Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/M3if5YvebVttMhyBKbdH_wdcDLs.roa
File: M3if5YvebVttMhyBKbdH_wdcDLs.roa (raw, json)
Hash identifier: MbH5tRKCSlD6eytvDpr/OH3PRIIfvCa2hClT8aYuQpw=
Subject key identifier: 33:78:9F:E5:8B:DE:6D:5B:6D:32:1C:81:29:B7:47:FF:07:5C:0C:BB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0E5D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/M3if5YvebVttMhyBKbdH_wdcDLs.roa
Signing time: Fri 07 Apr 2023 08:06:31 +0000
ROA not before: Fri 07 Apr 2023 08:06:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 203.77.64.0/20 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3677 (0xe5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Apr 7 08:06:31 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=33789FE58BDE6D5B6D321C8129B747FF075C0CBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2c:a6:de:f6:2b:1a:a1:e7:df:5a:7e:87:16:
af:c8:d9:2a:5d:8a:62:58:93:dc:54:56:28:ad:49:
77:cb:64:e9:89:f2:78:88:ba:d7:5d:01:cc:95:75:
6f:4c:e2:1d:87:be:34:9e:b2:63:85:56:17:bd:dc:
3c:53:7b:33:2f:4a:69:8c:f5:c7:99:ad:57:c8:cc:
1f:e5:3b:3f:3c:fe:40:ad:3d:3b:b2:2e:e6:13:5b:
62:6c:3d:ea:db:02:1e:69:ac:a9:25:9d:fc:b2:58:
7c:f7:d2:74:d8:58:8a:a8:15:8a:c8:86:5b:76:c3:
48:37:32:1b:ca:01:f2:da:64:4e:c6:2f:61:0d:c9:
98:77:68:82:f0:86:01:f7:d3:bb:e5:9f:ab:ed:99:
bf:ed:1b:57:29:d8:62:2b:61:93:cb:b8:eb:85:50:
43:42:50:a8:1e:36:0e:56:91:4d:ab:7f:8b:10:c7:
47:4e:0c:19:7d:a3:c4:44:d1:97:ce:89:6d:e9:57:
b2:5a:17:f9:5c:ea:3f:6f:18:58:f7:be:f6:7d:ef:
02:4e:9a:e5:dd:dc:99:41:12:a0:d9:cb:d6:44:43:
eb:9e:36:3a:16:4e:60:aa:12:96:6b:04:52:ac:05:
c3:a1:8e:0c:35:55:ce:86:49:2b:46:3b:10:53:84:
42:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:78:9F:E5:8B:DE:6D:5B:6D:32:1C:81:29:B7:47:FF:07:5C:0C:BB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/M3if5YvebVttMhyBKbdH_wdcDLs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.64.0/20
Signature Algorithm: sha256WithRSAEncryption
2c:76:f1:92:73:8e:6c:34:03:85:69:a9:8b:3e:8a:02:3d:72:
bf:bf:d4:30:91:7e:04:f6:c7:eb:84:da:b0:26:93:2d:67:53:
f3:ff:14:68:bb:02:92:9d:94:39:5c:93:fc:be:f1:a9:b5:88:
58:c9:08:95:62:ef:d6:94:e5:cc:b2:ae:85:d4:3d:52:06:52:
da:a0:d6:dc:20:9b:68:dc:f0:70:c2:0d:e9:21:a1:a8:aa:59:
c6:a8:60:7d:c4:2c:c9:82:b5:e4:be:7b:9a:a1:f6:df:62:44:
1f:7f:05:b4:ab:f1:03:37:de:a3:e2:d4:e3:74:d7:28:94:a8:
83:60:8e:17:f4:fd:bd:25:d7:8a:5d:9a:0e:c0:f5:36:48:5e:
b3:f2:22:3a:e9:71:d7:aa:50:86:c7:ac:65:b1:e9:ac:f7:bf:
f5:20:dc:eb:14:da:1c:e9:87:13:61:ca:45:35:df:76:cb:09:
cc:ca:09:20:c2:a5:21:63:12:39:bb:9e:b8:3f:4a:32:34:d3:
57:cf:55:c6:cc:c5:c4:85:3d:31:f3:df:f4:50:df:0e:4e:c4:
05:69:77:d7:b7:d3:d0:9b:5b:e1:e7:c6:64:8a:00:1a:10:84:
6f:a3:59:47:e8:07:85:62:eb:49:39:84:bd:b7:e1:4b:9c:82:
76:65:70:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 22 16:28:55 2025 by rpki-client