Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z1g83CfYVzAAoBJvDjyfHaoAigg.roa
File: z1g83CfYVzAAoBJvDjyfHaoAigg.roa (raw, json)
Hash identifier: fo2gDcUUbrSsgFgGALXOwNXHlTOS3igyyBXmkJjGDgw=
Subject key identifier: CF:58:3C:DC:27:D8:57:30:00:A0:12:6F:0E:3C:9F:1D:AA:00:8A:08
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z1g83CfYVzAAoBJvDjyfHaoAigg.roa
Signing time: Thu 15 Sep 2022 02:47:15 +0000
ROA not before: Thu 15 Sep 2022 02:47:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.208.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CF583CDC27D8573000A0126F0E3C9F1DAA008A08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9e:a8:b9:55:25:e7:2e:81:93:46:f5:4b:1f:
95:98:17:ba:51:74:8e:6f:79:41:14:e8:79:5d:82:
1b:69:86:1a:a2:e2:68:bd:4d:43:be:be:09:ce:81:
dc:5c:79:26:37:dc:78:f8:96:d0:fb:d2:95:5b:23:
81:d1:7a:e8:31:9b:1a:1c:03:c2:c4:00:e8:3d:1c:
5c:ea:ed:e6:fb:95:04:d9:d8:00:39:8b:fa:41:9f:
bf:ef:a6:11:6b:ce:14:be:30:0b:86:cd:f4:8c:3c:
fc:a9:8d:45:d5:61:86:35:d5:72:77:c5:4d:25:ff:
fe:f4:d4:93:33:df:2f:fa:c8:24:b5:9c:7c:80:84:
9f:08:a1:74:31:90:06:a2:83:0c:4d:c3:b1:15:87:
56:c4:3a:14:c3:75:af:c6:80:5c:0e:92:7d:8c:44:
f8:96:f2:f7:e2:7e:5b:13:49:f4:f3:15:8b:43:0f:
10:71:f9:59:c2:69:af:cd:12:a4:91:66:b9:2c:14:
f3:3e:d9:14:9d:7e:2c:5d:45:35:e1:38:08:75:e0:
c8:85:77:c4:34:66:d4:f7:26:1a:bf:4a:35:b2:d3:
64:04:92:82:56:02:3c:68:74:7d:3e:97:9a:7f:68:
6d:bc:b7:01:fb:17:46:f9:5f:01:18:b5:32:8d:3e:
f1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:58:3C:DC:27:D8:57:30:00:A0:12:6F:0E:3C:9F:1D:AA:00:8A:08
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z1g83CfYVzAAoBJvDjyfHaoAigg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.208.192.0/18
Signature Algorithm: sha256WithRSAEncryption
7c:b2:77:d8:70:d0:83:57:67:db:b3:4b:1b:aa:cf:20:85:6b:
55:be:6c:5e:9c:01:57:dc:4d:57:15:3d:e7:69:a0:bd:d5:51:
e1:52:e0:18:78:d0:fd:8b:2d:6b:a4:a6:80:56:eb:f4:7e:09:
90:3c:39:91:e4:1d:96:4d:43:6c:f3:36:52:e4:7e:6c:5f:a4:
06:a1:20:41:11:e2:98:82:7b:71:87:d7:fa:d1:13:52:a2:dc:
14:83:5f:89:a8:58:4f:ec:bc:65:28:aa:74:84:d4:f2:9a:a3:
00:62:14:2e:be:3a:0d:f3:b7:66:11:13:88:2f:64:79:87:24:
8f:cf:15:2c:27:e8:0b:b1:cd:eb:3e:ee:2d:99:c1:11:46:6b:
c8:f7:2a:99:63:48:b1:b8:f2:4e:79:c9:93:73:44:3c:81:a2:
6c:bb:db:69:c6:4a:75:3a:2b:4d:df:d0:26:42:1e:eb:07:63:
f3:02:dc:bb:cd:87:a3:b9:41:5d:b2:90:5c:83:c3:10:42:cb:
ab:34:f0:c7:36:0c:dd:90:0a:4d:24:8c:97:58:63:67:92:f7:
0c:92:bd:50:e6:f6:df:14:70:81:dd:66:e5:a2:a9:a0:4a:3d:
ca:e1:2f:f2:2b:7c:98:16:75:cb:65:73:cc:43:46:04:60:16:
6d:da:92:d5
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ3MTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKENGNTgzQ0RDMjdEODU3
MzAwMEEwMTI2RjBFM0M5RjFEQUEwMDhBMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDAnqi5VSXnLoGTRvVLH5WYF7pRdI5veUEU6Hldghtphhqi4mi9
TUO+vgnOgdxceSY33Hj4ltD70pVbI4HReugxmxocA8LEAOg9HFzq7eb7lQTZ2AA5
i/pBn7/vphFrzhS+MAuGzfSMPPypjUXVYYY11XJ3xU0l//701JMz3y/6yCS1nHyA
hJ8IoXQxkAaigwxNw7EVh1bEOhTDda/GgFwOkn2MRPiW8vfiflsTSfTzFYtDDxBx
+VnCaa/NEqSRZrksFPM+2RSdfixdRTXhOAh14MiFd8Q0ZtT3Jhq/SjWy02QEkoJW
AjxodH0+l5p/aG28twH7F0b5XwEYtTKNPvFfAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUz1g83CfYVzAAoBJvDjyfHaoAiggwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvejFnODNDZllWekFBb0JK
dkRqeWZIYW9BaWdnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BtLQwDANBgkqhkiG9w0BAQsFAAOCAQEAfLJ32HDQg1dn27NLG6rPIIVrVb5sXpwB
V9xNVxU952mgvdVR4VLgGHjQ/Ysta6SmgFbr9H4JkDw5keQdlk1DbPM2UuR+bF+k
BqEgQRHimIJ7cYfX+tETUqLcFINfiahYT+y8ZSiqdITU8pqjAGIULr46DfO3ZhET
iC9keYckj88VLCfoC7HN6z7uLZnBEUZryPcqmWNIsbjyTnnJk3NEPIGibLvbacZK
dTorTd/QJkIe6wdj8wLcu82Ho7lBXbKQXIPDEELLqzTwxzYM3ZAKTSSMl1hjZ5L3
DJK9UOb23xRwgd1m5aKpoEo9yuEv8it8mBZ1y2VzzENGBGAWbdqS1Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org