Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oCL8R9bMryeHZeYcyCk6r1cKETI.roa
File: oCL8R9bMryeHZeYcyCk6r1cKETI.roa (raw, json)
Hash identifier: LHAfcXn4YLhRHsp2GTOKi9iwAjZlv7XmFcScxGr4vCk=
Subject key identifier: A0:22:FC:47:D6:CC:AF:27:87:65:E6:1C:C8:29:3A:AF:57:0A:11:32
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AE2
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oCL8R9bMryeHZeYcyCk6r1cKETI.roa
Signing time: Sun 07 Feb 2021 11:40:46 +0000
ROA not before: Sun 07 Feb 2021 11:40:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4662
IP address blocks: 203.105.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2786 (0xae2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:40:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A022FC47D6CCAF278765E61CC8293AAF570A1132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9c:ee:b0:7d:fe:3c:aa:e6:a5:9a:dd:86:da:
34:a3:67:cd:03:26:52:09:11:48:c6:b5:dc:5f:b3:
6b:76:3d:45:a4:7b:1c:3a:81:51:47:72:04:55:3c:
7f:6c:8e:10:32:5d:85:4f:15:ca:6a:5a:01:6c:c8:
fa:5a:d0:16:2e:e1:fd:ee:6a:c8:70:21:04:e2:df:
eb:7e:ed:ac:69:5b:e3:77:5b:61:b3:4b:79:05:a9:
fe:13:86:31:72:17:8d:d6:bb:1d:75:a0:60:ae:7d:
ea:c2:a5:05:ae:2b:7a:9c:05:e8:ff:c1:83:9c:50:
33:95:1f:1e:28:f7:ef:a2:55:8d:e6:d6:14:9f:a8:
04:9e:f5:86:23:22:c1:56:93:5a:d9:61:bb:f6:77:
e3:e5:c3:16:15:44:50:bd:aa:0b:ee:2b:37:50:16:
d4:5d:d7:65:6b:99:8d:11:ff:f9:21:9c:86:c9:26:
df:8f:b8:66:dd:e9:4e:d8:a9:c7:77:73:78:20:2e:
ba:b1:23:d7:df:cc:20:61:eb:49:01:e4:c1:2c:01:
17:2b:04:60:3f:7a:14:cf:de:51:d7:3b:88:19:e2:
66:43:47:3a:89:28:36:d1:46:1f:96:31:a5:2d:3e:
e2:cf:ca:b7:9f:4b:01:f5:99:a9:2c:9a:be:af:90:
08:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:22:FC:47:D6:CC:AF:27:87:65:E6:1C:C8:29:3A:AF:57:0A:11:32
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oCL8R9bMryeHZeYcyCk6r1cKETI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.105.224.0/19
Signature Algorithm: sha256WithRSAEncryption
23:b1:11:d2:c2:79:a9:98:30:5e:19:9f:19:8a:01:bd:4d:cf:
a0:ee:c2:8d:1e:f4:e3:7f:ba:ba:58:c1:19:c9:08:75:ee:18:
a5:13:8b:cf:39:91:d9:c5:db:31:e7:3e:ae:15:9a:b6:f6:d3:
c8:ce:31:b5:1c:d7:a9:72:84:a2:e9:a6:1e:41:c7:9f:8e:94:
fb:8c:fa:f9:e9:21:6e:8a:22:f4:0c:d9:5a:18:5d:a6:1c:cc:
a0:1c:84:22:4c:dd:21:a6:19:8f:d7:61:4f:30:e5:dc:08:9f:
a3:ea:01:ae:66:79:51:39:8d:c4:90:06:ab:c8:c2:36:18:77:
a7:f1:6a:c9:c3:bc:32:1f:67:54:6d:37:16:99:af:b6:5e:4d:
ce:1f:78:26:3f:67:c5:0f:f4:a3:b9:d8:8b:13:e1:f6:20:54:
41:cb:ca:7f:4b:6c:e8:35:c6:58:e0:a3:cb:37:82:6a:4b:8f:
a0:b7:ec:54:e8:38:a8:3c:d4:5a:62:31:e0:3d:a6:72:c2:c5:
9a:65:ea:40:19:69:a2:4a:33:24:4a:00:a5:34:c1:df:5f:f2:
bd:31:6b:dd:e0:1d:71:d7:b5:7a:9a:7e:44:4b:41:ce:e1:eb:
66:18:a6:1b:d3:d2:52:85:cf:11:20:f1:32:00:db:5b:8c:83:
04:28:3e:5f
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCuIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MTQwNDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEEwMjJGQzQ3RDZDQ0FG
Mjc4NzY1RTYxQ0M4MjkzQUFGNTcwQTExMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6nO6wff48qualmt2G2jSjZ80DJlIJEUjGtdxfs2t2PUWkexw6
gVFHcgRVPH9sjhAyXYVPFcpqWgFsyPpa0BYu4f3uashwIQTi3+t+7axpW+N3W2Gz
S3kFqf4ThjFyF43Wux11oGCuferCpQWuK3qcBej/wYOcUDOVHx4o9++iVY3m1hSf
qASe9YYjIsFWk1rZYbv2d+PlwxYVRFC9qgvuKzdQFtRd12VrmY0R//khnIbJJt+P
uGbd6U7Yqcd3c3ggLrqxI9ffzCBh60kB5MEsARcrBGA/ehTP3lHXO4gZ4mZDRzqJ
KDbRRh+WMaUtPuLPyrefSwH1maksmr6vkAg7AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUoCL8R9bMryeHZeYcyCk6r1cKETIwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvb0NMOFI5Yk1yeWVIWmVZ
Y3lDazZyMWNLRVRJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Bctp4DANBgkqhkiG9w0BAQsFAAOCAQEAI7ER0sJ5qZgwXhmfGYoBvU3PoO7CjR70
43+6uljBGckIde4YpROLzzmR2cXbMec+rhWatvbTyM4xtRzXqXKEoummHkHHn46U
+4z6+ekhbooi9AzZWhhdphzMoByEIkzdIaYZj9dhTzDl3Aifo+oBrmZ5UTmNxJAG
q8jCNhh3p/FqycO8Mh9nVG03Fpmvtl5Nzh94Jj9nxQ/0o7nYixPh9iBUQcvKf0ts
6DXGWOCjyzeCakuPoLfsVOg4qDzUWmIx4D2mcsLFmmXqQBlpokozJEoApTTB31/y
vTFr3eAdcde1epp+REtBzuHrZhimG9PSUoXPESDxMgDbW4yDBCg+Xw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org