Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/h13xtJp53lrsnXChW6G0FmfxkWc.roa
File: h13xtJp53lrsnXChW6G0FmfxkWc.roa (raw, json)
Hash identifier: aPoZEj8jUAUnlGrWzFvKnwRmF8z1rWpiM8TzU1vBphI=
Subject key identifier: 87:5D:F1:B4:9A:79:DE:5A:EC:9D:70:A1:5B:A1:B4:16:67:F1:91:67
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 07E3
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/h13xtJp53lrsnXChW6G0FmfxkWc.roa
Signing time: Tue 29 Sep 2020 09:57:30 +0000
ROA not before: Tue 29 Sep 2020 09:57:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 202.145.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2019 (0x7e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=875DF1B49A79DE5AEC9D70A15BA1B41667F19167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:15:00:7b:71:ea:8f:51:4c:24:27:5b:8b:55:
4f:fd:6c:cf:b9:9b:f3:91:89:e4:36:ea:4a:b0:00:
44:f7:d7:1e:72:e1:fc:8e:30:7e:b2:bc:60:bf:ac:
42:70:7c:41:a0:dc:42:ec:a8:9e:67:fe:33:35:e4:
fe:dd:4f:99:b1:da:ab:c1:28:06:57:d2:9d:89:0f:
f4:8a:2c:15:60:ab:3c:44:ae:21:11:36:b4:91:e7:
e5:66:c9:30:99:a2:55:2e:ab:7c:7b:c0:5c:90:74:
34:29:78:c2:01:95:6e:c5:6f:aa:4b:14:54:22:d7:
45:7e:c8:e2:53:da:91:c3:4b:f2:11:08:7f:83:6a:
f6:63:0d:45:75:3b:e2:0a:a4:e8:e7:71:c7:5a:e7:
61:83:c6:55:35:b8:f2:0f:2d:39:8d:1f:70:93:76:
57:a2:57:18:da:8f:d8:27:ca:38:14:e6:f6:27:90:
0c:90:69:0d:9f:c0:8e:7a:a6:10:c8:ec:c0:e0:6d:
8f:08:5f:b5:93:45:b0:9e:93:f8:f7:29:2c:a1:98:
c5:88:6a:bb:c1:5b:c8:14:09:ee:98:da:28:48:10:
1c:dc:66:2e:58:39:98:6e:94:5a:72:f2:a6:41:15:
6f:14:d8:63:06:05:24:81:67:9b:1c:d8:b4:e7:76:
86:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:5D:F1:B4:9A:79:DE:5A:EC:9D:70:A1:5B:A1:B4:16:67:F1:91:67
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/h13xtJp53lrsnXChW6G0FmfxkWc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.145.128.0/17
Signature Algorithm: sha256WithRSAEncryption
58:f9:8b:6f:29:db:fa:9f:4b:bb:9e:19:ae:27:44:52:0c:b5:
df:10:f6:db:a4:2a:35:9d:27:10:01:d6:db:bb:97:37:5f:61:
dd:d2:c6:af:4d:18:47:d8:65:33:79:98:74:02:96:d1:08:50:
55:d9:c5:dd:d4:c5:06:8f:55:19:cf:fc:a1:3c:15:69:9e:93:
10:11:0c:68:7f:ca:61:fb:28:b6:25:16:00:bd:70:86:26:bd:
f0:83:46:08:97:89:c9:99:13:5d:2f:5b:4a:d0:e8:14:fa:64:
25:0e:4d:f1:08:b3:f8:2d:62:80:6d:c2:d7:5f:67:a9:98:46:
c7:75:16:c4:fe:be:62:27:ae:d2:fd:12:ea:68:8a:69:8f:ef:
f6:96:a8:51:da:20:02:69:43:9a:de:5d:8f:81:12:09:e5:b3:
b1:22:19:3f:b1:b1:a3:14:9b:f3:f3:03:e9:61:fc:cb:97:09:
41:18:49:65:09:4d:ad:b6:20:3f:5f:85:41:7f:5b:bd:fd:95:
51:9b:7d:d8:6a:19:60:41:27:50:db:cc:94:1c:2f:74:5a:18:
cc:ef:d1:e2:2a:51:47:b5:67:45:f7:28:9f:d1:0b:64:12:69:
12:6b:58:6e:2f:c5:9f:5b:d1:b3:6b:da:34:af:56:e7:d2:03:
7d:64:72:32
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICB+MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDA5Mjkw
OTU3MzBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDg3NURGMUI0OUE3OURF
NUFFQzlENzBBMTVCQTFCNDE2NjdGMTkxNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRFQB7ceqPUUwkJ1uLVU/9bM+5m/ORieQ26kqwAET31x5y4fyO
MH6yvGC/rEJwfEGg3ELsqJ5n/jM15P7dT5mx2qvBKAZX0p2JD/SKLBVgqzxEriER
NrSR5+VmyTCZolUuq3x7wFyQdDQpeMIBlW7Fb6pLFFQi10V+yOJT2pHDS/IRCH+D
avZjDUV1O+IKpOjnccda52GDxlU1uPIPLTmNH3CTdleiVxjaj9gnyjgU5vYnkAyQ
aQ2fwI56phDI7MDgbY8IX7WTRbCek/j3KSyhmMWIarvBW8gUCe6Y2ihIEBzcZi5Y
OZhulFpy8qZBFW8U2GMGBSSBZ5sc2LTndob7AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUh13xtJp53lrsnXChW6G0FmfxkWcwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvaDEzeHRKcDUzbHJzblhD
aFc2RzBGbWZ4a1djLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
B8qRgDANBgkqhkiG9w0BAQsFAAOCAQEAWPmLbynb+p9Lu54ZridEUgy13xD226Qq
NZ0nEAHW27uXN19h3dLGr00YR9hlM3mYdAKW0QhQVdnF3dTFBo9VGc/8oTwVaZ6T
EBEMaH/KYfsotiUWAL1whia98INGCJeJyZkTXS9bStDoFPpkJQ5N8Qiz+C1igG3C
119nqZhGx3UWxP6+Yieu0v0S6miKaY/v9paoUdogAmlDmt5dj4ESCeWzsSIZP7Gx
oxSb8/MD6WH8y5cJQRhJZQlNrbYgP1+FQX9bvf2VUZt92GoZYEEnUNvMlBwvdFoY
zO/R4ipRR7VnRfcon9ELZBJpEmtYbi/Fn1vRs2vaNK9W59IDfWRyMg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org