Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bxKMu0AEfCah6L6Nf_wmX8dflrs.roa
File: bxKMu0AEfCah6L6Nf_wmX8dflrs.roa (raw, json)
Hash identifier: wZsqR1LdekP2hMtx7A3X6vqmG0DKRr26vgs5Db14qbw=
Subject key identifier: 6F:12:8C:BB:40:04:7C:26:A1:E8:BE:8D:7F:FC:26:5F:C7:5F:96:BB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 09A8
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bxKMu0AEfCah6L6Nf_wmX8dflrs.roa
Signing time: Wed 16 Dec 2020 02:56:26 +0000
ROA not before: Wed 16 Dec 2020 02:56:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.100.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2472 (0x9a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:56:26 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6F128CBB40047C26A1E8BE8D7FFC265FC75F96BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:eb:84:41:1c:da:d1:89:13:9f:d9:35:ee:81:
45:1a:c5:62:25:a6:b4:23:92:78:a6:55:05:f5:76:
62:9c:95:96:de:3c:b6:89:40:89:3c:a8:4c:f8:6c:
72:a7:b5:a4:7f:ce:3e:9d:4a:8d:9b:2b:ac:95:fa:
16:55:6c:e7:bd:7f:d3:ae:23:f8:2f:49:96:fa:ed:
52:80:9e:e0:3f:54:bd:34:c3:d8:e2:06:a7:e7:93:
09:3a:5b:f7:0a:d7:99:bc:93:8f:d9:29:94:fa:99:
84:3d:b5:62:77:53:c0:f5:67:33:63:09:d5:97:c6:
08:ba:9f:45:52:d1:66:88:38:76:cd:48:f4:38:61:
c9:f3:30:27:da:94:17:d7:22:9f:56:a1:c1:4b:a8:
41:13:a6:ee:d4:3d:8a:94:b4:d5:39:bf:96:f6:30:
95:46:15:66:56:a5:f2:80:1e:3a:48:4e:9c:b8:59:
26:0a:1e:6d:e9:3d:25:1e:00:5b:9d:e7:ad:d2:a7:
db:97:03:46:2b:e6:67:ce:cf:37:91:4f:b2:ec:50:
e7:5d:a4:34:2b:49:5b:1b:d8:a4:ef:fd:2f:9a:38:
cc:ba:c2:3c:a1:75:f4:f0:9f:77:fe:b0:c7:c1:ee:
40:59:cc:ef:13:ae:cb:23:67:04:2d:51:41:47:9e:
11:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:12:8C:BB:40:04:7C:26:A1:E8:BE:8D:7F:FC:26:5F:C7:5F:96:BB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bxKMu0AEfCah6L6Nf_wmX8dflrs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.100.0/23
Signature Algorithm: sha256WithRSAEncryption
41:5a:e5:35:8c:27:98:64:13:7a:6a:7b:a1:1d:87:69:6b:93:
df:16:86:88:a3:fe:ff:a2:46:82:18:17:2b:ed:4f:38:97:2a:
f7:b0:64:7c:48:06:45:60:3a:ea:1d:2a:d2:08:29:1e:ee:f9:
f9:d6:bf:7a:e4:17:69:32:72:04:4f:43:2d:fa:6b:56:36:9f:
b5:00:a0:e0:4c:37:2e:b4:f9:40:ab:d7:f9:86:04:57:ad:3f:
0d:64:dc:7a:5e:da:18:6f:42:85:a8:00:b7:47:2b:b5:0e:a1:
77:fc:80:3a:ac:2b:40:54:bc:f6:42:80:47:b9:9f:63:71:a8:
73:98:f5:da:9a:85:d0:72:1f:1e:62:1b:bb:af:5c:66:c4:d5:
3d:e5:e9:39:9f:88:b4:40:87:43:37:67:20:7b:1a:dd:47:86:
b2:b8:6b:51:56:3d:d6:7c:2a:c0:d9:91:89:be:18:78:85:98:
a6:6b:f5:df:1b:b5:bf:ce:f4:3f:2f:cf:a8:3b:15:e7:ac:d4:
8b:d5:8f:f1:c1:7a:72:03:46:f8:13:06:0e:fa:cb:9d:e5:90:
d6:f5:73:97:95:5e:7b:e3:bd:89:9c:92:87:0e:e4:27:b9:fe:
cb:8a:0b:b4:0d:3b:b9:fc:88:f7:8e:70:a6:87:44:b8:d2:fe:
8e:45:d9:2b
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCagwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDEyMTYw
MjU2MjZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDZGMTI4Q0JCNDAwNDdD
MjZBMUU4QkU4RDdGRkMyNjVGQzc1Rjk2QkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC864RBHNrRiROf2TXugUUaxWIlprQjknimVQX1dmKclZbePLaJ
QIk8qEz4bHKntaR/zj6dSo2bK6yV+hZVbOe9f9OuI/gvSZb67VKAnuA/VL00w9ji
Bqfnkwk6W/cK15m8k4/ZKZT6mYQ9tWJ3U8D1ZzNjCdWXxgi6n0VS0WaIOHbNSPQ4
YcnzMCfalBfXIp9WocFLqEETpu7UPYqUtNU5v5b2MJVGFWZWpfKAHjpITpy4WSYK
Hm3pPSUeAFud563Sp9uXA0Yr5mfOzzeRT7LsUOddpDQrSVsb2KTv/S+aOMy6wjyh
dfTwn3f+sMfB7kBZzO8TrssjZwQtUUFHnhFxAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUbxKMu0AEfCah6L6Nf/wmX8dflrswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvYnhLTXUwQUVmQ2FoNkw2
TmZfd21YOGRmbHJzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AdIRZDANBgkqhkiG9w0BAQsFAAOCAQEAQVrlNYwnmGQTemp7oR2HaWuT3xaGiKP+
/6JGghgXK+1POJcq97BkfEgGRWA66h0q0ggpHu75+da/euQXaTJyBE9DLfprVjaf
tQCg4Ew3LrT5QKvX+YYEV60/DWTcel7aGG9ChagAt0crtQ6hd/yAOqwrQFS89kKA
R7mfY3Goc5j12pqF0HIfHmIbu69cZsTVPeXpOZ+ItECHQzdnIHsa3UeGsrhrUVY9
1nwqwNmRib4YeIWYpmv13xu1v870Py/PqDsV56zUi9WP8cF6cgNG+BMGDvrLneWQ
1vVzl5Vee+O9iZyShw7kJ7n+y4oLtA07ufyI945wpodEuNL+jkXZKw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:43 2025 by rpki-client