Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qm4YqnDpUyXlV6qnwNw2LI-vilg.roa
File: qm4YqnDpUyXlV6qnwNw2LI-vilg.roa (raw, json)
Hash identifier: bTcV+/iJ4fFiXgiokqOAE1ZThTiXMwWW2XQa6AQlM/g=
Subject key identifier: AA:6E:18:AA:70:E9:53:25:E5:57:AA:A7:C0:DC:36:2C:8F:AF:8A:58
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0833
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qm4YqnDpUyXlV6qnwNw2LI-vilg.roa
Signing time: Tue 29 Sep 2020 09:57:52 +0000
ROA not before: Tue 29 Sep 2020 09:57:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131628
IP address blocks: 175.97.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2099 (0x833)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AA6E18AA70E95325E557AAA7C0DC362C8FAF8A58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ab:71:b5:2e:dd:1e:2d:a1:b6:6d:14:64:9d:
d4:71:4b:be:67:a2:6e:7f:87:c5:31:27:0d:97:a0:
08:46:80:d3:80:f7:12:dd:ac:75:35:38:35:a6:47:
d9:6b:e7:a0:31:ae:ca:2a:b4:57:81:35:c8:70:f1:
3b:5f:7d:5f:c0:00:33:94:87:3a:ac:70:41:bd:01:
13:e4:c3:08:57:a9:71:82:72:f9:b6:fd:aa:13:fe:
6a:24:46:f7:dc:fa:61:f7:62:d8:9e:c7:3b:bd:60:
35:22:41:ef:de:45:73:3b:c5:78:c5:69:d0:be:5a:
e9:be:d2:9e:e1:02:ab:82:2b:e5:e8:e8:b6:93:7c:
f4:f1:c6:d3:d0:09:27:f9:dc:4d:07:c7:fb:95:03:
fc:06:ab:0c:1f:8a:f6:1f:a1:bf:56:d9:0a:1e:56:
59:74:a3:fe:cc:f2:16:32:8f:fa:74:9b:4a:57:76:
cd:94:e7:a2:32:0f:0f:5f:9a:f9:dc:a0:83:16:7f:
49:47:74:96:9a:eb:20:69:73:bd:53:91:73:b5:32:
eb:04:b8:2b:f6:78:77:86:37:32:07:2a:e2:db:47:
62:d0:70:33:0e:64:b4:7f:08:0c:3e:98:e2:1c:f1:
1e:d1:7d:37:88:a2:d4:46:b3:05:2d:50:c5:dc:ba:
35:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:6E:18:AA:70:E9:53:25:E5:57:AA:A7:C0:DC:36:2C:8F:AF:8A:58
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qm4YqnDpUyXlV6qnwNw2LI-vilg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.97.128.0/18
Signature Algorithm: sha256WithRSAEncryption
21:2e:88:75:85:f4:ba:ee:89:3e:cf:f5:7e:a9:f8:b3:0e:ed:
0d:9c:9d:68:e3:58:81:6c:9f:fd:cd:a6:4f:14:b9:2e:39:fe:
d1:65:ef:3d:f2:5d:63:20:14:df:00:b3:99:de:f0:04:fb:e1:
0a:94:a6:9d:8c:6a:47:2f:74:38:f0:6b:95:f8:6e:7b:84:12:
07:75:a4:52:b1:7b:f9:a9:ef:7c:32:95:b6:fa:27:89:29:3d:
36:96:5d:97:c2:e6:03:f6:47:50:90:c0:b2:8d:dd:41:b4:2e:
4d:5f:8e:3d:59:3f:36:26:f2:31:16:2f:79:80:20:81:4c:26:
1f:ee:15:d5:79:f6:df:5e:70:85:4f:97:ce:7d:44:39:04:14:
7f:9f:da:61:99:93:6f:7c:b6:ca:d3:17:0a:0c:52:71:0d:02:
77:21:97:ba:14:d2:13:c4:dc:02:ee:77:65:d8:05:93:19:49:
25:55:11:4b:81:ab:94:a7:8b:4e:9d:a1:db:9f:5b:db:b5:c7:
84:e9:76:c4:0c:23:9e:5b:e6:c4:37:85:11:2c:1e:e6:0a:cf:
5f:94:88:12:b0:3b:bd:e5:09:16:76:b6:ec:c2:4e:12:c3:a1:
35:f6:54:fc:d5:d3:59:0a:cb:9f:26:21:71:64:d5:de:4d:fb:
5e:fb:72:99
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCDMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDA5Mjkw
OTU3NTJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEFBNkUxOEFBNzBFOTUz
MjVFNTU3QUFBN0MwREMzNjJDOEZBRjhBNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3q3G1Lt0eLaG2bRRkndRxS75nom5/h8UxJw2XoAhGgNOA9xLd
rHU1ODWmR9lr56AxrsoqtFeBNchw8TtffV/AADOUhzqscEG9ARPkwwhXqXGCcvm2
/aoT/mokRvfc+mH3Ytiexzu9YDUiQe/eRXM7xXjFadC+Wum+0p7hAquCK+Xo6LaT
fPTxxtPQCSf53E0Hx/uVA/wGqwwfivYfob9W2QoeVll0o/7M8hYyj/p0m0pXds2U
56IyDw9fmvncoIMWf0lHdJaa6yBpc71TkXO1MusEuCv2eHeGNzIHKuLbR2LQcDMO
ZLR/CAw+mOIc8R7RfTeIotRGswUtUMXcujWdAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUqm4YqnDpUyXlV6qnwNw2LI+vilgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvcW00WXFuRHBVeVhsVjZx
bndOdzJMSS12aWxnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Bq9hgDANBgkqhkiG9w0BAQsFAAOCAQEAIS6IdYX0uu6JPs/1fqn4sw7tDZydaONY
gWyf/c2mTxS5Ljn+0WXvPfJdYyAU3wCzmd7wBPvhCpSmnYxqRy90OPBrlfhue4QS
B3WkUrF7+anvfDKVtvoniSk9NpZdl8LmA/ZHUJDAso3dQbQuTV+OPVk/NibyMRYv
eYAggUwmH+4V1Xn2315whU+Xzn1EOQQUf5/aYZmTb3y2ytMXCgxScQ0CdyGXuhTS
E8TcAu53ZdgFkxlJJVURS4GrlKeLTp2h259b27XHhOl2xAwjnlvmxDeFESwe5grP
X5SIErA7veUJFna27MJOEsOhNfZU/NXTWQrLnyYhcWTV3k37XvtymQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org