Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CKriJxIaZklBo_Z7KWDhCXY8jIE.roa
File: CKriJxIaZklBo_Z7KWDhCXY8jIE.roa (raw, json)
Hash identifier: pAERKG4ls8hp6CL3EjZvTe/ciQeaM/41xae6s6XOYX8=
Subject key identifier: 08:AA:E2:27:12:1A:66:49:41:A3:F6:7B:29:60:E1:09:76:3C:8C:81
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 07E0
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CKriJxIaZklBo_Z7KWDhCXY8jIE.roa
Signing time: Tue 29 Sep 2020 09:57:29 +0000
ROA not before: Tue 29 Sep 2020 09:57:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24158
IP address blocks: 175.97.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2016 (0x7e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=08AAE227121A664941A3F67B2960E109763C8C81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ed:03:f2:86:9d:36:20:a8:aa:d4:91:0d:f1:
bd:76:07:73:2f:ac:41:3d:ef:17:29:47:06:26:60:
f5:c0:c0:c9:a3:ce:7f:ae:db:67:14:0a:f1:60:f7:
b3:30:a4:42:d8:f0:7e:34:82:d6:08:53:f2:24:ea:
9d:2f:7a:c2:b2:16:66:e3:a6:7a:7f:06:ea:b2:f3:
9c:18:30:d6:f5:a3:5c:9b:ed:f0:cd:cb:d1:fe:32:
f0:65:ac:57:51:ac:4b:88:96:c4:ef:6a:2c:38:91:
46:ec:bb:b3:55:af:74:3c:e1:1f:43:8e:e3:b4:73:
ec:f5:48:e6:d9:ef:c6:2e:02:f4:1b:0c:5b:8b:b5:
9c:8d:6d:c5:09:fb:5b:23:0b:9b:61:19:29:cf:e9:
6d:e3:77:db:73:04:8f:eb:7e:a5:37:fd:a2:78:e4:
bf:a6:fa:a3:f8:e7:5d:e6:91:10:16:64:75:3d:60:
c5:1f:b8:40:2f:cc:4e:f5:7e:3e:5b:c2:3b:64:1a:
f9:d6:fc:34:44:56:b4:d4:7e:22:01:b8:bb:b9:bc:
a2:b9:73:34:9b:4e:47:59:91:f5:b1:96:e6:84:be:
b6:77:42:c4:5b:ed:5a:31:9e:4d:d1:45:57:f7:f8:
c9:d6:a9:45:75:84:f5:31:85:d8:f7:ad:1d:7c:bf:
8f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:AA:E2:27:12:1A:66:49:41:A3:F6:7B:29:60:E1:09:76:3C:8C:81
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CKriJxIaZklBo_Z7KWDhCXY8jIE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.97.0.0/16
Signature Algorithm: sha256WithRSAEncryption
57:9b:eb:28:9f:04:1d:ee:02:f4:9a:fe:65:c8:91:ec:10:aa:
f6:37:d9:7b:7f:ce:f0:3a:77:da:4a:38:ad:3e:d7:07:7a:39:
9c:04:ee:7f:c7:e1:f8:ab:0b:93:1c:2c:b6:11:80:d1:6f:18:
04:af:2d:0e:9c:b5:09:26:0f:83:11:5b:85:93:7d:35:00:4b:
0c:10:da:af:39:98:1d:af:5e:23:39:2f:1f:61:1c:09:85:22:
25:bf:c9:ee:8c:f3:00:40:06:ca:d1:13:aa:81:22:6a:44:92:
92:5b:4a:df:ae:14:02:da:90:14:9d:c0:5e:e8:af:70:fb:25:
b4:05:e1:c5:df:90:8e:a4:c6:a3:c5:29:7a:92:10:5a:fb:29:
ef:2b:ea:26:12:5d:18:0c:d0:1f:68:eb:6f:ae:f8:4d:b5:9f:
5b:a7:2b:e2:0f:c2:5b:a0:85:6e:78:23:e9:cc:9e:5e:48:72:
33:1b:c2:98:53:ae:61:a4:77:f9:a8:33:17:a9:e6:83:3c:57:
28:39:6f:29:09:a4:dc:34:ee:b7:87:3e:8a:56:b8:8d:35:e9:
7e:51:83:1a:e4:fd:eb:5f:9f:50:d4:35:01:bf:1f:9a:be:17:
c5:a0:c2:6d:4b:46:ee:4f:97:f0:58:4f:9c:55:02:93:7e:52:
20:89:a7:d5
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICB+AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDA5Mjkw
OTU3MjlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA4QUFFMjI3MTIxQTY2
NDk0MUEzRjY3QjI5NjBFMTA5NzYzQzhDODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCX7QPyhp02IKiq1JEN8b12B3MvrEE97xcpRwYmYPXAwMmjzn+u
22cUCvFg97MwpELY8H40gtYIU/Ik6p0vesKyFmbjpnp/Buqy85wYMNb1o1yb7fDN
y9H+MvBlrFdRrEuIlsTvaiw4kUbsu7NVr3Q84R9DjuO0c+z1SObZ78YuAvQbDFuL
tZyNbcUJ+1sjC5thGSnP6W3jd9tzBI/rfqU3/aJ45L+m+qP4513mkRAWZHU9YMUf
uEAvzE71fj5bwjtkGvnW/DREVrTUfiIBuLu5vKK5czSbTkdZkfWxluaEvrZ3QsRb
7Voxnk3RRVf3+MnWqUV1hPUxhdj3rR18v4/VAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUCKriJxIaZklBo/Z7KWDhCXY8jIEwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvQ0tyaUp4SWFaa2xCb19a
N0tXRGhDWFk4aklFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
AK9hMA0GCSqGSIb3DQEBCwUAA4IBAQBXm+sonwQd7gL0mv5lyJHsEKr2N9l7f87w
OnfaSjitPtcHejmcBO5/x+H4qwuTHCy2EYDRbxgEry0OnLUJJg+DEVuFk301AEsM
ENqvOZgdr14jOS8fYRwJhSIlv8nujPMAQAbK0ROqgSJqRJKSW0rfrhQC2pAUncBe
6K9w+yW0BeHF35COpMajxSl6khBa+ynvK+omEl0YDNAfaOtvrvhNtZ9bpyviD8Jb
oIVueCPpzJ5eSHIzG8KYU65hpHf5qDMXqeaDPFcoOW8pCaTcNO63hz6KVriNNel+
UYMa5P3rX59Q1DUBvx+avhfFoMJtS0buT5fwWE+cVQKTflIgiafV
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:02 2023 by rpki-client on console-ams.rpki-client.org