Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aYPdTLaw4-m1d0kOEhlvA1xXaVI.roa
File: aYPdTLaw4-m1d0kOEhlvA1xXaVI.roa (raw, json)
Hash identifier: ddT70kQQg76k3vfVuZI6wTocubWjcNTDLy3oXCVkHJI=
Subject key identifier: 69:83:DD:4C:B6:B0:E3:E9:B5:77:49:0E:12:19:6F:03:5C:57:69:52
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C72
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aYPdTLaw4-m1d0kOEhlvA1xXaVI.roa
Signing time: Wed 29 Sep 2021 02:49:51 +0000
ROA not before: Wed 29 Sep 2021 02:49:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.17.80.0/20 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3186 (0xc72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6983DD4CB6B0E3E9B577490E12196F035C576952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:23:fe:1d:aa:19:2a:2d:ee:d9:7f:dd:0b:f8:
96:2f:4b:5d:83:43:5f:f5:a6:f1:95:ed:97:e0:11:
10:ca:56:fd:61:07:5b:50:b5:7f:df:e7:2b:5c:ea:
46:60:85:6c:de:16:1a:0f:21:1e:63:2f:50:bc:fa:
2b:87:08:ca:25:33:03:02:56:6d:f4:c0:b2:bb:30:
a6:b9:7e:04:d7:f3:7a:60:e7:70:bf:63:81:a4:02:
d9:cd:d2:73:4b:e2:dc:29:b8:7f:a9:88:52:04:92:
8a:95:2b:51:ef:dd:8e:8a:bc:cf:ba:67:17:cb:6e:
c8:d1:10:1b:09:20:ac:9a:24:a0:d9:5f:7b:ab:0d:
5b:68:28:be:5c:1b:8a:f7:a3:7c:49:27:35:4f:3b:
81:1a:8f:8e:f0:bc:b1:6b:a2:f1:b6:62:36:5f:09:
48:05:3b:88:58:99:8a:89:e0:ed:c2:20:a2:ea:49:
df:82:3d:9b:42:51:61:72:15:57:99:7a:7c:b9:84:
23:8f:ee:7e:40:78:3c:91:2b:b9:a5:c4:c4:e2:d3:
f6:a1:fd:b5:3c:2f:96:d8:9f:5e:51:f0:2e:8e:6f:
c1:b3:cc:7f:c6:0c:e2:9d:0a:69:15:43:65:7e:35:
a0:e5:51:c6:bd:62:3e:52:9f:e7:50:22:9c:9f:27:
ec:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:83:DD:4C:B6:B0:E3:E9:B5:77:49:0E:12:19:6F:03:5C:57:69:52
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aYPdTLaw4-m1d0kOEhlvA1xXaVI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.80.0/20
Signature Algorithm: sha256WithRSAEncryption
80:36:93:eb:bf:8c:4a:12:39:2e:0d:b6:b2:da:dd:51:89:ae:
30:9e:99:d9:26:8f:15:d6:95:3d:f4:54:27:ff:5d:81:23:ba:
49:1d:34:be:91:a1:98:96:34:a4:dd:0e:41:b8:eb:73:59:20:
cd:4c:90:43:d9:40:5e:f1:a6:a3:35:f8:6c:f1:e9:9c:cb:45:
43:42:87:aa:27:c8:8b:19:9c:ec:1b:14:5e:06:85:86:ff:b1:
cd:2f:14:cd:96:6b:a9:97:99:15:40:2e:84:08:ed:d2:72:ad:
74:9a:03:71:e3:b2:25:cc:db:37:98:f7:78:c7:9f:cd:83:35:
1a:4a:e4:38:de:b9:4b:d5:b2:5e:66:f4:92:84:bc:2d:db:80:
21:8d:8d:7c:d5:aa:62:88:df:e4:06:27:03:55:b6:34:6f:cc:
bd:e9:8d:3a:88:30:b5:25:a7:84:54:04:7b:75:c5:b2:0c:d6:
db:f2:d8:01:4e:19:f7:46:b3:4a:2b:93:e0:25:f5:26:f1:cd:
8f:c9:25:15:bb:76:c6:6c:3f:3f:10:b1:8d:58:0d:b0:8f:5c:
fa:ef:6e:62:73:e6:bd:98:df:0a:9d:6b:24:7b:dd:57:b3:7c:
90:5c:04:a9:40:09:e1:aa:1c:dc:27:f9:81:ae:f4:1c:0c:e0:
d8:70:a8:3a
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDHIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjQ5NTFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDY5ODNERDRDQjZCMEUz
RTlCNTc3NDkwRTEyMTk2RjAzNUM1NzY5NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSI/4dqhkqLe7Zf90L+JYvS12DQ1/1pvGV7ZfgERDKVv1hB1tQ
tX/f5ytc6kZghWzeFhoPIR5jL1C8+iuHCMolMwMCVm30wLK7MKa5fgTX83pg53C/
Y4GkAtnN0nNL4twpuH+piFIEkoqVK1Hv3Y6KvM+6ZxfLbsjREBsJIKyaJKDZX3ur
DVtoKL5cG4r3o3xJJzVPO4Eaj47wvLFrovG2YjZfCUgFO4hYmYqJ4O3CIKLqSd+C
PZtCUWFyFVeZeny5hCOP7n5AeDyRK7mlxMTi0/ah/bU8L5bYn15R8C6Ob8GzzH/G
DOKdCmkVQ2V+NaDlUca9Yj5Sn+dQIpyfJ+yjAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUaYPdTLaw4+m1d0kOEhlvA1xXaVIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvYVlQZFRMYXc0LW0xZDBr
T0VobHZBMXhYYVZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BNIRUDANBgkqhkiG9w0BAQsFAAOCAQEAgDaT67+MShI5Lg22strdUYmuMJ6Z2SaP
FdaVPfRUJ/9dgSO6SR00vpGhmJY0pN0OQbjrc1kgzUyQQ9lAXvGmozX4bPHpnMtF
Q0KHqifIixmc7BsUXgaFhv+xzS8UzZZrqZeZFUAuhAjt0nKtdJoDceOyJczbN5j3
eMefzYM1GkrkON65S9WyXmb0koS8LduAIY2NfNWqYojf5AYnA1W2NG/MvemNOogw
tSWnhFQEe3XFsgzW2/LYAU4Z90azSiuT4CX1JvHNj8klFbt2xmw/PxCxjVgNsI9c
+u9uYnPmvZjfCp1rJHvdV7N8kFwEqUAJ4aoc3Cf5ga70HAzg2HCoOg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org