Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Gj-KyXJqxoU6sm6DGU8iNzaeLsA.roa
File: Gj-KyXJqxoU6sm6DGU8iNzaeLsA.roa (raw, json)
Hash identifier: BYWu7yXZNl0tYijX+41/r5gZ6v98Vkjbhfrt7iVnI6Y=
Subject key identifier: 1A:3F:8A:C9:72:6A:C6:85:3A:B2:6E:83:19:4F:22:37:36:9E:2E:C0
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Gj-KyXJqxoU6sm6DGU8iNzaeLsA.roa
Signing time: Thu 15 Sep 2022 02:47:07 +0000
ROA not before: Thu 15 Sep 2022 02:47:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 219.80.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1A3F8AC9726AC6853AB26E83194F2237369E2EC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:81:0c:97:a7:cd:62:f9:6b:f1:0a:ad:b4:1b:
c8:1b:0f:15:ad:1d:bf:06:89:40:ab:e3:7b:4b:7c:
2a:20:b6:5f:b1:69:1d:5c:c7:8f:0b:a5:4e:c9:6f:
9c:ed:5b:d5:06:e2:4f:f6:0b:40:10:c4:5d:e9:2b:
42:df:09:84:66:0b:e7:ff:a5:24:6e:96:d2:39:d5:
87:a9:bf:50:3a:02:94:2d:b0:3c:ed:22:25:4b:d0:
34:94:5c:2c:22:25:ee:7a:e5:1a:73:eb:3d:db:8d:
0a:df:7f:51:76:a5:cb:1f:88:f2:0f:df:cd:cb:2a:
af:16:90:b8:de:38:84:65:95:c1:c3:a8:a1:11:c1:
ee:54:b7:7a:ff:6a:91:33:f3:4e:68:2d:96:41:28:
13:f9:ea:f9:9b:ce:78:06:2e:50:21:d1:93:3d:50:
c2:8c:91:85:e6:ae:cf:18:93:b8:17:4b:95:2d:d1:
3f:d2:d9:39:67:69:92:68:d3:a2:23:89:09:0a:91:
1d:cf:a1:7e:7a:a2:00:25:58:99:70:2b:75:b9:d3:
55:c0:3f:5b:29:44:f0:cc:7c:d3:e5:25:88:4e:d4:
dc:35:3a:88:79:86:f3:a2:5a:ff:66:53:82:a2:26:
20:31:0c:49:d8:2e:ea:6f:74:db:be:c6:b0:7c:b0:
b2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:3F:8A:C9:72:6A:C6:85:3A:B2:6E:83:19:4F:22:37:36:9E:2E:C0
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Gj-KyXJqxoU6sm6DGU8iNzaeLsA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.80.0.0/15
Signature Algorithm: sha256WithRSAEncryption
95:74:de:c0:b7:ab:80:6f:70:70:b0:34:9a:cf:f4:26:95:af:
c0:cf:57:31:81:2e:9b:f1:b0:6a:bd:4c:96:d2:e9:e7:b7:99:
4c:52:cb:90:1a:84:39:4f:9f:08:c3:e6:28:78:54:82:5c:83:
98:94:ed:e0:df:43:a5:c7:b8:7a:e2:51:28:c8:d8:8a:38:83:
36:c5:10:54:60:dd:b6:7d:a9:41:86:41:81:b8:c7:11:c6:76:
cb:77:ba:0a:2d:22:96:7a:36:6e:aa:23:4e:3b:03:20:86:48:
77:6c:7d:14:2d:03:f8:0c:cf:e1:e9:e3:c3:31:78:d9:92:d4:
d8:92:4b:3b:2d:e4:b8:2b:3b:d1:7a:45:32:be:6a:f8:db:fd:
de:7c:fe:16:57:b9:73:cb:c4:16:69:ef:d1:0e:98:e5:e7:35:
50:ef:60:75:20:5c:9a:97:08:f7:ba:fa:16:6e:a1:c8:9a:25:
a0:cd:55:d9:06:a6:82:d5:2d:70:f5:d3:c1:fa:f5:b1:11:36:
68:fc:ad:39:37:f8:00:0b:9d:e7:d1:23:e9:ae:20:a2:d8:50:
ad:04:5c:6f:71:aa:07:3e:b1:7d:d4:68:4c:a3:cc:d1:32:b4:
1b:44:14:97:c2:08:44:90:4e:58:06:1f:f3:72:95:15:49:52:
14:15:7f:5d
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ3MDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFBM0Y4QUM5NzI2QUM2
ODUzQUIyNkU4MzE5NEYyMjM3MzY5RTJFQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDygQyXp81i+WvxCq20G8gbDxWtHb8GiUCr43tLfCogtl+xaR1c
x48LpU7Jb5ztW9UG4k/2C0AQxF3pK0LfCYRmC+f/pSRultI51Yepv1A6ApQtsDzt
IiVL0DSUXCwiJe565Rpz6z3bjQrff1F2pcsfiPIP383LKq8WkLjeOIRllcHDqKER
we5Ut3r/apEz805oLZZBKBP56vmbzngGLlAh0ZM9UMKMkYXmrs8Yk7gXS5Ut0T/S
2TlnaZJo06IjiQkKkR3PoX56ogAlWJlwK3W501XAP1spRPDMfNPlJYhO1Nw1Ooh5
hvOiWv9mU4KiJiAxDEnYLupvdNu+xrB8sLKNAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUGj+KyXJqxoU6sm6DGU8iNzaeLsAwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvR2otS3lYSnF4b1U2c202
REdVOGlOemFlTHNBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
AdtQMA0GCSqGSIb3DQEBCwUAA4IBAQCVdN7At6uAb3BwsDSaz/Qmla/Az1cxgS6b
8bBqvUyW0unnt5lMUsuQGoQ5T58Iw+YoeFSCXIOYlO3g30Olx7h64lEoyNiKOIM2
xRBUYN22falBhkGBuMcRxnbLd7oKLSKWejZuqiNOOwMghkh3bH0ULQP4DM/h6ePD
MXjZktTYkks7LeS4KzvRekUyvmr42/3efP4WV7lzy8QWae/RDpjl5zVQ72B1IFya
lwj3uvoWbqHImiWgzVXZBqaC1S1w9dPB+vWxETZo/K05N/gAC53n0SPpriCi2FCt
BFxvcaoHPrF91GhMo8zRMrQbRBSXwghEkE5YBh/zcpUVSVIUFX9d
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org