OVBBH94ZZjjN7I7IoXrYRiILN/Q
sIl/MiHN8PxXFp/bFVS7DTRCERSjXYHxsZ8FvyFjP/00nOa6emQ8717cG1J3mqxY
7hRT23HDzVTaiNag6wP6C09WruD+L0rXKuThePgGcMFcJPuJDnPXmg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org