Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ND0dTNoHfBW1nlIVALq2ne-crfU.roa
File: ND0dTNoHfBW1nlIVALq2ne-crfU.roa (raw, json)
Hash identifier: EpQzdOmeRLEhNBP3A+S/tCW0U8xpfmdjt497u3RmDQE=
Subject key identifier: 34:3D:1D:4C:DA:07:7C:15:B5:9E:52:15:00:BA:B6:9D:EF:9C:AD:F5
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0820
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ND0dTNoHfBW1nlIVALq2ne-crfU.roa
Signing time: Tue 29 Sep 2020 09:57:47 +0000
ROA not before: Tue 29 Sep 2020 09:57:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131611
IP address blocks: 124.9.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2080 (0x820)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=343D1D4CDA077C15B59E521500BAB69DEF9CADF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9c:8a:14:33:63:9d:4b:56:61:b1:22:09:38:
37:1f:21:32:eb:be:40:cd:c4:89:6d:b3:66:b7:d2:
51:9d:08:b6:4c:7a:38:02:af:83:86:9f:64:3a:9f:
38:6c:e1:60:eb:92:e8:ed:08:f5:b0:01:41:22:43:
e2:b9:05:23:34:f7:84:68:a5:2a:4f:cb:ea:ea:7e:
25:84:93:e5:ad:91:50:26:bd:86:7b:23:15:ad:49:
11:b1:96:b2:09:f6:1a:c1:fe:ca:79:a1:68:9d:1f:
40:2e:4b:38:1f:42:ee:46:1c:04:cd:71:62:fb:f3:
5f:95:88:19:7e:74:b3:96:70:73:ba:c9:28:7e:c0:
e1:c2:12:a0:37:a5:4f:d9:6e:30:93:a7:9e:6a:ca:
8e:ce:71:7b:ae:3a:5c:fb:cc:c7:95:8f:74:19:9e:
71:68:50:e5:bd:e9:af:4e:99:b9:fa:08:61:b5:3f:
bf:15:62:98:73:fd:24:ac:77:0d:81:b0:98:70:a3:
ae:48:b2:34:45:9d:60:b6:ef:f9:b9:26:29:95:2b:
42:02:06:5f:be:6b:5d:1b:f4:f8:95:34:52:f1:42:
f0:c3:3a:c4:8a:d7:94:51:c1:4a:22:4f:15:b9:0f:
69:d0:82:af:93:91:2b:ee:a3:6f:52:42:36:8b:a2:
a1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:3D:1D:4C:DA:07:7C:15:B5:9E:52:15:00:BA:B6:9D:EF:9C:AD:F5
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ND0dTNoHfBW1nlIVALq2ne-crfU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.9.64.0/19
Signature Algorithm: sha256WithRSAEncryption
03:7c:b6:cc:c0:49:52:1e:38:84:ba:8f:7c:36:09:e3:c3:cf:
b1:be:5f:3f:41:d3:84:e8:a9:7e:51:bb:7a:e8:7b:4c:21:ed:
b1:ed:05:38:99:ab:92:b9:7a:26:43:f2:cc:59:94:cc:39:fb:
11:f2:64:18:ea:55:79:38:8a:77:2e:23:a2:4c:06:b0:ed:8a:
8a:fd:96:03:c3:ca:17:bc:0b:0b:8a:d2:00:7d:4c:06:eb:3f:
94:32:47:a8:c1:ff:77:b8:56:d8:19:8e:51:f5:e1:9b:bf:2d:
cd:23:10:aa:27:96:de:c1:86:24:22:37:23:ed:6e:ae:20:a5:
9a:5e:48:4b:73:1f:67:42:d0:3e:98:64:2a:92:a3:61:b3:c2:
b8:99:5b:2e:d4:3b:6d:8c:c9:b1:3f:70:5b:3f:c1:cc:67:05:
dc:f4:65:d8:48:2e:41:77:22:b6:18:83:18:58:db:dd:fe:1e:
9d:1a:33:69:e1:9b:76:dc:c6:3d:1f:2c:c4:f3:8f:38:ae:af:
94:b6:b7:a6:e5:0b:d5:a7:86:ee:1b:73:5d:2d:d5:88:a2:cc:
b7:8a:93:45:b0:c1:8a:c1:89:7f:0e:c7:f1:ca:b8:9f:fa:fc:
32:52:47:dd:80:ae:01:e6:27:8f:2c:be:40:f4:94:c3:be:75:
d9:12:c0:9e
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCCAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMDA5Mjkw
OTU3NDdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDM0M0QxRDRDREEwNzdD
MTVCNTlFNTIxNTAwQkFCNjlERUY5Q0FERjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0nIoUM2OdS1ZhsSIJODcfITLrvkDNxIlts2a30lGdCLZMejgC
r4OGn2Q6nzhs4WDrkujtCPWwAUEiQ+K5BSM094RopSpPy+rqfiWEk+WtkVAmvYZ7
IxWtSRGxlrIJ9hrB/sp5oWidH0AuSzgfQu5GHATNcWL781+ViBl+dLOWcHO6ySh+
wOHCEqA3pU/ZbjCTp55qyo7OcXuuOlz7zMeVj3QZnnFoUOW96a9Ombn6CGG1P78V
Yphz/SSsdw2BsJhwo65IsjRFnWC27/m5JimVK0ICBl++a10b9PiVNFLxQvDDOsSK
15RRwUoiTxW5D2nQgq+TkSvuo29SQjaLoqERAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUND0dTNoHfBW1nlIVALq2ne+crfUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvTkQwZFROb0hmQlcxbmxJ
VkFMcTJuZS1jcmZVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BXwJQDANBgkqhkiG9w0BAQsFAAOCAQEAA3y2zMBJUh44hLqPfDYJ48PPsb5fP0HT
hOipflG7euh7TCHtse0FOJmrkrl6JkPyzFmUzDn7EfJkGOpVeTiKdy4jokwGsO2K
iv2WA8PKF7wLC4rSAH1MBus/lDJHqMH/d7hW2BmOUfXhm78tzSMQqieW3sGGJCI3
I+1uriClml5IS3MfZ0LQPphkKpKjYbPCuJlbLtQ7bYzJsT9wWz/BzGcF3PRl2Egu
QXcithiDGFjb3f4enRozaeGbdtzGPR8sxPOPOK6vlLa3puUL1aeG7htzXS3ViKLM
t4qTRbDBisGJfw7H8cq4n/r8MlJH3YCuAeYnjyy+QPSUw7512RLAng==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org