Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aKPhAG7-EYq9oanfmbC5ZejU1sk.roa
File: aKPhAG7-EYq9oanfmbC5ZejU1sk.roa (raw, json)
Hash identifier: GA736bDNkob8iOnR3mMAcwUkODlACFVoqJ4Sit6gMRI=
Subject key identifier: 68:A3:E1:00:6E:FE:11:8A:BD:A1:A9:DF:99:B0:B9:65:E8:D4:D6:C9
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aKPhAG7-EYq9oanfmbC5ZejU1sk.roa
Signing time: Thu 15 Sep 2022 02:47:22 +0000
ROA not before: Thu 15 Sep 2022 02:47:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131634
IP address blocks: 124.108.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=68A3E1006EFE118ABDA1A9DF99B0B965E8D4D6C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4c:65:16:3f:6b:09:dd:da:33:56:93:b6:ea:
2a:f3:ea:5c:ce:5d:8c:e4:41:5a:99:32:45:c3:ff:
50:b9:35:27:d6:d5:ce:6e:37:e9:eb:22:2b:14:34:
2d:bd:77:a7:3d:97:54:d9:55:d7:42:2a:d2:2e:51:
e1:b0:9a:d7:d1:76:46:39:d4:ab:98:86:a7:59:7e:
f0:73:4a:ee:9d:bc:09:ed:af:e2:c9:89:41:56:ef:
c3:09:70:01:68:f2:06:9d:17:73:9a:73:66:61:95:
b6:c5:97:66:36:68:64:4b:96:4d:5c:df:8b:a7:08:
41:50:81:7d:14:45:fe:d3:ed:6d:7f:d3:4f:55:d2:
c7:8f:22:72:0e:8d:79:ce:ee:56:59:e8:f8:a3:9a:
4d:91:61:38:a8:df:70:db:a4:e3:75:d7:94:33:13:
5e:d5:0c:7c:f4:f8:25:e8:22:04:19:a5:d1:69:ce:
d7:d0:f9:c8:60:74:06:65:26:d3:be:85:b5:21:33:
6a:60:9f:bc:de:8e:b3:b0:59:51:c0:60:f4:05:87:
f1:61:83:f6:ad:64:a4:2d:90:35:1d:56:14:7e:5a:
ca:f7:96:ab:33:4c:d9:8f:63:c2:00:9e:d8:8f:c8:
24:09:e2:45:d6:ef:85:f4:a3:de:c8:f9:86:cf:1e:
74:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A3:E1:00:6E:FE:11:8A:BD:A1:A9:DF:99:B0:B9:65:E8:D4:D6:C9
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aKPhAG7-EYq9oanfmbC5ZejU1sk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.191.0/24
Signature Algorithm: sha256WithRSAEncryption
87:15:52:79:75:87:82:e5:14:b0:2c:cf:da:37:d1:5b:77:af:
c4:75:e9:ea:f3:47:55:72:ac:5b:9b:68:3e:f1:0c:80:31:e9:
04:f7:4a:bf:27:d6:eb:f6:52:d4:50:2d:76:ca:c1:9e:76:04:
59:76:e5:88:16:46:4e:69:f4:ad:71:2a:0a:73:22:4a:45:53:
e2:ad:9f:02:c9:d6:5a:7c:ce:a5:e7:a1:6a:10:ac:8b:ed:d7:
ad:e4:4d:ac:09:68:17:25:80:38:15:cc:40:20:85:c2:62:e4:
c7:cc:83:fc:0e:77:95:3c:4c:8f:3d:db:94:9e:13:5b:2f:b8:
7d:c3:58:e8:ca:0e:84:d5:a5:58:e3:f4:d4:41:70:6e:1d:f7:
b0:8f:a8:b8:17:70:dc:09:5f:26:ed:9f:a0:19:c7:60:74:f7:
4f:ed:9a:9a:0c:03:f8:21:2b:b9:16:30:dc:e6:dd:a5:91:76:
a6:08:1f:dc:bc:db:62:7d:0c:79:03:36:c8:75:0e:58:3c:ea:
6a:9a:c9:e1:45:64:7a:c0:56:3a:b4:88:90:ba:56:c3:c5:e6:
28:5b:ac:d5:b8:51:09:b1:04:ab:1d:d7:25:99:81:9b:6f:2c:
2f:b9:25:d8:c6:b9:ad:db:d7:d5:7e:22:1f:9a:59:a8:a1:e6:
c5:86:91:63
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ3MjJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDY4QTNFMTAwNkVGRTEx
OEFCREExQTlERjk5QjBCOTY1RThENEQ2QzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCiTGUWP2sJ3dozVpO26irz6lzOXYzkQVqZMkXD/1C5NSfW1c5u
N+nrIisUNC29d6c9l1TZVddCKtIuUeGwmtfRdkY51KuYhqdZfvBzSu6dvAntr+LJ
iUFW78MJcAFo8gadF3Oac2ZhlbbFl2Y2aGRLlk1c34unCEFQgX0URf7T7W1/009V
0sePInIOjXnO7lZZ6Pijmk2RYTio33DbpON115QzE17VDHz0+CXoIgQZpdFpztfQ
+chgdAZlJtO+hbUhM2pgn7zejrOwWVHAYPQFh/Fhg/atZKQtkDUdVhR+Wsr3lqsz
TNmPY8IAntiPyCQJ4kXW74X0o97I+YbPHnQZAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUaKPhAG7+EYq9oanfmbC5ZejU1skwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvYUtQaEFHNy1FWXE5b2Fu
Zm1iQzVaZWpVMXNrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AHxsvzANBgkqhkiG9w0BAQsFAAOCAQEAhxVSeXWHguUUsCzP2jfRW3evxHXp6vNH
VXKsW5toPvEMgDHpBPdKvyfW6/ZS1FAtdsrBnnYEWXbliBZGTmn0rXEqCnMiSkVT
4q2fAsnWWnzOpeehahCsi+3XreRNrAloFyWAOBXMQCCFwmLkx8yD/A53lTxMjz3b
lJ4TWy+4fcNY6MoOhNWlWOP01EFwbh33sI+ouBdw3AlfJu2foBnHYHT3T+2amgwD
+CEruRYw3ObdpZF2pggf3LzbYn0MeQM2yHUOWDzqaprJ4UVkesBWOrSIkLpWw8Xm
KFus1bhRCbEEqx3XJZmBm28sL7kl2Ma5rdvX1X4iH5pZqKHmxYaRYw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org