Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cO_C3MTsrrp_spUd9gX9NDJpq_4.roa
File: cO_C3MTsrrp_spUd9gX9NDJpq_4.roa (raw, json)
Hash identifier: ZxAxU6Ffyy2h6GW3aXsJ/aDmYGwolTEHkCQdEjRkDuk=
Subject key identifier: 70:EF:C2:DC:C4:EC:AE:BA:7F:B2:95:1D:F6:05:FD:34:32:69:AB:FE
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C66
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cO_C3MTsrrp_spUd9gX9NDJpq_4.roa
Signing time: Wed 29 Sep 2021 02:49:47 +0000
ROA not before: Wed 29 Sep 2021 02:49:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.208.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3174 (0xc66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=70EFC2DCC4ECAEBA7FB2951DF605FD343269ABFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:41:97:d6:d2:6c:cb:16:96:27:79:1b:be:45:
81:eb:52:c8:55:69:5d:81:53:e7:8a:49:71:e3:6f:
5a:19:c8:d5:a9:0f:7c:f1:ca:f9:0d:13:9b:64:7c:
31:b3:c6:52:00:5d:92:b7:9e:55:42:37:7b:22:66:
11:ef:7e:b1:54:96:ff:18:06:b8:04:88:80:94:19:
bc:ef:ac:2f:f8:5e:0f:54:b7:5a:35:fe:0c:a8:33:
13:14:4d:f7:77:0e:e2:7d:ed:d4:23:29:97:b4:c8:
a3:ab:78:ab:57:1b:c4:fc:9f:07:38:61:d9:4d:b3:
17:a6:96:9f:c7:24:91:cf:5a:2b:cb:4b:32:03:85:
c9:3f:af:de:b8:f5:32:d5:2d:e3:a8:1f:39:23:7e:
1b:21:f0:fd:2a:85:d0:e4:57:b6:e1:48:97:bc:8d:
ca:1f:26:15:c9:76:33:60:f0:e2:90:1e:57:c8:2e:
ba:eb:a3:82:a9:e3:7d:e3:36:3b:60:30:20:9f:81:
79:f4:80:9c:20:a8:16:25:c6:b1:7c:3f:a9:57:1e:
dc:d1:87:c0:dd:09:fa:fe:84:7d:26:66:4b:33:a7:
b1:98:46:9a:af:cc:c6:91:f8:6c:91:b9:93:6f:7e:
a9:dd:04:c4:6c:b0:a0:0c:c1:13:02:67:30:64:97:
e2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:EF:C2:DC:C4:EC:AE:BA:7F:B2:95:1D:F6:05:FD:34:32:69:AB:FE
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cO_C3MTsrrp_spUd9gX9NDJpq_4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.208.96.0/19
Signature Algorithm: sha256WithRSAEncryption
50:d5:38:64:e7:3e:7f:6d:07:1c:12:4d:70:15:33:3d:eb:f8:
3d:8b:59:1c:cd:62:04:dc:2e:dd:dd:50:bc:56:fe:80:7f:3f:
1e:27:fe:ca:b2:10:45:4b:3b:77:bb:b0:dd:bf:10:4b:7c:4f:
14:ff:3d:50:6a:f3:e3:87:25:62:5f:dc:78:fc:74:fc:86:0e:
9a:98:b2:33:f1:cd:ef:da:f9:f6:95:11:44:20:aa:08:2a:cb:
50:76:d1:37:f2:97:a8:35:11:57:b9:15:ab:ce:a3:ac:bb:b0:
b6:df:63:1c:58:f1:cd:03:12:71:67:68:82:2e:57:6e:ea:d3:
88:86:34:43:c2:c3:17:e7:34:83:84:8b:13:30:68:91:7a:2f:
61:37:72:2a:c8:77:69:26:99:bc:db:e9:83:c1:6d:0f:6b:1c:
19:42:75:b1:14:ff:ab:f0:18:c2:7f:4d:d1:a9:0f:6d:1f:4d:
10:da:48:c3:35:f8:36:c9:b6:e8:14:98:92:01:83:e9:72:d1:
bb:26:58:5a:39:84:28:b0:b6:ea:89:bc:a0:fe:47:e7:54:da:
cf:0e:95:63:a0:14:3e:72:a5:81:18:9d:b0:5e:18:00:e9:fb:
79:ce:31:26:34:1c:df:2c:ea:f3:d3:06:8f:8f:2e:79:45:5e:
03:b6:76:79
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDGYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjQ5NDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDcwRUZDMkRDQzRFQ0FF
QkE3RkIyOTUxREY2MDVGRDM0MzI2OUFCRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQChQZfW0mzLFpYneRu+RYHrUshVaV2BU+eKSXHjb1oZyNWpD3zx
yvkNE5tkfDGzxlIAXZK3nlVCN3siZhHvfrFUlv8YBrgEiICUGbzvrC/4Xg9Ut1o1
/gyoMxMUTfd3DuJ97dQjKZe0yKOreKtXG8T8nwc4YdlNsxemlp/HJJHPWivLSzID
hck/r9649TLVLeOoHzkjfhsh8P0qhdDkV7bhSJe8jcofJhXJdjNg8OKQHlfILrrr
o4Kp433jNjtgMCCfgXn0gJwgqBYlxrF8P6lXHtzRh8DdCfr+hH0mZkszp7GYRpqv
zMaR+GyRuZNvfqndBMRssKAMwRMCZzBkl+KnAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUcO/C3MTsrrp/spUd9gX9NDJpq/4wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvY09fQzNNVHNycnBfc3BV
ZDlnWDlOREpwcV80LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BdLQYDANBgkqhkiG9w0BAQsFAAOCAQEAUNU4ZOc+f20HHBJNcBUzPev4PYtZHM1i
BNwu3d1QvFb+gH8/Hif+yrIQRUs7d7uw3b8QS3xPFP89UGrz44clYl/cePx0/IYO
mpiyM/HN79r59pURRCCqCCrLUHbRN/KXqDURV7kVq86jrLuwtt9jHFjxzQMScWdo
gi5XburTiIY0Q8LDF+c0g4SLEzBokXovYTdyKsh3aSaZvNvpg8FtD2scGUJ1sRT/
q/AYwn9N0akPbR9NENpIwzX4Nsm26BSYkgGD6XLRuyZYWjmEKLC26om8oP5H51Ta
zw6VY6AUPnKlgRidsF4YAOn7ec4xJjQc3yzq89MGj48ueUVeA7Z2eQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org