Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/fy_T-g_BX9LYoXjgcFJ4qSxpq8A.roa
File: fy_T-g_BX9LYoXjgcFJ4qSxpq8A.roa (raw, json)
Hash identifier: fY4rbtFFun+1Vo6ayH3O2Stk2pIKOY4pFyM2070kS1I=
Subject key identifier: 7F:2F:D3:FA:0F:C1:5F:D2:D8:A1:78:E0:70:52:78:A9:2C:69:AB:C0
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CAD
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/fy_T-g_BX9LYoXjgcFJ4qSxpq8A.roa
Signing time: Wed 29 Sep 2021 02:50:08 +0000
ROA not before: Wed 29 Sep 2021 02:50:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 133747
IP address blocks: 60.198.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3245 (0xcad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7F2FD3FA0FC15FD2D8A178E0705278A92C69ABC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c6:02:bc:62:c6:03:c3:8c:a9:de:21:f5:6a:
04:0b:56:7b:5b:e8:3e:76:7f:40:36:1c:76:9a:d1:
90:f8:4e:50:52:d3:cb:66:8b:bb:23:73:8f:06:89:
a3:cf:9b:1b:a5:04:c2:26:33:a0:4c:20:95:bc:c7:
09:1f:a4:23:5f:0e:81:d0:92:c6:8e:5d:cb:45:4a:
b0:90:a8:7b:cc:12:99:09:38:2d:4b:68:c9:5a:b1:
fb:f6:e8:ee:34:2c:09:3e:e7:0c:64:06:9b:df:c5:
1b:fd:e6:d4:ce:2e:c5:d6:f2:0a:5f:d7:11:30:55:
71:e9:f6:e1:c2:04:3b:8b:6b:b9:95:11:a6:1a:f0:
9e:28:3b:7f:ba:77:35:d8:fd:c4:86:9f:89:10:d8:
36:23:11:8f:93:38:d7:ad:b2:b2:a6:3c:54:8b:17:
00:43:91:54:3f:c2:ba:3e:35:08:7b:23:ec:8f:fc:
a5:9d:92:12:69:d7:ce:e3:53:56:49:1f:af:d9:44:
09:9d:3e:ac:3f:7e:83:e2:47:01:c8:e9:96:4d:c3:
4b:59:20:30:b8:68:df:36:26:02:a5:06:24:df:46:
f1:12:01:73:ea:8a:cf:e4:46:7f:89:de:b2:95:f7:
b3:e9:31:b1:d1:d9:c1:07:68:80:a6:4c:e2:4b:93:
12:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:2F:D3:FA:0F:C1:5F:D2:D8:A1:78:E0:70:52:78:A9:2C:69:AB:C0
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/fy_T-g_BX9LYoXjgcFJ4qSxpq8A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.136.0/24
Signature Algorithm: sha256WithRSAEncryption
73:0d:c8:f3:46:f7:d0:79:fd:60:b9:f3:a4:ff:6b:d8:fd:22:
18:66:61:d7:23:76:b0:68:6a:b6:17:b5:9f:26:8c:7d:36:55:
ee:b7:e5:95:27:84:b2:ec:83:6c:37:1f:5a:f1:41:9b:5b:66:
3d:50:ca:72:81:e3:b8:05:8f:f7:13:33:12:3d:ce:16:55:a4:
11:82:c0:ec:d8:71:f1:a9:d3:8f:78:fe:a2:27:aa:d3:b0:86:
82:c3:e8:ff:4e:1f:ef:04:30:57:d7:cd:56:80:c3:e3:fb:88:
f1:a6:7c:5c:50:96:85:eb:fd:fc:5b:1a:ea:8f:a8:dd:e7:2d:
db:cc:d9:2f:54:c1:85:8d:e2:aa:9a:67:35:2b:5c:3f:0c:2e:
84:16:7b:7c:a6:ac:e2:36:74:8d:e5:db:36:81:ed:98:64:f8:
f9:2d:40:a5:76:39:4d:66:13:c9:19:de:2c:28:9a:0d:a8:2c:
7e:f0:0d:aa:98:14:f7:de:c4:a5:f5:f3:d0:2f:2a:f4:39:a3:
e8:ab:d8:c2:59:ed:c4:02:f7:2f:f9:6d:5a:75:c7:fc:f8:73:
3b:f4:12:1c:7b:9e:7d:96:3c:ee:7a:12:07:ca:b5:29:87:32:
6f:f1:da:6e:28:4a:f2:9b:52:dc:92:72:0f:44:f3:e9:11:f3:
2b:63:ce:8e
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjUwMDhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDdGMkZEM0ZBMEZDMTVG
RDJEOEExNzhFMDcwNTI3OEE5MkM2OUFCQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1xgK8YsYDw4yp3iH1agQLVntb6D52f0A2HHaa0ZD4TlBS08tm
i7sjc48GiaPPmxulBMImM6BMIJW8xwkfpCNfDoHQksaOXctFSrCQqHvMEpkJOC1L
aMlasfv26O40LAk+5wxkBpvfxRv95tTOLsXW8gpf1xEwVXHp9uHCBDuLa7mVEaYa
8J4oO3+6dzXY/cSGn4kQ2DYjEY+TONetsrKmPFSLFwBDkVQ/wro+NQh7I+yP/KWd
khJp187jU1ZJH6/ZRAmdPqw/foPiRwHI6ZZNw0tZIDC4aN82JgKlBiTfRvESAXPq
is/kRn+J3rKV97PpMbHR2cEHaICmTOJLkxK5AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUfy/T+g/BX9LYoXjgcFJ4qSxpq8AwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZnlfVC1nX0JYOUxZb1hq
Z2NGSjRxU3hwcThBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ADzGiDANBgkqhkiG9w0BAQsFAAOCAQEAcw3I80b30Hn9YLnzpP9r2P0iGGZh1yN2
sGhqthe1nyaMfTZV7rfllSeEsuyDbDcfWvFBm1tmPVDKcoHjuAWP9xMzEj3OFlWk
EYLA7Nhx8anTj3j+oieq07CGgsPo/04f7wQwV9fNVoDD4/uI8aZ8XFCWhev9/Fsa
6o+o3ect28zZL1TBhY3iqppnNStcPwwuhBZ7fKas4jZ0jeXbNoHtmGT4+S1ApXY5
TWYTyRneLCiaDagsfvANqpgU997EpfXz0C8q9Dmj6KvYwlntxAL3L/ltWnXH/Phz
O/QSHHuefZY87noSB8q1KYcyb/HabihK8ptS3JJyD0Tz6RHzK2POjg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org