Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BCTxVMqELS46TI0FKms5SYECi48.roa
File: BCTxVMqELS46TI0FKms5SYECi48.roa (raw, json)
Hash identifier: Mindg5I97Z0SdtSuiTQtfHtsxHUYdfajpp5BcV/Eb4Q=
Subject key identifier: 04:24:F1:54:CA:84:2D:2E:3A:4C:8D:05:2A:6B:39:49:81:02:8B:8F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A74
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BCTxVMqELS46TI0FKms5SYECi48.roa
Signing time: Sun 07 Feb 2021 11:36:18 +0000
ROA not before: Sun 07 Feb 2021 11:36:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 124.12.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2676 (0xa74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0424F154CA842D2E3A4C8D052A6B394981028B8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e3:22:9d:cf:8d:da:58:23:cd:4c:a2:2f:da:
44:8d:6d:c5:06:b4:d0:47:ee:07:3a:2c:eb:86:37:
8c:b1:15:b7:ea:c1:4e:33:e4:29:23:6e:75:5e:12:
ec:1d:53:fb:a1:18:b8:e2:44:80:4f:b1:10:74:f1:
a5:8b:bf:28:e1:09:0f:ac:cc:02:52:44:dc:83:07:
8f:49:a8:7d:2a:9c:82:67:c9:3c:59:50:ea:84:e2:
d3:d2:a3:41:cc:15:c0:86:7b:0b:f6:d8:0c:98:66:
48:98:d4:d6:7e:2d:60:f6:fa:6b:68:fe:ba:b0:2b:
24:06:2b:db:8a:ce:d0:e9:a6:1d:5c:3e:62:20:2d:
45:9b:84:e2:20:21:a5:5d:0f:7a:7d:e2:29:96:db:
af:53:77:b6:2c:36:5d:6a:1c:ba:29:84:ca:51:1e:
9e:04:4a:44:dd:c2:86:44:24:fc:43:85:9c:92:29:
78:fa:00:07:76:63:dd:21:7c:bd:f0:ab:3f:8f:5d:
82:b2:8a:d0:9b:f9:5c:59:29:58:b2:da:94:b0:55:
b0:28:b2:e4:88:6f:7b:fe:aa:6a:3c:ef:d4:c4:b2:
b5:32:b6:9b:a9:25:40:b1:a0:09:3c:f2:09:68:e4:
ba:03:91:98:fa:c8:61:65:3e:60:4d:a0:d5:0a:b4:
a4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:24:F1:54:CA:84:2D:2E:3A:4C:8D:05:2A:6B:39:49:81:02:8B:8F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BCTxVMqELS46TI0FKms5SYECi48.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.12.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3e:12:8f:27:d8:33:9d:22:bc:7d:c3:d0:95:b8:65:ca:2c:55:
5a:05:e3:2f:f2:3d:5c:8b:4b:15:9c:6b:69:fb:1f:c9:50:90:
8d:96:4d:5e:33:e2:4c:eb:6e:3a:05:52:61:8e:04:44:50:62:
ff:7a:f6:07:75:a2:59:9e:72:18:ef:22:c7:7c:1b:87:56:52:
12:df:5b:c4:66:0c:bd:a3:e1:2c:48:7f:2f:87:84:41:02:c1:
cc:a3:73:b1:f9:e6:8b:db:36:34:e8:c8:d3:da:d6:db:c9:e2:
fb:87:29:cd:72:26:35:30:d0:51:35:62:c1:cc:fa:f7:ca:f1:
f1:1d:d5:d8:53:a8:5b:aa:d9:58:93:26:a9:a4:85:a5:05:bd:
cc:97:8b:a6:6b:89:bc:0d:e4:78:4e:ed:5b:dc:65:cb:4d:13:
10:d1:5a:7e:16:d1:7f:32:bf:37:2e:cf:9e:80:69:77:cb:80:
a0:18:b0:0e:8c:27:42:20:2a:4f:a0:83:5e:a4:95:15:b1:89:
36:74:bc:ae:e3:74:f6:45:82:81:1c:8c:6f:94:c8:66:69:5e:
fb:fb:e1:28:ad:33:40:5c:44:f1:62:5b:ba:f5:45:66:a5:c4:
d7:f6:e8:59:fd:b7:57:c0:2c:9a:89:e2:d0:1d:69:f1:92:ad:
79:2a:cf:61
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICCnQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MTM2MThaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA0MjRGMTU0Q0E4NDJE
MkUzQTRDOEQwNTJBNkIzOTQ5ODEwMjhCOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDG4yKdz43aWCPNTKIv2kSNbcUGtNBH7gc6LOuGN4yxFbfqwU4z
5CkjbnVeEuwdU/uhGLjiRIBPsRB08aWLvyjhCQ+szAJSRNyDB49JqH0qnIJnyTxZ
UOqE4tPSo0HMFcCGewv22AyYZkiY1NZ+LWD2+mto/rqwKyQGK9uKztDpph1cPmIg
LUWbhOIgIaVdD3p94imW269Td7YsNl1qHLophMpRHp4ESkTdwoZEJPxDhZySKXj6
AAd2Y90hfL3wqz+PXYKyitCb+VxZKViy2pSwVbAosuSIb3v+qmo879TEsrUytpup
JUCxoAk88glo5LoDkZj6yGFlPmBNoNUKtKTzAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUBCTxVMqELS46TI0FKms5SYECi48wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQkNUeFZNcUVMUzQ2VEkw
RkttczVTWUVDaTQ4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
AHwMMA0GCSqGSIb3DQEBCwUAA4IBAQA+Eo8n2DOdIrx9w9CVuGXKLFVaBeMv8j1c
i0sVnGtp+x/JUJCNlk1eM+JM6246BVJhjgREUGL/evYHdaJZnnIY7yLHfBuHVlIS
31vEZgy9o+EsSH8vh4RBAsHMo3Ox+eaL2zY06MjT2tbbyeL7hynNciY1MNBRNWLB
zPr3yvHxHdXYU6hbqtlYkyappIWlBb3Ml4uma4m8DeR4Tu1b3GXLTRMQ0Vp+FtF/
Mr83Ls+egGl3y4CgGLAOjCdCICpPoINepJUVsYk2dLyu43T2RYKBHIxvlMhmaV77
++EorTNAXETxYlu69UVmpcTX9uhZ/bdXwCyaieLQHWnxkq15Ks9h
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org