Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nY1kMOFaMzhKicsvwEEwGO3Vfag.roa
File: nY1kMOFaMzhKicsvwEEwGO3Vfag.roa (raw, json)
Hash identifier: 8nKbBs0WlFO20Cpqb43iLsUkSwDn3pGXOl0Q7zaib0Y=
Subject key identifier: 9D:8D:64:30:E1:5A:33:38:4A:89:CB:2F:C0:41:30:18:ED:D5:7D:A8
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FDD
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nY1kMOFaMzhKicsvwEEwGO3Vfag.roa
Signing time: Fri 01 Sep 2023 09:37:23 +0000
ROA not before: Fri 01 Sep 2023 09:37:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 60.198.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4061 (0xfdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9D8D6430E15A33384A89CB2FC0413018EDD57DA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e8:d5:91:61:b9:fa:3f:e8:a1:30:72:d9:68:
24:70:11:89:7d:41:33:45:c2:ad:50:16:7d:d7:4a:
13:f6:e6:17:30:f6:95:7a:b2:28:4c:5a:28:80:96:
7d:26:cc:ce:cb:a5:03:6f:e4:30:ed:8f:d7:41:4f:
6d:67:63:c5:d9:aa:ff:f3:de:b7:8f:4b:be:a4:39:
13:bd:e0:a8:26:18:20:82:82:79:b5:f4:67:e1:52:
27:52:4f:0e:33:f4:bb:b1:2e:f1:cd:b8:b7:13:56:
b3:45:4b:72:10:6d:fc:43:f3:f0:69:cd:b3:50:fb:
56:a6:37:2e:47:a6:8b:21:0a:2f:62:c4:70:4f:a1:
83:c6:b9:cb:5e:05:cb:5d:b8:19:90:86:ed:72:b8:
c2:69:51:6c:eb:a5:bb:65:0e:2b:be:19:4d:e4:34:
c8:01:b1:16:1b:4b:6c:cc:b4:c5:34:89:a6:fc:99:
f7:65:56:ab:a7:80:93:2e:ad:cb:91:c4:c2:48:0e:
11:32:b1:ce:d7:21:e9:2b:81:a9:ed:61:43:e8:a5:
98:0f:bc:ae:bb:0a:06:75:3e:3b:aa:3d:d0:66:4f:
e7:d0:fe:46:42:f7:10:e7:8e:88:2c:71:44:1d:1e:
8b:43:5c:2e:51:ac:3b:63:cb:f6:89:1e:c7:8b:cc:
0a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8D:64:30:E1:5A:33:38:4A:89:CB:2F:C0:41:30:18:ED:D5:7D:A8
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nY1kMOFaMzhKicsvwEEwGO3Vfag.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8b:56:e3:23:c4:fa:28:63:6e:8c:dc:74:2b:87:92:cf:da:66:
8e:68:99:67:e2:c2:66:2a:90:17:a5:73:d4:56:5a:7c:45:be:
48:ad:c5:51:0f:2a:f4:27:a6:5d:42:1e:a0:4f:77:52:aa:f6:
92:3f:18:27:2d:ee:7a:e2:bd:c4:fa:75:f8:e5:f1:b9:da:da:
5f:fc:0e:7f:4e:20:91:e9:5c:63:74:da:af:3b:f7:e0:1f:11:
f4:33:64:c0:25:f3:5c:94:b0:52:bc:42:1d:0d:21:8e:60:b1:
69:a7:0f:46:b3:d4:2b:35:68:05:c4:89:a6:2d:ab:a2:f2:7f:
57:5c:3f:95:5a:c4:8d:4b:aa:56:e4:7b:90:b0:64:1d:27:30:
00:e3:32:7f:93:52:b1:db:9a:c3:07:bd:8a:fe:fb:3e:0b:b7:
95:b1:9c:d6:9b:4a:f6:b3:82:9c:49:ab:4b:6e:18:88:dc:6c:
b9:0d:5e:0c:f7:f9:68:f9:85:38:bc:76:37:1b:2a:09:9e:a7:
76:11:2b:97:ce:90:b4:3f:2e:2d:2f:32:80:b4:4a:92:41:45:
84:c2:b8:a2:83:bd:b1:2d:f4:5d:6a:f6:bd:31:e4:7c:62:21:
98:8b:47:10:56:ea:b6:4c:69:98:d1:02:5e:73:cc:ee:ad:fc:
3a:4d:35:af
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICD90wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw
OTM3MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlEOEQ2NDMwRTE1QTMz
Mzg0QTg5Q0IyRkMwNDEzMDE4RURENTdEQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDL6NWRYbn6P+ihMHLZaCRwEYl9QTNFwq1QFn3XShP25hcw9pV6
sihMWiiAln0mzM7LpQNv5DDtj9dBT21nY8XZqv/z3rePS76kORO94KgmGCCCgnm1
9GfhUidSTw4z9LuxLvHNuLcTVrNFS3IQbfxD8/BpzbNQ+1amNy5HposhCi9ixHBP
oYPGucteBctduBmQhu1yuMJpUWzrpbtlDiu+GU3kNMgBsRYbS2zMtMU0iab8mfdl
VqungJMurcuRxMJIDhEysc7XIekrgantYUPopZgPvK67CgZ1PjuqPdBmT+fQ/kZC
9xDnjogscUQdHotDXC5RrDtjy/aJHseLzArdAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUnY1kMOFaMzhKicsvwEEwGO3VfagwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvblkxa01PRmFNemhLaWNz
dndFRXdHTzNWZmFnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
ADzGMA0GCSqGSIb3DQEBCwUAA4IBAQCLVuMjxPooY26M3HQrh5LP2maOaJln4sJm
KpAXpXPUVlp8Rb5IrcVRDyr0J6ZdQh6gT3dSqvaSPxgnLe564r3E+nX45fG52tpf
/A5/TiCR6VxjdNqvO/fgHxH0M2TAJfNclLBSvEIdDSGOYLFppw9Gs9QrNWgFxImm
Laui8n9XXD+VWsSNS6pW5HuQsGQdJzAA4zJ/k1Kx25rDB72K/vs+C7eVsZzWm0r2
s4KcSatLbhiI3Gy5DV4M9/lo+YU4vHY3GyoJnqd2ESuXzpC0Py4tLzKAtEqSQUWE
wriig72xLfRdava9MeR8YiGYi0cQVuq2TGmY0QJec8zurfw6TTWv
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:21 2025 by rpki-client