Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/r9zhMnN5PqSO1-W-1E9eIGQcTpg.roa
File: r9zhMnN5PqSO1-W-1E9eIGQcTpg.roa (raw, json)
Hash identifier: rKC/yvsIz3i8o/3Ji6Ni7QPP1Nf0a99UgbJ/TmkUbOE=
Subject key identifier: AF:DC:E1:32:73:79:3E:A4:8E:D7:E5:BE:D4:4F:5E:20:64:1C:4E:98
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/r9zhMnN5PqSO1-W-1E9eIGQcTpg.roa
Signing time: Thu 15 Sep 2022 02:47:14 +0000
ROA not before: Thu 15 Sep 2022 02:47:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17213
IP address blocks: 60.198.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AFDCE13273793EA48ED7E5BED44F5E20641C4E98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:32:8e:4b:9b:6a:23:a0:63:7d:c1:7b:ad:af:
1d:4f:a6:45:32:24:48:c0:6d:ad:9d:57:11:71:6d:
62:d6:01:ff:fb:ee:92:17:60:1f:cf:7e:fa:92:f6:
a6:4f:6e:b4:cb:a4:ff:44:0a:9c:24:94:d4:01:de:
28:61:85:04:ed:37:b0:8a:15:8f:e3:5b:0a:42:91:
be:55:26:8d:cc:a5:c1:ba:a3:4e:29:56:b8:f6:d5:
46:81:97:46:fe:ef:2e:4e:87:38:03:0e:c4:ea:d2:
0a:40:4b:ba:d4:f6:9d:fa:34:46:8c:38:ec:81:a7:
98:4e:73:f8:d1:c2:d2:97:c5:ed:8c:d9:90:d9:9f:
1e:d8:c5:82:3c:af:d7:ff:92:3c:24:d1:65:a1:ba:
3f:37:d2:e4:95:38:73:04:50:3f:da:f6:09:b8:01:
b7:89:ba:24:33:40:fa:da:8c:20:64:df:9a:58:7d:
07:c1:c6:23:1d:f3:dc:13:cd:48:54:53:53:b4:19:
52:eb:a0:6b:54:9e:9e:cd:12:59:be:59:78:f1:15:
34:25:a8:de:af:e5:8f:77:d2:ef:ce:88:a3:12:d0:
d5:85:eb:d0:70:84:48:e7:17:42:ba:1e:df:de:fe:
cd:ae:1a:60:5a:8a:b9:33:ef:e5:f8:aa:df:79:4a:
c1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:DC:E1:32:73:79:3E:A4:8E:D7:E5:BE:D4:4F:5E:20:64:1C:4E:98
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/r9zhMnN5PqSO1-W-1E9eIGQcTpg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.153.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:5b:11:b0:c1:3f:d1:50:83:c4:0c:c3:74:94:d2:70:a2:7b:
1c:32:ca:87:0e:99:4e:d5:06:5d:21:ac:ad:85:63:8c:bd:09:
ab:c8:99:a4:7c:da:7c:42:6c:57:96:e8:d3:e2:f2:24:6c:ed:
44:f5:eb:67:bf:e8:5f:50:81:91:93:05:6d:cb:1f:9b:1c:4d:
c0:a8:ab:5b:37:ee:e0:5c:fb:ec:73:74:40:1b:65:61:ea:99:
65:03:85:47:b7:37:9e:00:f9:d6:15:96:a0:c9:2e:ce:10:39:
78:bd:12:ff:b8:14:2a:06:43:d9:1e:dc:11:89:5b:e8:2a:f5:
d0:91:f1:a7:67:b4:00:8e:3f:ab:7e:e7:f9:82:a0:ef:cd:cf:
f2:43:2d:f6:40:d0:50:17:bf:6d:42:8e:9b:4d:2b:d5:fc:f9:
4e:be:a3:3c:13:fb:31:22:aa:5b:e4:29:1d:85:a5:85:f9:42:
c0:d0:2a:f1:a7:e3:b0:84:a9:98:2f:cd:a0:7e:6e:4c:77:6c:
d2:60:a0:4e:5d:2b:4c:26:df:8c:34:15:ad:86:38:d7:ec:ef:
24:c3:2c:60:55:94:10:71:cd:dd:5b:92:8a:83:87:86:8d:90:
64:81:7c:d0:29:18:a2:6e:69:b2:f3:36:ad:b5:2e:c7:37:51:
0d:23:87:a0
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ3MTRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEFGRENFMTMyNzM3OTNF
QTQ4RUQ3RTVCRUQ0NEY1RTIwNjQxQzRFOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUMo5Lm2ojoGN9wXutrx1PpkUyJEjAba2dVxFxbWLWAf/77pIX
YB/PfvqS9qZPbrTLpP9ECpwklNQB3ihhhQTtN7CKFY/jWwpCkb5VJo3MpcG6o04p
Vrj21UaBl0b+7y5OhzgDDsTq0gpAS7rU9p36NEaMOOyBp5hOc/jRwtKXxe2M2ZDZ
nx7YxYI8r9f/kjwk0WWhuj830uSVOHMEUD/a9gm4AbeJuiQzQPrajCBk35pYfQfB
xiMd89wTzUhUU1O0GVLroGtUnp7NElm+WXjxFTQlqN6v5Y930u/OiKMS0NWF69Bw
hEjnF0K6Ht/e/s2uGmBairkz7+X4qt95SsErAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUr9zhMnN5PqSO1+W+1E9eIGQcTpgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvcjl6aE1uTjVQcVNPMS1X
LTFFOWVJR1FjVHBnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ADzGmTANBgkqhkiG9w0BAQsFAAOCAQEATlsRsME/0VCDxAzDdJTScKJ7HDLKhw6Z
TtUGXSGsrYVjjL0Jq8iZpHzafEJsV5bo0+LyJGztRPXrZ7/oX1CBkZMFbcsfmxxN
wKirWzfu4Fz77HN0QBtlYeqZZQOFR7c3ngD51hWWoMkuzhA5eL0S/7gUKgZD2R7c
EYlb6Cr10JHxp2e0AI4/q37n+YKg783P8kMt9kDQUBe/bUKOm00r1fz5Tr6jPBP7
MSKqW+QpHYWlhflCwNAq8afjsISpmC/NoH5uTHds0mCgTl0rTCbfjDQVrYY41+zv
JMMsYFWUEHHN3VuSioOHho2QZIF80CkYom5psvM2rbUuxzdRDSOHoA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org