Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/dUVmkkGbAvh2XLh-wUiYyUmv67w.roa
File: dUVmkkGbAvh2XLh-wUiYyUmv67w.roa (raw, json)
Hash identifier: mwtHrr9n4YvkXFnuUGYIR/Rs2/V2lja4WZS5B3/Ndsk=
Subject key identifier: 75:45:66:92:41:9B:02:F8:76:5C:B8:7E:C1:48:98:C9:49:AF:EB:BC
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0978
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/dUVmkkGbAvh2XLh-wUiYyUmv67w.roa
Signing time: Wed 16 Dec 2020 02:11:44 +0000
ROA not before: Wed 16 Dec 2020 02:11:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.199.107.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2424 (0x978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:11:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=75456692419B02F8765CB87EC14898C949AFEBBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:90:1e:2f:e2:bb:68:a3:3a:2e:45:2f:49:b4:
ea:04:b0:bc:f3:f1:89:ea:56:0a:7c:4b:fc:80:b5:
ce:71:35:f9:8c:a0:d7:d0:2b:9c:c9:84:4e:30:68:
f2:1d:bf:6d:68:6c:25:c6:f2:d5:c9:bf:4f:69:e5:
1d:42:d1:5a:b0:8e:8c:24:75:90:05:6d:e6:84:5f:
bf:80:1e:9e:da:c7:ab:db:78:93:57:bd:68:c6:99:
4d:fd:b1:77:25:c7:28:9d:d8:2d:31:36:bf:95:33:
b6:f1:6b:47:46:f0:bf:22:0e:8b:ad:24:b6:75:78:
51:50:2a:65:c1:07:9f:96:e0:5d:98:e5:6a:4d:23:
75:0e:d2:4d:a4:87:77:e7:09:9a:4a:45:ea:86:fd:
b9:3e:05:cd:22:a9:a2:bd:06:8e:0b:7d:4a:d5:e8:
29:85:0f:48:38:e9:d6:77:7c:ab:47:33:f1:24:c3:
60:cc:11:f7:2e:2c:68:3c:20:53:5a:4e:41:66:11:
c2:29:e3:d5:c7:19:56:58:99:b0:6e:15:6d:9d:78:
7d:2c:5c:fc:28:5b:dc:33:35:91:c8:cd:36:72:8b:
6c:c5:d1:48:41:a9:8f:2b:35:e2:f4:ad:64:24:07:
09:49:d4:bc:a0:fb:ea:ec:c9:a2:e7:f2:80:29:c9:
4b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:45:66:92:41:9B:02:F8:76:5C:B8:7E:C1:48:98:C9:49:AF:EB:BC
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/dUVmkkGbAvh2XLh-wUiYyUmv67w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.107.0/24
Signature Algorithm: sha256WithRSAEncryption
31:12:6d:7c:f1:78:82:bb:5f:53:bb:49:7b:e1:6f:b0:cf:cf:
0d:fd:7d:c8:f6:cb:f3:47:de:1a:87:fd:c5:65:76:7f:09:89:
e9:56:b6:71:ae:3b:c8:60:dc:be:82:1a:8d:67:01:9a:50:93:
e5:a3:b0:8d:5f:ff:1f:d6:61:8e:0a:d9:af:29:2c:37:f6:c7:
dd:c6:70:ed:e9:1b:75:77:75:34:fe:17:46:fa:44:20:22:ae:
77:74:b5:f8:08:7b:bc:53:cd:7b:c3:77:00:da:0d:4e:b3:a9:
77:d1:f5:63:21:a5:ab:ed:89:33:b2:b3:50:04:75:aa:bd:78:
47:ac:fe:01:bb:2e:27:b5:7f:55:88:e6:5d:e1:a3:b1:f4:48:
6a:29:b4:32:ed:af:ac:69:75:5c:6d:58:0c:e9:a5:ad:22:04:
4c:13:0c:fe:00:c0:4b:63:b7:51:07:f1:0e:55:69:b5:2a:f2:
e8:83:88:89:24:97:ed:43:3a:99:7f:c9:68:1d:78:44:60:07:
51:29:c3:66:67:42:8a:06:63:28:b5:46:58:2a:e1:80:99:06:
04:79:40:0d:df:96:84:49:8e:4b:c5:97:3a:47:af:47:55:a9:
30:6d:82:eb:fc:73:bc:c9:73:17:f0:b7:35:0b:b9:5d:b8:3d:
95:0f:de:57
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCXgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDEyMTYw
MjExNDRaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDc1NDU2NjkyNDE5QjAy
Rjg3NjVDQjg3RUMxNDg5OEM5NDlBRkVCQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVkB4v4rtoozouRS9JtOoEsLzz8YnqVgp8S/yAtc5xNfmMoNfQ
K5zJhE4waPIdv21obCXG8tXJv09p5R1C0VqwjowkdZAFbeaEX7+AHp7ax6vbeJNX
vWjGmU39sXclxyid2C0xNr+VM7bxa0dG8L8iDoutJLZ1eFFQKmXBB5+W4F2Y5WpN
I3UO0k2kh3fnCZpKReqG/bk+Bc0iqaK9Bo4LfUrV6CmFD0g46dZ3fKtHM/Ekw2DM
EfcuLGg8IFNaTkFmEcIp49XHGVZYmbBuFW2deH0sXPwoW9wzNZHIzTZyi2zF0UhB
qY8rNeL0rWQkBwlJ1Lyg++rsyaLn8oApyUvlAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUdUVmkkGbAvh2XLh+wUiYyUmv67wwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZFVWbWtrR2JBdmgyWExo
LXdVaVl5VW12Njd3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ADzHazANBgkqhkiG9w0BAQsFAAOCAQEAMRJtfPF4grtfU7tJe+FvsM/PDf19yPbL
80feGof9xWV2fwmJ6Va2ca47yGDcvoIajWcBmlCT5aOwjV//H9ZhjgrZryksN/bH
3cZw7ekbdXd1NP4XRvpEICKud3S1+Ah7vFPNe8N3ANoNTrOpd9H1YyGlq+2JM7Kz
UAR1qr14R6z+AbsuJ7V/VYjmXeGjsfRIaim0Mu2vrGl1XG1YDOmlrSIETBMM/gDA
S2O3UQfxDlVptSry6IOIiSSX7UM6mX/JaB14RGAHUSnDZmdCigZjKLVGWCrhgJkG
BHlADd+WhEmOS8WXOkevR1WpMG2C6/xzvMlzF/C3NQu5Xbg9lQ/eVw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org