Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uTLBRG4prT7TQTSOhwJ7Kb8jyPo.roa
File: uTLBRG4prT7TQTSOhwJ7Kb8jyPo.roa (raw, json)
Hash identifier: qLJGzzEijedFWI5bopZEjTWiNOepDtzPmsCUg2/b80M=
Subject key identifier: B9:32:C1:44:6E:29:AD:3E:D3:41:34:8E:87:02:7B:29:BF:23:C8:FA
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A66
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uTLBRG4prT7TQTSOhwJ7Kb8jyPo.roa
Signing time: Sun 07 Feb 2021 11:36:09 +0000
ROA not before: Sun 07 Feb 2021 11:36:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.198.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2662 (0xa66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B932C1446E29AD3ED341348E87027B29BF23C8FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c8:76:9f:4f:35:24:e5:9c:63:77:d5:0b:c5:
63:92:d0:33:5e:52:aa:e4:26:e8:74:89:b4:e7:33:
2d:c2:98:cb:bf:29:45:ca:31:ae:41:0a:ea:69:d8:
69:f7:b5:8a:1b:62:05:74:bb:48:29:e9:29:c2:73:
8e:17:68:05:6b:56:c1:9f:cc:62:c9:8a:75:41:df:
b8:cc:e6:5c:c9:2e:85:eb:ad:0e:0f:4c:7c:17:76:
b4:7d:04:79:91:0e:77:0a:8a:37:82:55:dd:a8:38:
c6:6d:73:01:c5:b1:ad:bd:57:ff:bf:80:ae:d3:4b:
a8:dc:50:12:26:2d:f1:b2:28:68:60:1f:24:0e:f2:
a4:a6:6b:3f:a0:38:3c:6a:59:32:cf:02:4d:b5:0c:
d1:8c:5f:98:32:bb:63:00:12:80:b8:6d:8c:ed:b9:
08:36:05:c5:3e:e1:19:74:51:da:e0:1b:f4:c7:d1:
2f:bb:a9:40:cf:5e:ea:82:8f:34:f9:bb:24:ae:81:
d3:ef:1b:27:4a:e5:72:f3:c7:7c:e4:1c:59:73:f0:
4c:11:63:bc:31:e2:76:ff:9a:ad:83:8f:e6:53:cd:
12:fe:31:0c:b5:b7:68:78:20:3a:02:b1:4c:11:d0:
11:88:28:de:cb:35:66:47:2e:dc:89:d1:e6:a2:7f:
25:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:32:C1:44:6E:29:AD:3E:D3:41:34:8E:87:02:7B:29:BF:23:C8:FA
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uTLBRG4prT7TQTSOhwJ7Kb8jyPo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6b:d6:88:3a:4a:8c:ef:eb:5e:67:b2:a3:73:e6:85:38:b5:50:
ef:4d:2b:f0:aa:b6:5c:40:d4:e5:2a:0a:aa:fe:d7:b5:b1:48:
a9:80:3f:d8:f1:19:7e:b8:50:9a:e4:c3:72:da:cf:f6:31:ca:
e4:95:84:a4:c4:c5:3f:c2:1c:df:30:cd:21:64:e7:4d:fb:f8:
40:aa:fc:30:6a:07:c4:45:17:6f:0d:49:4e:01:a4:15:be:6c:
42:91:dd:16:07:7f:7b:3c:5f:b4:9f:df:cf:19:c0:65:69:76:
03:56:e5:ba:cf:79:7b:57:b3:e1:ac:aa:d2:91:12:bd:0f:26:
19:34:bb:2a:d4:00:07:ff:86:78:db:8f:5a:a8:f2:3a:a6:d2:
e5:4b:aa:90:2d:c1:77:1d:bf:83:67:67:a6:aa:d2:69:0e:5f:
be:d0:5a:90:f4:54:fe:10:76:39:2d:ae:3b:76:35:1a:3d:9c:
21:80:66:07:e4:54:2b:ce:70:9f:52:8c:bb:bf:ea:cf:8c:5a:
35:11:9f:98:0d:48:64:d0:b1:a9:ff:28:86:60:bb:8b:99:48:
fb:ce:e9:a9:69:37:79:6d:98:f4:a0:ba:05:e4:c9:02:dc:86:
59:66:11:db:76:7b:3b:72:ee:c4:06:16:84:11:a0:81:10:00:
e2:3e:39:8c
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICCmYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MTM2MDlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEI5MzJDMTQ0NkUyOUFE
M0VEMzQxMzQ4RTg3MDI3QjI5QkYyM0M4RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMyHafTzUk5Zxjd9ULxWOS0DNeUqrkJuh0ibTnMy3CmMu/KUXK
Ma5BCupp2Gn3tYobYgV0u0gp6SnCc44XaAVrVsGfzGLJinVB37jM5lzJLoXrrQ4P
THwXdrR9BHmRDncKijeCVd2oOMZtcwHFsa29V/+/gK7TS6jcUBImLfGyKGhgHyQO
8qSmaz+gODxqWTLPAk21DNGMX5gyu2MAEoC4bYztuQg2BcU+4Rl0UdrgG/TH0S+7
qUDPXuqCjzT5uySugdPvGydK5XLzx3zkHFlz8EwRY7wx4nb/mq2Dj+ZTzRL+MQy1
t2h4IDoCsUwR0BGIKN7LNWZHLtyJ0eaifyVrAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUuTLBRG4prT7TQTSOhwJ7Kb8jyPowHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvdVRMQlJHNHByVDdUUVRT
T2h3SjdLYjhqeVBvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
ADzGMA0GCSqGSIb3DQEBCwUAA4IBAQBr1og6Sozv615nsqNz5oU4tVDvTSvwqrZc
QNTlKgqq/te1sUipgD/Y8Rl+uFCa5MNy2s/2McrklYSkxMU/whzfMM0hZOdN+/hA
qvwwagfERRdvDUlOAaQVvmxCkd0WB397PF+0n9/PGcBlaXYDVuW6z3l7V7PhrKrS
kRK9DyYZNLsq1AAH/4Z4249aqPI6ptLlS6qQLcF3Hb+DZ2emqtJpDl++0FqQ9FT+
EHY5La47djUaPZwhgGYH5FQrznCfUoy7v+rPjFo1EZ+YDUhk0LGp/yiGYLuLmUj7
zumpaTd5bZj0oLoF5MkC3IZZZhHbdns7cu7EBhaEEaCBEADiPjmM
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org