Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3J3Bx6iiYbHMx6749KwlM82cg4w.roa
File: 3J3Bx6iiYbHMx6749KwlM82cg4w.roa (raw, json)
Hash identifier: IYYcERAGKCgy2QeedK52kql/G3sRgguA9MgemaUIVI4=
Subject key identifier: DC:9D:C1:C7:A8:A2:61:B1:CC:C7:AE:F8:F4:AC:25:33:CD:9C:83:8C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C9B
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3J3Bx6iiYbHMx6749KwlM82cg4w.roa
Signing time: Wed 29 Sep 2021 02:50:03 +0000
ROA not before: Wed 29 Sep 2021 02:50:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131634
IP address blocks: 124.108.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3227 (0xc9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DC9DC1C7A8A261B1CCC7AEF8F4AC2533CD9C838C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d8:95:89:5f:27:c8:70:93:67:35:c1:ce:d0:
97:aa:50:e5:b4:08:19:2d:2f:a9:61:d6:b4:16:59:
af:26:98:0c:2f:ba:0b:f8:b4:48:77:f9:a0:f7:b0:
79:34:37:87:73:ac:d8:2d:ad:45:a1:4c:10:d5:53:
6d:51:56:ea:21:16:d0:1d:48:84:7c:fc:46:9d:6a:
5d:3b:d8:bf:b4:fc:3c:9b:7d:31:ec:85:0c:46:5f:
b1:8c:ac:58:22:a8:14:24:57:05:f4:fd:cf:a9:bd:
8f:ee:1f:30:8b:91:78:54:eb:37:db:a2:89:9c:4a:
eb:24:54:2e:c3:e9:d0:6e:ed:a9:05:0b:79:be:cc:
48:1d:7e:18:1e:84:e2:6a:52:9d:c6:e7:be:62:ad:
0b:ea:9b:df:c8:c3:80:e4:aa:f9:96:e7:53:9b:3a:
f8:d2:17:35:a7:11:60:d6:f5:00:06:d0:f2:78:93:
eb:74:d3:11:2d:9b:0f:84:18:12:90:c6:4a:77:1b:
5f:ae:2b:08:d4:3d:59:dc:ae:01:23:ad:97:d4:1f:
ea:0a:5d:4e:31:46:b5:ce:83:7c:97:27:e6:d0:e0:
d1:ba:10:b5:e1:1d:10:6b:cb:d9:29:e6:e1:94:e9:
84:48:9f:79:c6:4b:22:ac:ff:27:32:4c:ba:83:80:
aa:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:9D:C1:C7:A8:A2:61:B1:CC:C7:AE:F8:F4:AC:25:33:CD:9C:83:8C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3J3Bx6iiYbHMx6749KwlM82cg4w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.160.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:70:c5:e2:55:62:8a:f1:71:99:15:d5:fa:8c:75:f7:36:aa:
37:2d:29:72:71:58:4d:90:a8:70:28:77:08:24:71:32:d7:1d:
14:46:2e:fc:58:4d:eb:e9:c4:67:5f:77:fa:5d:0c:93:5b:c4:
54:6d:a8:ea:90:4d:a2:ed:fc:e5:b4:11:11:a6:bb:e6:2c:99:
30:85:e6:60:15:e0:56:28:96:19:61:2f:5b:50:de:6d:24:91:
44:ad:57:60:dd:90:cd:04:f3:69:bf:c1:0d:e4:35:5d:ec:ee:
43:a1:ae:c0:2b:9e:61:79:d0:33:8e:6a:59:b0:3a:29:03:38:
25:b2:ae:ab:54:04:48:7b:35:d4:3c:05:8c:31:6a:08:0d:50:
2e:3c:dc:6a:fa:89:37:2d:fb:cd:89:5f:07:30:94:5b:9c:1d:
5c:3e:1c:1e:ef:c9:37:b3:a3:78:58:19:21:a3:4c:1d:c4:18:
eb:00:7d:2b:cb:2e:d2:d7:eb:6d:99:2f:e2:8a:6d:d8:bd:af:
59:e0:65:cc:e5:45:d1:9e:77:3d:bb:f2:44:ed:84:ad:56:d4:
1d:af:6c:18:78:fe:84:c5:4c:07:6a:cd:33:a7:68:34:99:b6:
e8:e1:6e:20:95:f9:42:46:16:69:8d:95:b9:b0:f8:aa:7a:35:
1d:7f:10:10
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDJswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjUwMDNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERDOURDMUM3QThBMjYx
QjFDQ0M3QUVGOEY0QUMyNTMzQ0Q5QzgzOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCk2JWJXyfIcJNnNcHO0JeqUOW0CBktL6lh1rQWWa8mmAwvugv4
tEh3+aD3sHk0N4dzrNgtrUWhTBDVU21RVuohFtAdSIR8/Eadal072L+0/DybfTHs
hQxGX7GMrFgiqBQkVwX0/c+pvY/uHzCLkXhU6zfboomcSuskVC7D6dBu7akFC3m+
zEgdfhgehOJqUp3G575irQvqm9/Iw4DkqvmW51ObOvjSFzWnEWDW9QAG0PJ4k+t0
0xEtmw+EGBKQxkp3G1+uKwjUPVncrgEjrZfUH+oKXU4xRrXOg3yXJ+bQ4NG6ELXh
HRBry9kp5uGU6YRIn3nGSyKs/ycyTLqDgKo/AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU3J3Bx6iiYbHMx6749KwlM82cg4wwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvM0ozQng2aWlZYkhNeDY3
NDlLd2xNODJjZzR3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AHxsoDANBgkqhkiG9w0BAQsFAAOCAQEAL3DF4lViivFxmRXV+ox19zaqNy0pcnFY
TZCocCh3CCRxMtcdFEYu/FhN6+nEZ193+l0Mk1vEVG2o6pBNou385bQREaa75iyZ
MIXmYBXgViiWGWEvW1DebSSRRK1XYN2QzQTzab/BDeQ1XezuQ6GuwCueYXnQM45q
WbA6KQM4JbKuq1QESHs11DwFjDFqCA1QLjzcavqJNy37zYlfBzCUW5wdXD4cHu/J
N7OjeFgZIaNMHcQY6wB9K8su0tfrbZkv4opt2L2vWeBlzOVF0Z53PbvyRO2ErVbU
Ha9sGHj+hMVMB2rNM6doNJm26OFuIJX5QkYWaY2VubD4qno1HX8QEA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org