Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ldTdZatQ5hUI22Mh6leCVkqixoc.roa
File: ldTdZatQ5hUI22Mh6leCVkqixoc.roa (raw, json)
Hash identifier: jHPN2wMvKMC4tGauHld3ZIBKnCbdpL14bbNIsG24qBU=
Subject key identifier: 95:D4:DD:65:AB:50:E6:15:08:DB:63:21:EA:57:82:56:4A:A2:C6:87
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AA2
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ldTdZatQ5hUI22Mh6leCVkqixoc.roa
Signing time: Sun 07 Feb 2021 11:36:49 +0000
ROA not before: Sun 07 Feb 2021 11:36:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.192.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2722 (0xaa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=95D4DD65AB50E61508DB6321EA5782564AA2C687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:46:63:18:88:6c:f9:69:57:37:64:a0:bc:33:
66:29:b0:0c:87:4a:d1:7d:80:ca:da:95:e8:8a:bf:
2d:8c:4c:0a:f4:0a:b7:85:6c:77:4e:3a:3a:1e:12:
e0:b1:50:db:ef:e8:de:02:fd:c0:32:60:09:f9:9e:
51:ac:99:d3:0c:4a:d5:20:ba:18:96:dd:be:0a:37:
84:ea:41:d2:3a:83:a2:50:62:91:8b:84:a4:69:d2:
87:bf:c6:21:60:5d:7d:d4:5e:c9:93:b0:38:9f:88:
b3:25:0c:5b:e1:16:57:6d:fb:e0:da:33:40:24:85:
ce:8f:2c:42:db:4b:55:e6:5b:9c:a1:63:ed:12:10:
04:1f:9f:6d:99:ce:72:8d:8d:0c:f6:45:d9:37:ef:
9c:f4:e7:b1:3b:ae:f1:07:27:32:cc:31:51:10:91:
d4:4e:dc:91:3f:e8:c9:8a:ef:7a:52:75:6a:c7:74:
20:d5:5a:ff:e4:49:3b:21:8d:47:81:6f:fd:6d:52:
d3:df:98:f3:be:02:b7:42:ce:45:3f:cb:73:9c:9f:
80:d0:3a:b2:01:52:af:31:ec:6e:82:64:dc:fb:14:
a3:a9:e1:f1:4a:48:03:5b:a1:0b:36:fe:ee:87:09:
32:f4:77:5e:20:58:c1:5e:77:19:1f:3d:22:11:94:
1b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D4:DD:65:AB:50:E6:15:08:DB:63:21:EA:57:82:56:4A:A2:C6:87
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ldTdZatQ5hUI22Mh6leCVkqixoc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.192.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2c:dd:94:15:d2:af:e9:fe:47:61:1a:54:e0:34:13:da:e1:45:
d3:ba:99:e4:9e:90:60:c5:7a:41:03:97:9e:ad:70:ed:d6:33:
e4:8f:9a:b9:6c:78:fe:12:5c:2d:88:0e:0f:14:27:3d:fd:7a:
b5:dc:45:d6:ce:11:c8:b8:6e:53:00:31:38:35:d6:a7:fb:f6:
91:7c:01:f9:8e:14:d5:57:6c:df:6a:c4:e0:b8:00:7e:55:b9:
c7:ff:c3:61:a1:07:43:07:92:f9:d2:ff:7a:d3:e7:4a:3d:28:
79:e7:cb:ac:5b:8d:ad:31:41:7f:08:17:a5:c2:9d:63:dd:89:
01:d2:d4:97:54:8c:57:a6:26:38:b2:aa:86:1e:d7:72:f8:75:
a7:03:35:ff:50:c6:1a:e6:5a:fc:ce:a7:71:15:5d:f8:d1:b5:
52:61:f9:f8:4e:4e:e9:c3:66:5c:26:e4:29:ce:8a:79:3b:94:
eb:21:c0:e4:a0:fc:02:bf:bd:04:ea:79:69:37:99:64:28:3e:
d5:1d:36:9a:8d:30:df:5e:77:74:22:f6:5c:46:f9:42:60:c7:
7d:92:9e:16:88:68:a3:0e:b9:00:4d:6f:13:37:dd:45:17:88:
59:10:71:41:20:f7:34:02:ff:37:d2:6f:6d:cf:08:b7:1d:b5:
ec:28:67:94
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCqIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MTM2NDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk1RDRERDY1QUI1MEU2
MTUwOERCNjMyMUVBNTc4MjU2NEFBMkM2ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQRmMYiGz5aVc3ZKC8M2YpsAyHStF9gMraleiKvy2MTAr0CreF
bHdOOjoeEuCxUNvv6N4C/cAyYAn5nlGsmdMMStUguhiW3b4KN4TqQdI6g6JQYpGL
hKRp0oe/xiFgXX3UXsmTsDifiLMlDFvhFldt++DaM0Akhc6PLELbS1XmW5yhY+0S
EAQfn22ZznKNjQz2Rdk375z057E7rvEHJzLMMVEQkdRO3JE/6MmK73pSdWrHdCDV
Wv/kSTshjUeBb/1tUtPfmPO+ArdCzkU/y3Ocn4DQOrIBUq8x7G6CZNz7FKOp4fFK
SANboQs2/u6HCTL0d14gWMFedxkfPSIRlBubAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUldTdZatQ5hUI22Mh6leCVkqixocwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbGRUZFphdFE1aFVJMjJN
aDZsZUNWa3FpeG9jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
B9LAgDANBgkqhkiG9w0BAQsFAAOCAQEALN2UFdKv6f5HYRpU4DQT2uFF07qZ5J6Q
YMV6QQOXnq1w7dYz5I+auWx4/hJcLYgODxQnPf16tdxF1s4RyLhuUwAxODXWp/v2
kXwB+Y4U1Vds32rE4LgAflW5x//DYaEHQweS+dL/etPnSj0oeefLrFuNrTFBfwgX
pcKdY92JAdLUl1SMV6YmOLKqhh7Xcvh1pwM1/1DGGuZa/M6ncRVd+NG1UmH5+E5O
6cNmXCbkKc6KeTuU6yHA5KD8Ar+9BOp5aTeZZCg+1R02mo0w3153dCL2XEb5QmDH
fZKeFohoow65AE1vEzfdRReIWRBxQSD3NAL/N9Jvbc8Itx217ChnlA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org