Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kgiG68tvthiqu5eDNcg4V2TJPWQ.roa
File: kgiG68tvthiqu5eDNcg4V2TJPWQ.roa (raw, json)
Hash identifier: D6WImzjm1Bg+rX3GtS+UzLp+dwm9ZxJ7qRMYXFaC7pU=
Subject key identifier: 92:08:86:EB:CB:6F:B6:18:AA:BB:97:83:35:C8:38:57:64:C9:3D:64
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FCE
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kgiG68tvthiqu5eDNcg4V2TJPWQ.roa
Signing time: Fri 01 Sep 2023 09:37:19 +0000
ROA not before: Fri 01 Sep 2023 09:37:19 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 210.208.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4046 (0xfce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:19 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=920886EBCB6FB618AABB978335C8385764C93D64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1c:a0:0b:75:87:cc:47:ac:8f:eb:32:26:7b:
fd:d0:77:e6:47:a3:34:5d:e1:45:0a:ef:37:74:ee:
60:9f:d0:37:38:29:f4:f1:a4:67:60:0c:31:f7:8d:
6d:73:6f:50:99:4f:2f:cb:d4:39:28:75:89:9c:8a:
44:7e:56:55:f5:64:74:04:c5:e6:a7:8c:19:c0:00:
e9:b0:80:d5:01:bf:b0:16:12:7c:55:5f:35:da:42:
34:83:d8:df:fb:b6:15:05:f8:99:ed:77:5c:76:e2:
87:65:1f:b1:00:38:d9:8e:fe:e3:18:2d:0d:45:79:
b3:e0:9c:11:c0:68:62:95:78:3c:98:0b:44:d3:49:
d6:78:d0:f9:68:14:54:2a:d7:96:18:f8:5d:90:62:
44:18:1e:84:0f:f7:92:89:a6:88:34:89:c9:fd:fc:
8c:f3:2b:bb:ec:e4:fa:58:69:4e:73:9e:a0:80:79:
1e:a6:6c:86:95:30:f7:ee:12:e0:c9:27:ad:15:de:
84:7e:e9:46:ce:36:29:1e:c4:60:cf:2a:6a:36:e7:
64:b8:1a:5e:eb:64:7a:c6:78:13:9d:8a:69:25:9f:
a3:23:c3:04:ac:3e:4e:e5:6f:22:75:c0:a9:54:8b:
c0:1a:31:90:a1:db:89:a4:11:22:44:b1:1a:11:83:
6b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:08:86:EB:CB:6F:B6:18:AA:BB:97:83:35:C8:38:57:64:C9:3D:64
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kgiG68tvthiqu5eDNcg4V2TJPWQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.208.192.0/18
Signature Algorithm: sha256WithRSAEncryption
4f:df:c2:1f:02:42:c8:80:c1:9d:a4:4d:42:a5:52:52:94:27:
94:d4:83:69:53:51:a3:97:b1:c8:c5:fb:b4:31:81:5b:92:d8:
30:53:2d:bf:ed:a5:ba:e9:9b:91:70:d8:f3:45:22:32:c9:1d:
33:55:db:81:3c:e7:7b:ba:3b:10:71:e6:ff:d0:5f:30:89:4a:
b5:0a:7b:d2:77:13:4c:d7:94:de:0b:7c:ed:06:a1:11:e8:63:
6f:ef:1e:de:99:32:b1:d9:a0:d9:e7:20:4d:1e:1f:44:65:18:
2d:61:23:a2:a4:f2:f4:24:a6:60:a9:54:17:ab:2b:c6:73:d2:
c0:20:0f:f9:14:14:c7:dc:c7:fb:1d:41:1a:fc:a0:43:c8:d7:
76:f3:c6:5a:77:83:c7:f5:9d:61:0d:a9:48:d0:e8:ce:d9:e4:
95:b4:ac:d5:1f:1c:7b:66:8a:7c:ee:27:b8:7a:5d:68:39:d8:
1d:91:1c:ed:68:c0:ac:6f:0c:e3:d4:f6:d8:df:b9:44:e5:df:
7b:f2:75:50:15:f9:e5:23:b9:4d:4c:b5:f6:03:b6:3d:37:fe:
1a:80:0e:95:4e:5e:42:23:1d:08:da:2d:cb:67:ae:83:30:13:
ca:31:ad:22:b7:47:7a:64:5a:8a:d5:cc:12:00:b2:aa:07:e6:
25:15:b5:99
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICD84wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw
OTM3MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkyMDg4NkVCQ0I2RkI2
MThBQUJCOTc4MzM1QzgzODU3NjRDOTNENjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUHKALdYfMR6yP6zIme/3Qd+ZHozRd4UUK7zd07mCf0Dc4KfTx
pGdgDDH3jW1zb1CZTy/L1DkodYmcikR+VlX1ZHQExeanjBnAAOmwgNUBv7AWEnxV
XzXaQjSD2N/7thUF+Jntd1x24odlH7EAONmO/uMYLQ1FebPgnBHAaGKVeDyYC0TT
SdZ40PloFFQq15YY+F2QYkQYHoQP95KJpog0icn9/IzzK7vs5PpYaU5znqCAeR6m
bIaVMPfuEuDJJ60V3oR+6UbONikexGDPKmo252S4Gl7rZHrGeBOdimkln6MjwwSs
Pk7lbyJ1wKlUi8AaMZCh24mkESJEsRoRg2snAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUkgiG68tvthiqu5eDNcg4V2TJPWQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQva2dpRzY4dHZ0aGlxdTVl
RE5jZzRWMlRKUFdRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BtLQwDANBgkqhkiG9w0BAQsFAAOCAQEAT9/CHwJCyIDBnaRNQqVSUpQnlNSDaVNR
o5exyMX7tDGBW5LYMFMtv+2luumbkXDY80UiMskdM1XbgTzne7o7EHHm/9BfMIlK
tQp70ncTTNeU3gt87QahEehjb+8e3pkysdmg2ecgTR4fRGUYLWEjoqTy9CSmYKlU
F6srxnPSwCAP+RQUx9zH+x1BGvygQ8jXdvPGWneDx/WdYQ2pSNDoztnklbSs1R8c
e2aKfO4nuHpdaDnYHZEc7WjArG8M49T22N+5ROXfe/J1UBX55SO5TUy19gO2PTf+
GoAOlU5eQiMdCNoty2eugzATyjGtIrdHemRaitXMEgCyqgfmJRW1mQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:39 2025 by rpki-client