Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cfQlE6JTerGFnATa4YU6wxuzg_0.roa
File: cfQlE6JTerGFnATa4YU6wxuzg_0.roa (raw, json)
Hash identifier: o5CF0vb2+29oRZnAcf2V/CA+M3d46mbbi3ua8nSwuvQ=
Subject key identifier: 71:F4:25:13:A2:53:7A:B1:85:9C:04:DA:E1:85:3A:C3:1B:B3:83:FD
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 07E7
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cfQlE6JTerGFnATa4YU6wxuzg_0.roa
Signing time: Tue 29 Sep 2020 09:57:31 +0000
ROA not before: Tue 29 Sep 2020 09:57:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 211.78.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2023 (0x7e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=71F42513A2537AB1859C04DAE1853AC31BB383FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c8:c3:d7:f4:c4:8d:7e:b2:71:02:bb:f7:61:
58:3e:b3:dc:b3:ca:75:0a:ec:02:82:dc:37:90:bb:
d5:2f:a4:8e:2c:6c:c3:ff:a7:a6:5a:73:f1:18:b1:
ef:94:93:07:f2:1e:f1:32:b7:a6:01:ac:81:c9:58:
a0:7c:ed:fb:26:11:8c:48:e6:73:82:05:fb:7f:17:
14:3f:76:e6:b1:e0:f7:a1:f1:45:06:75:54:9a:28:
b0:bb:9a:d8:a1:d3:9c:69:3c:5f:20:48:3f:47:46:
63:4d:51:ac:30:03:b8:6a:23:97:d7:c9:6b:c6:6f:
f0:db:c1:29:52:4e:3b:fa:0e:85:fa:76:c2:7c:6c:
8e:8b:cd:3c:2f:16:c6:84:d1:64:8a:a3:eb:c7:d8:
16:da:3e:66:4f:e4:97:42:e6:2c:b5:39:d0:39:fc:
78:67:12:71:4c:b1:03:97:6b:c9:43:71:3e:eb:80:
47:6f:1e:68:75:7d:4e:dd:f1:f8:fe:04:09:b9:16:
d3:67:92:d5:cf:62:c5:76:c6:90:a6:62:86:6d:71:
42:ee:17:8f:d6:6d:d4:35:9f:b2:f1:42:70:23:1c:
72:29:db:ed:15:de:37:55:f8:b1:10:28:3f:eb:9c:
18:02:58:a7:ac:64:56:99:0b:66:8b:42:dd:69:82:
68:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F4:25:13:A2:53:7A:B1:85:9C:04:DA:E1:85:3A:C3:1B:B3:83:FD
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cfQlE6JTerGFnATa4YU6wxuzg_0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.208.0/20
Signature Algorithm: sha256WithRSAEncryption
98:e7:04:5d:57:c5:86:2b:0b:19:53:0c:47:95:fe:ec:49:60:
7f:c2:17:3d:35:9d:f7:8d:cd:78:6f:fb:f6:b2:86:00:0b:3a:
fd:c2:7d:66:df:4e:96:0a:3d:06:98:9a:25:c0:47:1f:ad:ce:
53:94:fb:a7:55:d7:13:06:7f:3f:0c:e8:a9:25:76:60:7a:b5:
b6:26:39:23:f0:80:b6:13:83:66:00:7f:21:85:07:f5:d0:8e:
8e:48:cf:4b:86:8b:33:92:11:42:09:32:25:85:fb:91:c7:e6:
ca:5a:91:b8:a7:76:67:c5:57:16:62:65:6d:0c:2e:bf:5b:ca:
2e:e5:9d:db:78:16:ef:b4:23:d6:70:22:2a:21:0e:e7:43:91:
85:09:a0:6f:f4:a7:52:9a:38:0f:2a:0d:96:c0:9e:f7:08:84:
ad:09:72:3e:64:ea:b7:cc:e6:0f:d6:ea:6d:58:bf:c0:67:dd:
21:43:6d:1c:7a:f8:2f:cb:f4:74:d0:c1:63:3c:00:24:4a:3a:
8d:b9:c6:f8:f7:95:d6:b4:8e:68:8a:30:f8:9a:e6:95:d0:f3:
1b:0d:41:a6:91:cd:1f:5a:8c:83:65:9d:b9:16:05:ad:ed:93:
0b:05:2e:ba:09:0a:bb:73:7c:46:bb:76:47:f8:9c:19:77:51:
b7:24:b4:9d
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICB+cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDA5Mjkw
OTU3MzFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDcxRjQyNTEzQTI1MzdB
QjE4NTlDMDREQUUxODUzQUMzMUJCMzgzRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCZyMPX9MSNfrJxArv3YVg+s9yzynUK7AKC3DeQu9UvpI4sbMP/
p6Zac/EYse+UkwfyHvEyt6YBrIHJWKB87fsmEYxI5nOCBft/FxQ/duax4Peh8UUG
dVSaKLC7mtih05xpPF8gSD9HRmNNUawwA7hqI5fXyWvGb/DbwSlSTjv6DoX6dsJ8
bI6LzTwvFsaE0WSKo+vH2BbaPmZP5JdC5iy1OdA5/HhnEnFMsQOXa8lDcT7rgEdv
Hmh1fU7d8fj+BAm5FtNnktXPYsV2xpCmYoZtcULuF4/WbdQ1n7LxQnAjHHIp2+0V
3jdV+LEQKD/rnBgCWKesZFaZC2aLQt1pgmj9AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUcfQlE6JTerGFnATa4YU6wxuzg/0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvY2ZRbEU2SlRlckdGbkFU
YTRZVTZ3eHV6Z18wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BNNO0DANBgkqhkiG9w0BAQsFAAOCAQEAmOcEXVfFhisLGVMMR5X+7Elgf8IXPTWd
943NeG/79rKGAAs6/cJ9Zt9Olgo9BpiaJcBHH63OU5T7p1XXEwZ/PwzoqSV2YHq1
tiY5I/CAthODZgB/IYUH9dCOjkjPS4aLM5IRQgkyJYX7kcfmylqRuKd2Z8VXFmJl
bQwuv1vKLuWd23gW77Qj1nAiKiEO50ORhQmgb/SnUpo4DyoNlsCe9wiErQlyPmTq
t8zmD9bqbVi/wGfdIUNtHHr4L8v0dNDBYzwAJEo6jbnG+PeV1rSOaIow+JrmldDz
Gw1BppHNH1qMg2WduRYFre2TCwUuugkKu3N8Rrt2R/icGXdRtyS0nQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:53 2025 by rpki-client