Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/L2SZCvnpFE1KkVQRnBmFJqx7D3c.roa
File: L2SZCvnpFE1KkVQRnBmFJqx7D3c.roa (raw, json)
Hash identifier: oc+QVYm5DL82rlLDo6MUduAOd7zRRF5wPZdbNlE2yes=
Subject key identifier: 2F:64:99:0A:F9:E9:14:4D:4A:91:54:11:9C:19:85:26:AC:7B:0F:77
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0ACA
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/L2SZCvnpFE1KkVQRnBmFJqx7D3c.roa
Signing time: Sun 07 Feb 2021 11:40:27 +0000
ROA not before: Sun 07 Feb 2021 11:40:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4662
IP address blocks: 203.65.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2762 (0xaca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:40:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2F64990AF9E9144D4A9154119C198526AC7B0F77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9d:f4:0f:67:bf:1f:6a:2b:ae:2d:f2:f8:c4:
d3:46:b3:30:3f:09:87:5f:53:d2:5e:9b:45:78:96:
9d:a1:d9:75:02:6f:b7:04:83:d4:7a:fe:df:24:6b:
3f:26:4f:a0:e8:a7:b0:42:ba:f5:c6:3c:ed:01:d9:
28:a4:07:b0:bc:05:ca:31:85:33:64:21:94:68:56:
c1:68:1b:10:b9:e7:76:cd:0e:f7:52:fe:83:3d:9d:
fb:5c:84:23:fc:d5:c3:25:20:b6:b5:8f:62:ea:57:
2d:ed:9b:65:82:cf:1e:37:e0:c3:eb:79:8c:cd:47:
de:ea:a4:48:e0:7f:76:55:cc:5f:f8:49:fa:7f:6f:
00:76:d6:78:94:e1:79:3c:21:5b:26:f9:37:37:71:
35:0f:75:39:22:66:70:9c:dd:f3:9a:79:8d:46:dd:
60:9f:c7:21:ea:71:4e:2a:be:97:3a:f9:d5:6d:48:
5f:f6:39:fd:9b:21:69:8c:c6:40:73:88:c2:f1:4f:
5c:db:ae:83:35:72:45:f2:27:ba:57:52:c5:38:bc:
2d:8b:4a:c2:e0:c9:dd:6c:4c:ff:03:f6:34:19:e6:
60:f0:2f:07:d2:99:08:94:e5:b6:d3:1e:7d:47:fc:
18:73:c4:42:d6:fa:1c:e4:a9:3b:6c:f8:cd:91:7e:
a6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:64:99:0A:F9:E9:14:4D:4A:91:54:11:9C:19:85:26:AC:7B:0F:77
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/L2SZCvnpFE1KkVQRnBmFJqx7D3c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.160.0/19
Signature Algorithm: sha256WithRSAEncryption
64:fb:6a:62:a2:09:9b:24:d6:b3:4a:6c:c4:40:20:a4:d5:92:
f4:c6:43:15:95:5c:76:48:2b:80:d6:eb:50:b3:1a:0a:f5:9a:
13:6e:14:12:58:f9:41:11:19:17:4a:d3:89:56:8c:c3:8e:95:
5a:b6:a5:f9:66:86:bd:36:e3:aa:38:79:03:f4:93:80:b4:69:
1d:73:40:d2:c4:b7:c3:df:68:01:1a:58:01:95:45:0e:62:8c:
5d:00:eb:b9:66:e1:25:36:29:ea:76:e3:53:00:f7:0b:0b:98:
a8:ca:f0:8d:2a:03:e8:60:26:b4:38:db:be:06:fe:0d:85:ab:
9c:c5:e0:5c:b5:ad:db:b3:17:93:7b:74:55:7e:ec:56:bf:55:
c9:ca:4b:74:3d:b9:13:17:a6:39:36:f9:f7:ad:9d:a4:a3:70:
42:55:9d:38:90:5c:4d:8d:3b:f1:3e:34:47:14:26:f9:93:3d:
a6:d9:89:da:55:cc:ea:f6:1a:3e:a4:be:31:a8:99:f3:be:7b:
20:d9:11:fa:8d:04:48:69:a5:fd:74:04:92:d7:b5:d3:14:1a:
a2:96:66:6f:32:25:db:91:b8:c6:f7:70:d4:fa:6c:43:e6:e7:
22:b1:28:22:3d:9a:a1:e4:dd:25:a2:c1:25:b0:d4:8b:9e:1d:
e8:92:43:50
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCsowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MTQwMjdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDJGNjQ5OTBBRjlFOTE0
NEQ0QTkxNTQxMTlDMTk4NTI2QUM3QjBGNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6nfQPZ78faiuuLfL4xNNGszA/CYdfU9Jem0V4lp2h2XUCb7cE
g9R6/t8kaz8mT6Dop7BCuvXGPO0B2SikB7C8BcoxhTNkIZRoVsFoGxC553bNDvdS
/oM9nftchCP81cMlILa1j2LqVy3tm2WCzx434MPreYzNR97qpEjgf3ZVzF/4Sfp/
bwB21niU4Xk8IVsm+Tc3cTUPdTkiZnCc3fOaeY1G3WCfxyHqcU4qvpc6+dVtSF/2
Of2bIWmMxkBziMLxT1zbroM1ckXyJ7pXUsU4vC2LSsLgyd1sTP8D9jQZ5mDwLwfS
mQiU5bbTHn1H/BhzxELW+hzkqTts+M2RfqZTAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUL2SZCvnpFE1KkVQRnBmFJqx7D3cwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvTDJTWkN2bnBGRTFLa1ZR
Um5CbUZKcXg3RDNjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BctBoDANBgkqhkiG9w0BAQsFAAOCAQEAZPtqYqIJmyTWs0psxEAgpNWS9MZDFZVc
dkgrgNbrULMaCvWaE24UElj5QREZF0rTiVaMw46VWral+WaGvTbjqjh5A/STgLRp
HXNA0sS3w99oARpYAZVFDmKMXQDruWbhJTYp6nbjUwD3CwuYqMrwjSoD6GAmtDjb
vgb+DYWrnMXgXLWt27MXk3t0VX7sVr9VycpLdD25ExemOTb5962dpKNwQlWdOJBc
TY078T40RxQm+ZM9ptmJ2lXM6vYaPqS+MaiZ8757INkR+o0ESGml/XQEkte10xQa
opZmbzIl25G4xvdw1PpsQ+bnIrEoIj2aoeTdJaLBJbDUi54d6JJDUA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org