Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/iH7v5fjTUJ1JiM2W4TDvYGFBnYw.roa
File: iH7v5fjTUJ1JiM2W4TDvYGFBnYw.roa (raw, json)
Hash identifier: f6mTz+xhhaxIsg1HyzAzTqBQK6LIElZONFj+d/Qp71M=
Subject key identifier: 88:7E:EF:E5:F8:D3:50:9D:49:88:CD:96:E1:30:EF:60:61:41:9D:8C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/iH7v5fjTUJ1JiM2W4TDvYGFBnYw.roa
Signing time: Thu 15 Sep 2022 02:47:22 +0000
ROA not before: Thu 15 Sep 2022 02:47:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 203.211.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=887EEFE5F8D3509D4988CD96E130EF6061419D8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ea:88:23:62:13:56:d5:74:67:45:4e:b4:ef:
c3:87:d4:0e:b9:7d:0a:c5:8c:c0:ac:b3:0e:f5:12:
fe:03:a5:7e:78:41:b5:ce:36:d9:dd:3c:bc:19:53:
3f:34:f7:54:1c:99:2c:df:d7:c8:69:bb:a4:3b:d4:
42:c3:c3:9b:5e:0d:bb:b6:5b:0e:35:7c:08:52:4a:
05:2d:7c:56:40:1d:ef:b5:0d:cf:9a:3f:dd:4c:43:
9d:d6:0f:b2:31:be:e5:ae:08:5c:4b:9b:2e:94:69:
db:f8:96:86:44:4b:fb:7d:c2:5a:13:a0:0e:8f:6a:
c7:cb:e3:7a:d1:07:35:b0:fb:ee:6e:f8:af:a5:94:
5c:6c:74:33:91:7f:88:46:eb:3f:1e:36:a1:2a:7f:
58:fa:2a:15:3c:cd:99:71:91:b5:95:79:b7:01:33:
36:c8:44:2b:c0:72:98:64:cb:db:51:ca:b9:82:04:
47:88:74:69:c9:e2:3d:c2:d1:9a:f0:2e:31:8a:02:
c9:44:90:ee:20:3f:f4:70:a7:0e:34:72:56:be:ff:
5e:e5:2c:9a:e1:d7:f8:94:d7:a5:cf:46:42:33:76:
98:d5:e0:93:d3:d7:80:dc:24:4e:be:c8:d1:41:0f:
d1:5a:05:4c:5f:24:eb:f7:da:97:4b:87:88:0f:f7:
9c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:7E:EF:E5:F8:D3:50:9D:49:88:CD:96:E1:30:EF:60:61:41:9D:8C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/iH7v5fjTUJ1JiM2W4TDvYGFBnYw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.211.0.0/19
Signature Algorithm: sha256WithRSAEncryption
11:5a:91:02:a5:2d:a1:8e:d5:1f:01:02:ee:83:bc:d7:cc:27:
61:05:af:3c:c8:55:30:a6:c6:91:64:53:1c:01:7d:f2:80:41:
37:07:ae:06:3e:af:39:b8:15:3a:38:b5:cb:5c:97:f6:f8:08:
44:04:22:85:41:44:98:d8:2c:cb:6c:c8:35:41:c0:01:b9:2c:
1a:4f:ce:f3:29:c4:c1:bf:b3:d1:5a:5f:b1:3b:01:2e:82:96:
1f:1a:54:f6:27:76:c9:77:b4:b7:39:30:fd:fb:7b:03:b3:b0:
98:4a:a8:c9:7b:c9:bb:13:32:90:12:4f:68:f1:07:4e:31:a4:
2e:cd:d2:ec:fe:45:a4:e9:0d:e0:16:fd:ee:9f:47:14:20:11:
73:ab:df:15:15:b2:94:c4:86:b6:60:b0:47:73:70:5b:8f:ee:
37:7d:d2:91:c8:ea:e7:96:0d:50:93:90:b4:2e:b7:90:f2:03:
ff:20:55:f1:b7:b5:77:3c:33:60:2f:6d:8c:1b:93:2c:bc:a4:
3e:fc:95:33:03:66:19:ae:58:8d:e4:84:96:00:2d:3f:d7:20:
c9:57:76:dc:75:a7:68:7b:a0:90:e7:8c:c0:c2:5b:fb:4e:a2:
48:9a:a5:d9:c8:de:e8:07:2d:f7:66:f0:0a:14:9f:4a:ab:92:
73:d6:49:83
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ3MjJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg4N0VFRkU1RjhEMzUw
OUQ0OTg4Q0Q5NkUxMzBFRjYwNjE0MTlEOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDr6ogjYhNW1XRnRU6078OH1A65fQrFjMCssw71Ev4DpX54QbXO
NtndPLwZUz8091QcmSzf18hpu6Q71ELDw5teDbu2Ww41fAhSSgUtfFZAHe+1Dc+a
P91MQ53WD7IxvuWuCFxLmy6Uadv4loZES/t9wloToA6PasfL43rRBzWw++5u+K+l
lFxsdDORf4hG6z8eNqEqf1j6KhU8zZlxkbWVebcBMzbIRCvAcphky9tRyrmCBEeI
dGnJ4j3C0ZrwLjGKAslEkO4gP/Rwpw40cla+/17lLJrh1/iU16XPRkIzdpjV4JPT
14DcJE6+yNFBD9FaBUxfJOv32pdLh4gP95yTAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUiH7v5fjTUJ1JiM2W4TDvYGFBnYwwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvaUg3djVmalRVSjFKaU0y
VzRURHZZR0ZCbll3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BcvTADANBgkqhkiG9w0BAQsFAAOCAQEAEVqRAqUtoY7VHwEC7oO818wnYQWvPMhV
MKbGkWRTHAF98oBBNweuBj6vObgVOji1y1yX9vgIRAQihUFEmNgsy2zINUHAAbks
Gk/O8ynEwb+z0VpfsTsBLoKWHxpU9id2yXe0tzkw/ft7A7OwmEqoyXvJuxMykBJP
aPEHTjGkLs3S7P5FpOkN4Bb97p9HFCARc6vfFRWylMSGtmCwR3NwW4/uN33Skcjq
55YNUJOQtC63kPID/yBV8be1dzwzYC9tjBuTLLykPvyVMwNmGa5YjeSElgAtP9cg
yVd23HWnaHugkOeMwMJb+06iSJql2cje6Act92bwChSfSquSc9ZJgw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org