Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gsrMPXGweEptk-cDxzoQuT47ok0.roa
File: gsrMPXGweEptk-cDxzoQuT47ok0.roa (raw, json)
Hash identifier: tDhk6DCoMJFTARMeyJ7qdlu/zqqS5gvDp13BQUwTeLM=
Subject key identifier: 82:CA:CC:3D:71:B0:78:4A:6D:93:E7:03:C7:3A:10:B9:3E:3B:A2:4D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A64
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gsrMPXGweEptk-cDxzoQuT47ok0.roa
Signing time: Sun 07 Feb 2021 11:36:08 +0000
ROA not before: Sun 07 Feb 2021 11:36:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 49.216.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2660 (0xa64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=82CACC3D71B0784A6D93E703C73A10B93E3BA24D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8c:15:10:42:eb:04:77:4d:6c:8e:6f:03:39:
bf:d9:97:4f:39:8d:5c:c7:a5:66:c6:11:a6:f7:7d:
7d:77:8a:bf:c6:ac:e5:ef:0a:69:ea:f3:51:26:94:
18:56:e5:11:b1:5e:26:3d:21:ec:ed:e9:f8:fe:ed:
44:61:b4:05:3f:d9:e1:4e:30:91:b4:c3:08:dc:d4:
8f:1a:c8:ea:38:f8:dd:49:13:63:ec:ed:36:b5:27:
5e:98:fd:e9:b3:41:7a:67:f2:d1:03:64:6e:ac:9c:
46:8c:d1:c5:4f:e8:18:3b:f0:7c:65:37:db:a7:06:
34:31:51:98:4e:e3:17:9f:2e:d1:06:3a:85:a4:5c:
b9:a4:6e:9c:a4:00:88:59:fe:e5:1b:a9:87:c8:5e:
1a:9d:58:7d:05:3b:4b:33:7b:b5:66:83:42:49:fe:
fb:2c:19:90:b3:d7:fd:e4:a1:c4:99:71:17:d3:7d:
b3:96:f6:3b:c6:25:58:8f:c2:70:d1:2c:9c:7e:ea:
df:63:3b:48:6c:0e:97:19:ea:c9:4c:b7:eb:24:9a:
dd:78:42:5b:83:81:4e:c3:15:d8:c2:ed:65:54:5f:
ef:16:8b:61:15:35:a9:35:ce:de:ac:b7:55:3b:2d:
b7:09:42:d8:5c:2e:d7:12:b3:3f:e3:f0:75:fc:67:
20:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CA:CC:3D:71:B0:78:4A:6D:93:E7:03:C7:3A:10:B9:3E:3B:A2:4D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gsrMPXGweEptk-cDxzoQuT47ok0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.216.0.0/14
Signature Algorithm: sha256WithRSAEncryption
48:aa:ec:d4:e1:32:89:34:5b:e8:6a:44:b1:f8:e3:52:0a:35:
e8:9a:4e:3a:82:9f:57:d4:1b:3b:99:5a:35:ea:bd:8c:ba:0b:
e9:fb:84:b0:37:45:2b:f5:da:4f:e5:2d:73:b5:95:7a:97:d6:
87:0c:f9:26:5c:3a:b1:71:3b:b4:6c:6c:52:f4:20:78:d7:28:
9e:f0:f6:40:fb:c9:84:aa:84:64:1b:71:a6:92:c0:b3:b0:47:
f9:c1:12:f5:de:6a:c9:3e:2e:bd:b9:34:2c:3a:4f:75:c7:f2:
00:c9:35:fa:1f:6d:2d:c2:87:92:c4:f1:f4:35:d1:ba:25:08:
be:5c:51:4f:74:b7:c5:0e:da:94:0d:cc:71:17:03:05:9c:6e:
2c:37:b3:d5:e7:b9:d4:4a:cd:7c:1e:79:e1:fe:3c:8c:cb:b5:
eb:f2:30:65:4f:43:cc:4f:11:92:f2:0d:bf:0e:2b:06:76:74:
c8:46:a5:fb:55:d8:85:1d:aa:0d:43:af:30:45:7e:ef:d0:b5:
dd:78:53:4d:b2:07:92:55:d7:72:73:08:ae:fa:85:84:36:06:
c9:95:8d:b8:0c:84:bf:61:31:a1:26:89:5c:de:ab:09:92:59:
40:02:a1:c5:ac:d7:53:c7:51:02:9f:26:c2:ee:59:ee:2b:03:
fb:dd:23:ea
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICCmQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MTM2MDhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDgyQ0FDQzNENzFCMDc4
NEE2RDkzRTcwM0M3M0ExMEI5M0UzQkEyNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8jBUQQusEd01sjm8DOb/Zl085jVzHpWbGEab3fX13ir/GrOXv
Cmnq81EmlBhW5RGxXiY9Iezt6fj+7URhtAU/2eFOMJG0wwjc1I8ayOo4+N1JE2Ps
7Ta1J16Y/emzQXpn8tEDZG6snEaM0cVP6Bg78HxlN9unBjQxUZhO4xefLtEGOoWk
XLmkbpykAIhZ/uUbqYfIXhqdWH0FO0sze7Vmg0JJ/vssGZCz1/3kocSZcRfTfbOW
9jvGJViPwnDRLJx+6t9jO0hsDpcZ6slMt+skmt14QluDgU7DFdjC7WVUX+8Wi2EV
Nak1zt6st1U7LbcJQthcLtcSsz/j8HX8ZyCBAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUgsrMPXGweEptk+cDxzoQuT47ok0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvZ3NyTVBYR3dlRXB0ay1j
RHh6b1F1VDQ3b2swLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
AjHYMA0GCSqGSIb3DQEBCwUAA4IBAQBIquzU4TKJNFvoakSx+ONSCjXomk46gp9X
1Bs7mVo16r2Mugvp+4SwN0Ur9dpP5S1ztZV6l9aHDPkmXDqxcTu0bGxS9CB41yie
8PZA+8mEqoRkG3GmksCzsEf5wRL13mrJPi69uTQsOk91x/IAyTX6H20twoeSxPH0
NdG6JQi+XFFPdLfFDtqUDcxxFwMFnG4sN7PV57nUSs18Hnnh/jyMy7Xr8jBlT0PM
TxGS8g2/DisGdnTIRqX7VdiFHaoNQ68wRX7v0LXdeFNNsgeSVddycwiu+oWENgbJ
lY24DIS/YTGhJolc3qsJkllAAqHFrNdTx1ECnybC7lnuKwP73SPq
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org