Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NnFQ8Z1C1bco-YOp6bxR7RuIb-Q.roa
File: NnFQ8Z1C1bco-YOp6bxR7RuIb-Q.roa (raw, json)
Hash identifier: xKR1txsCBd0o4tOn3bpvlabgWHlsPTa9CoKNJwu3Mr8=
Subject key identifier: 36:71:50:F1:9D:42:D5:B7:28:F9:83:A9:E9:BC:51:ED:1B:88:6F:E4
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DA7
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NnFQ8Z1C1bco-YOp6bxR7RuIb-Q.roa
Signing time: Thu 28 Jul 2022 09:38:16 +0000
ROA not before: Thu 28 Jul 2022 09:38:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24158
IP address blocks: 203.105.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3495 (0xda7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Jul 28 09:38:16 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=367150F19D42D5B728F983A9E9BC51ED1B886FE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6c:00:2c:80:3d:47:bb:2c:36:3a:57:23:6c:
e6:93:ba:a9:79:1b:18:7e:19:26:8a:8e:fa:cd:93:
71:bf:91:0a:17:0f:ff:ea:c0:55:f4:91:bd:ad:13:
ba:23:5d:d2:fb:b3:58:99:88:1e:a6:a2:6e:5e:3a:
5f:67:b6:14:55:54:b0:dd:60:e2:60:37:a4:87:c3:
e2:31:a1:7b:95:ae:d5:80:9d:53:15:0c:17:89:ee:
21:2e:ac:0e:8b:31:e7:a9:0b:fd:25:64:d2:5f:24:
ee:63:4c:ba:bc:4a:0d:de:6f:88:b8:cb:f0:7f:36:
4a:de:46:3d:cb:13:77:18:71:8c:8b:35:10:f0:e0:
f0:25:37:7b:e9:01:e6:93:75:8e:3e:5e:a1:4d:73:
bc:e9:86:78:c0:d1:a6:ae:c3:bd:9d:04:5e:ce:c2:
6f:73:04:f3:b9:45:4d:91:7e:dd:49:a5:ee:d8:bf:
5d:ad:1a:c2:0a:0c:6e:fa:7e:a9:ab:54:3d:33:cb:
95:0e:54:97:11:45:75:85:14:0b:54:ff:44:08:1d:
2d:df:ec:b1:b0:33:f4:e0:c3:c6:70:5e:06:0a:45:
6f:2c:cb:57:07:f4:55:45:c5:a0:1b:02:c9:ca:8d:
c4:c2:5b:bb:54:81:af:f0:a1:4a:c2:a9:79:56:45:
e1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:71:50:F1:9D:42:D5:B7:28:F9:83:A9:E9:BC:51:ED:1B:88:6F:E4
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NnFQ8Z1C1bco-YOp6bxR7RuIb-Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.105.239.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:6a:ee:0c:36:a1:b5:ea:18:53:ea:7b:d6:a9:6a:66:2b:e6:
82:84:10:55:81:d7:92:32:d0:33:cd:8e:cd:53:08:0b:99:19:
a8:d0:66:12:ce:ae:37:61:4e:ca:5f:cd:07:cf:2d:bb:33:0f:
ff:90:e3:91:88:a1:3b:7d:df:1b:e1:75:ac:b9:c6:e8:db:db:
ff:55:e6:4c:24:72:2a:1f:23:0e:37:0f:74:02:6c:d9:ee:17:
6d:c5:b1:57:c0:53:2e:cc:ac:92:d2:8e:82:d5:01:f5:f4:b5:
da:50:70:38:a8:20:03:0c:81:7d:c9:ed:4a:bb:05:3f:87:cf:
54:cd:f3:28:d9:2a:32:d4:fa:f7:03:17:31:38:a0:9f:41:e7:
6c:ae:52:38:44:74:6e:a6:c0:ec:f2:9b:66:ec:be:1b:5e:2f:
89:37:6d:45:ab:dd:9a:b8:52:12:f6:8a:a6:d2:3c:14:aa:67:
72:f9:f9:d4:44:e2:14:72:8e:60:97:ab:a8:6e:e7:ef:16:11:
66:de:e7:ca:31:fc:bc:7d:6e:2f:50:a8:ef:06:ca:21:ff:09:
07:1e:07:51:fd:bd:0e:b6:f9:65:d2:fa:0e:19:cd:cb:25:17:
e4:f2:f8:be:18:42:62:bb:f1:2e:0b:2e:a6:b8:c6:b4:65:f0:
0a:8e:ff:cc
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDacwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA3Mjgw
OTM4MTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM2NzE1MEYxOUQ0MkQ1
QjcyOEY5ODNBOUU5QkM1MUVEMUI4ODZGRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5bAAsgD1Huyw2OlcjbOaTuql5Gxh+GSaKjvrNk3G/kQoXD//q
wFX0kb2tE7ojXdL7s1iZiB6mom5eOl9nthRVVLDdYOJgN6SHw+IxoXuVrtWAnVMV
DBeJ7iEurA6LMeepC/0lZNJfJO5jTLq8Sg3eb4i4y/B/NkreRj3LE3cYcYyLNRDw
4PAlN3vpAeaTdY4+XqFNc7zphnjA0aauw72dBF7Owm9zBPO5RU2Rft1Jpe7Yv12t
GsIKDG76fqmrVD0zy5UOVJcRRXWFFAtU/0QIHS3f7LGwM/Tgw8ZwXgYKRW8sy1cH
9FVFxaAbAsnKjcTCW7tUga/woUrCqXlWReENAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUNnFQ8Z1C1bco+YOp6bxR7RuIb+QwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvTm5GUThaMUMxYmNvLVlP
cDZieFI3UnVJYi1RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AMtp7zANBgkqhkiG9w0BAQsFAAOCAQEAH2ruDDahteoYU+p71qlqZivmgoQQVYHX
kjLQM82OzVMIC5kZqNBmEs6uN2FOyl/NB88tuzMP/5DjkYihO33fG+F1rLnG6Nvb
/1XmTCRyKh8jDjcPdAJs2e4XbcWxV8BTLsysktKOgtUB9fS12lBwOKggAwyBfcnt
SrsFP4fPVM3zKNkqMtT69wMXMTign0HnbK5SOER0bqbA7PKbZuy+G14viTdtRavd
mrhSEvaKptI8FKpncvn51ETiFHKOYJerqG7n7xYRZt7nyjH8vH1uL1Co7wbKIf8J
Bx4HUf29Drb5ZdL6DhnNyyUX5PL4vhhCYrvxLgsuprjGtGXwCo7/zA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org