Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/iLIczhWCVAfd06UJb8j9COOxld0.roa
File: iLIczhWCVAfd06UJb8j9COOxld0.roa (raw, json)
Hash identifier: QSUjNE80c0RCUOzOpkxkSz+YLgoqjXcMdhfs/i6im+w=
Subject key identifier: 88:B2:1C:CE:15:82:54:07:DD:D3:A5:09:6F:C8:FD:08:E3:B1:95:DD
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C55
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/iLIczhWCVAfd06UJb8j9COOxld0.roa
Signing time: Wed 29 Sep 2021 02:49:41 +0000
ROA not before: Wed 29 Sep 2021 02:49:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 203.65.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3157 (0xc55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=88B21CCE15825407DDD3A5096FC8FD08E3B195DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:dc:fc:7b:b9:30:a8:1d:aa:a1:d1:98:30:e3:
c1:67:3b:49:19:76:06:31:8a:09:cc:6c:e8:ca:5a:
a3:be:e8:7f:16:b7:a7:ef:95:5a:03:91:8c:b5:67:
d4:bd:4a:6c:cc:27:ac:a0:ba:99:da:43:79:10:fe:
ef:ec:3d:36:35:1d:43:bd:ed:39:71:31:34:99:32:
fb:e8:91:5e:35:88:67:d6:ec:de:6b:26:8a:b7:fa:
e3:28:a5:d3:ab:f7:67:df:6e:7a:5f:0e:3f:37:bb:
fa:4d:8f:5b:bd:ca:d0:24:cb:e2:87:c8:f5:bd:c5:
78:96:9b:23:73:03:4d:99:bc:0b:66:eb:c3:c2:8b:
b4:70:71:95:75:eb:70:84:4b:2d:02:e9:cd:89:23:
c8:10:dd:39:d0:e4:fa:23:50:2c:2d:fc:c4:66:03:
ad:27:6a:9f:95:50:01:8e:a3:94:b2:f8:9d:c9:81:
92:99:fc:d1:bb:76:87:e8:eb:31:c8:2f:21:ed:a2:
78:a1:1f:0e:7c:43:5e:34:82:35:44:b8:fb:53:08:
2d:f4:d8:fd:87:54:23:b0:34:05:7d:5a:b1:d6:17:
39:96:4c:41:e6:a5:64:62:a5:5c:ea:b6:69:3f:b5:
62:f5:af:b8:ba:57:d6:ee:9c:8e:0f:8e:4f:01:5a:
8b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:B2:1C:CE:15:82:54:07:DD:D3:A5:09:6F:C8:FD:08:E3:B1:95:DD
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/iLIczhWCVAfd06UJb8j9COOxld0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.160.0/19
Signature Algorithm: sha256WithRSAEncryption
8f:ef:f4:dd:33:75:32:10:dc:fe:50:b2:37:60:b7:3f:b3:11:
6a:d9:cf:23:30:0c:35:fe:d9:e7:1d:e1:99:51:1d:e5:a7:68:
ea:ad:12:e4:8e:a6:ee:a1:a9:06:5a:09:6d:27:17:67:ed:48:
eb:a3:28:eb:0b:ff:e5:3e:6c:bc:ef:a0:1a:29:8d:af:b9:c8:
17:84:30:1f:4c:b0:2a:18:1f:a9:2e:85:d8:68:b6:7e:9a:cc:
a6:01:d2:15:cc:60:70:85:40:05:66:74:bc:96:aa:88:71:33:
b3:51:38:ed:b7:14:30:6e:1f:56:fb:de:1e:00:39:03:b6:d1:
62:7c:fa:1a:47:88:1a:2f:fd:ee:51:d3:42:6a:da:61:6b:02:
2d:f8:05:00:33:2d:af:5d:cf:98:ed:3b:e0:51:c1:cf:1c:87:
86:64:73:55:1a:84:19:72:ca:27:a5:fa:50:9e:be:f2:50:20:
7e:36:a4:4c:ce:6c:a1:ce:80:85:a5:e2:a6:f0:8c:6e:2f:91:
52:f4:d2:d9:b3:d9:9e:c0:20:42:30:a8:bf:19:95:d8:0e:fa:
e8:b6:a2:54:40:86:d5:92:e0:78:39:9b:7a:64:75:75:86:b2:
89:47:68:da:03:cb:bb:96:77:62:25:a6:b9:0d:47:e2:43:b0:
81:b8:94:05
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjQ5NDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDg4QjIxQ0NFMTU4MjU0
MDdEREQzQTUwOTZGQzhGRDA4RTNCMTk1REQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCi3Px7uTCoHaqh0Zgw48FnO0kZdgYxignMbOjKWqO+6H8Wt6fv
lVoDkYy1Z9S9SmzMJ6ygupnaQ3kQ/u/sPTY1HUO97TlxMTSZMvvokV41iGfW7N5r
Joq3+uMopdOr92ffbnpfDj83u/pNj1u9ytAky+KHyPW9xXiWmyNzA02ZvAtm68PC
i7RwcZV163CESy0C6c2JI8gQ3TnQ5PojUCwt/MRmA60nap+VUAGOo5Sy+J3JgZKZ
/NG7dofo6zHILyHtonihHw58Q140gjVEuPtTCC302P2HVCOwNAV9WrHWFzmWTEHm
pWRipVzqtmk/tWL1r7i6V9bunI4Pjk8BWosHAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUiLIczhWCVAfd06UJb8j9COOxld0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvaUxJY3poV0NWQWZkMDZV
SmI4ajlDT094bGQwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BctBoDANBgkqhkiG9w0BAQsFAAOCAQEAj+/03TN1MhDc/lCyN2C3P7MRatnPIzAM
Nf7Z5x3hmVEd5ado6q0S5I6m7qGpBloJbScXZ+1I66Mo6wv/5T5svO+gGimNr7nI
F4QwH0ywKhgfqS6F2Gi2fprMpgHSFcxgcIVABWZ0vJaqiHEzs1E47bcUMG4fVvve
HgA5A7bRYnz6GkeIGi/97lHTQmraYWsCLfgFADMtr13PmO074FHBzxyHhmRzVRqE
GXLKJ6X6UJ6+8lAgfjakTM5soc6AhaXipvCMbi+RUvTS2bPZnsAgQjCovxmV2A76
6LaiVECG1ZLgeDmbemR1dYayiUdo2gPLu5Z3YiWmuQ1H4kOwgbiUBQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org