Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-ZCXZ4XSBNLQ3vbkD2kICfaTxOE.roa
File: -ZCXZ4XSBNLQ3vbkD2kICfaTxOE.roa (raw, json)
Hash identifier: BdOG9mhF/+YqD5Wb0nt9D0Rg/Qpw7rEhn4rNGe60juU=
Subject key identifier: F9:90:97:67:85:D2:04:D2:D0:DE:F6:E4:0F:69:08:09:F6:93:C4:E1
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-ZCXZ4XSBNLQ3vbkD2kICfaTxOE.roa
Signing time: Thu 15 Sep 2022 02:47:31 +0000
ROA not before: Thu 15 Sep 2022 02:47:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 219.86.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F990976785D204D2D0DEF6E40F690809F693C4E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a2:b7:4a:56:19:52:e8:37:9d:df:1c:41:56:
d9:73:3b:e8:41:e3:d1:5c:d3:cf:6f:51:dc:42:c6:
bc:08:89:9d:ad:d9:96:0d:fe:cb:d5:d9:8a:22:96:
b5:26:a7:ae:e9:cf:cb:46:37:20:9f:5a:aa:65:1c:
e6:01:52:73:8b:19:37:23:08:ce:6b:e9:d8:d1:74:
b6:69:3a:ee:f5:6a:29:1f:9f:b8:72:7b:05:8d:9f:
42:89:f2:31:19:6b:89:82:73:23:57:47:79:a7:b3:
45:69:f7:cf:fe:d1:04:21:f7:8b:e6:34:cb:67:38:
6d:1f:d6:2b:a9:53:fc:00:af:2e:4e:bf:17:f0:79:
a6:0f:4a:2f:a1:e8:24:80:87:94:a4:1e:68:27:d6:
78:f1:86:14:a4:a9:16:be:92:7f:fa:af:2e:9c:6d:
84:17:d8:4f:86:b4:98:c1:78:06:7f:3b:78:69:10:
61:9f:a5:2b:94:61:a0:e5:12:0d:d4:01:70:fd:8c:
33:f8:86:0d:1f:c5:94:5a:76:7d:59:5a:3a:29:27:
fe:b9:8a:22:fb:15:e9:f1:7c:f0:36:6d:c0:ab:b4:
a7:62:db:9f:23:83:a0:60:2a:0b:17:c3:f8:59:8d:
e5:64:d7:46:70:e7:e6:2b:fa:42:97:2f:47:41:4a:
77:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:90:97:67:85:D2:04:D2:D0:DE:F6:E4:0F:69:08:09:F6:93:C4:E1
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-ZCXZ4XSBNLQ3vbkD2kICfaTxOE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.86.92.0/24
Signature Algorithm: sha256WithRSAEncryption
37:29:cf:ef:09:2d:a5:d2:fc:f0:35:d8:4f:81:a3:2b:2f:e0:
71:52:b5:b4:7d:ae:a0:6d:34:cd:9b:a7:bc:3e:3f:11:cd:42:
4f:06:43:fb:a5:f6:c1:df:89:47:c1:2f:ec:14:bc:77:1b:b7:
d1:62:47:08:98:9d:98:d2:fe:7d:1a:cd:f1:79:8a:8a:46:46:
e9:35:fc:37:1e:4e:34:ad:0a:94:8a:06:07:39:71:af:ff:91:
59:a9:5c:c2:48:84:dd:e2:e4:93:c9:e5:9c:f3:44:a0:49:93:
e0:76:3c:c4:f7:b8:12:be:4a:e4:2d:4b:55:ec:99:bd:73:10:
dc:fd:4d:1b:70:10:7f:04:de:3c:d9:b9:fa:eb:cb:89:1a:dd:
68:a8:b1:ca:71:f4:4c:6a:c5:27:87:db:4f:1e:16:35:80:01:
78:68:b7:c1:e5:09:f0:c8:cd:b6:7d:40:dc:19:dd:c1:a7:7d:
9d:2c:ce:ed:0d:c7:f9:58:35:ac:97:c9:b2:b2:6c:21:8e:18:
00:fb:39:a0:30:22:9a:52:8a:d2:91:3f:9d:b1:3c:e1:4e:2c:
23:4c:cb:a4:7a:c3:4d:85:61:0c:95:15:1d:2d:99:bc:97:fc:
a7:44:b3:6c:12:b1:91:17:f4:45:aa:8c:10:32:88:23:f6:23:
d4:c0:ba:a6
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ3MzFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEY5OTA5NzY3ODVEMjA0
RDJEMERFRjZFNDBGNjkwODA5RjY5M0M0RTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2ordKVhlS6Ded3xxBVtlzO+hB49Fc089vUdxCxrwIiZ2t2ZYN
/svV2YoilrUmp67pz8tGNyCfWqplHOYBUnOLGTcjCM5r6djRdLZpOu71aikfn7hy
ewWNn0KJ8jEZa4mCcyNXR3mns0Vp98/+0QQh94vmNMtnOG0f1iupU/wAry5Ovxfw
eaYPSi+h6CSAh5SkHmgn1njxhhSkqRa+kn/6ry6cbYQX2E+GtJjBeAZ/O3hpEGGf
pSuUYaDlEg3UAXD9jDP4hg0fxZRadn1ZWjopJ/65iiL7FenxfPA2bcCrtKdi258j
g6BgKgsXw/hZjeVk10Zw5+Yr+kKXL0dBSncNAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU+ZCXZ4XSBNLQ3vbkD2kICfaTxOEwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvLVpDWFo0WFNCTkxRM3Zi
a0Qya0lDZmFUeE9FLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ANtWXDANBgkqhkiG9w0BAQsFAAOCAQEANynP7wktpdL88DXYT4GjKy/gcVK1tH2u
oG00zZunvD4/Ec1CTwZD+6X2wd+JR8Ev7BS8dxu30WJHCJidmNL+fRrN8XmKikZG
6TX8Nx5ONK0KlIoGBzlxr/+RWalcwkiE3eLkk8nlnPNEoEmT4HY8xPe4Er5K5C1L
VeyZvXMQ3P1NG3AQfwTePNm5+uvLiRrdaKixynH0TGrFJ4fbTx4WNYABeGi3weUJ
8MjNtn1A3Bndwad9nSzO7Q3H+Vg1rJfJsrJsIY4YAPs5oDAimlKK0pE/nbE84U4s
I0zLpHrDTYVhDJUVHS2ZvJf8p0SzbBKxkRf0RaqMEDKII/Yj1MC6pg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org