Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zKtLqnPRXafRopnsNGkDtw6E0BA.roa
File: zKtLqnPRXafRopnsNGkDtw6E0BA.roa (raw, json)
Hash identifier: x8hpGXLozSkP3eAz7jj49bX3SwbFKBFlxXl469Z0yuA=
Subject key identifier: CC:AB:4B:AA:73:D1:5D:A7:D1:A2:99:EC:34:69:03:B7:0E:84:D0:10
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C78
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zKtLqnPRXafRopnsNGkDtw6E0BA.roa
Signing time: Wed 29 Sep 2021 02:49:53 +0000
ROA not before: Wed 29 Sep 2021 02:49:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24158
IP address blocks: 49.216.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3192 (0xc78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CCAB4BAA73D15DA7D1A299EC346903B70E84D010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:1c:3f:37:43:53:30:25:41:2c:80:4f:e1:52:
45:2c:45:ea:f2:cc:b7:91:fd:8f:e6:a7:00:0f:16:
55:ca:7f:bf:85:bf:6c:2a:e2:5f:a2:fe:f6:00:1b:
c9:bd:4d:23:88:5c:82:1b:f7:ff:a6:ea:c0:da:29:
3d:d0:79:47:c7:d0:5e:ad:92:e6:c1:d7:6f:6a:51:
c3:83:20:ab:08:91:b9:1d:3e:59:28:c4:3f:fa:4e:
bd:fd:1b:9d:e0:88:0e:56:87:a0:38:c5:5a:f6:ab:
73:40:86:3d:6d:1a:04:fd:2b:c5:a6:35:a7:f1:23:
7d:3e:92:20:03:90:dc:c4:43:11:cf:1d:6e:6b:69:
ff:43:e4:ad:cd:ed:0c:d8:d9:4f:f3:fd:d9:c1:78:
cf:24:44:68:e5:92:f4:67:fe:27:82:19:cf:02:e9:
b0:1f:b8:35:48:78:73:5a:96:17:92:05:82:03:bc:
3e:92:31:75:1c:b8:69:b8:60:99:0a:50:48:ad:e5:
9e:04:13:e6:b7:0b:97:17:7a:52:6d:8f:db:52:5c:
e4:be:d5:7c:2c:17:ec:38:c8:e6:3d:54:a0:cb:40:
1e:e8:d7:16:8e:82:a8:f0:7e:9a:f6:26:b9:9f:ab:
30:3a:44:9c:84:3d:81:f1:fd:ec:dd:bb:8a:c3:13:
b8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:AB:4B:AA:73:D1:5D:A7:D1:A2:99:EC:34:69:03:B7:0E:84:D0:10
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zKtLqnPRXafRopnsNGkDtw6E0BA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.216.0.0/14
Signature Algorithm: sha256WithRSAEncryption
6b:40:35:ea:13:39:a8:0e:ae:c7:02:2e:95:c9:68:1c:0a:8b:
8e:15:35:60:b0:5c:43:a3:91:73:f9:d1:70:04:d1:51:0a:ce:
e7:26:b8:d9:d8:84:23:12:71:db:23:5b:1f:19:48:83:a6:ef:
93:91:e3:cd:38:54:ae:99:a7:22:56:db:19:b1:45:51:74:33:
af:1f:e6:be:a3:e6:3d:28:38:a5:e9:0c:17:c7:12:2c:b7:40:
28:3f:d5:70:58:0f:76:00:5d:65:8a:ca:e5:ef:95:89:eb:91:
53:0f:6b:54:0c:c6:8e:8a:68:32:88:2d:ae:be:31:b8:be:1c:
e8:23:ac:fd:bf:b5:1d:b8:72:2a:6f:71:13:07:e4:75:ae:2a:
e2:50:28:ba:3e:56:f7:19:c2:ff:27:44:d8:34:80:53:8e:ea:
5a:7c:ca:1c:53:11:c1:4e:7c:ca:ab:fe:7d:18:41:88:d4:4d:
64:32:f4:fc:e0:63:cf:45:ee:55:13:e5:c5:fc:9c:ed:15:9c:
3d:85:de:3a:a2:e7:b5:89:05:20:87:3c:dc:df:53:66:07:f2:
89:23:cd:f1:88:a7:38:5f:36:9b:58:e5:46:64:89:fb:4e:c0:
0e:0a:03:58:7a:70:50:26:bc:c9:dd:6c:48:6e:ff:6e:b8:18:
fa:a7:e9:19
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDHgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTA5Mjkw
MjQ5NTNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKENDQUI0QkFBNzNEMTVE
QTdEMUEyOTlFQzM0NjkwM0I3MEU4NEQwMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhHD83Q1MwJUEsgE/hUkUsReryzLeR/Y/mpwAPFlXKf7+Fv2wq
4l+i/vYAG8m9TSOIXIIb9/+m6sDaKT3QeUfH0F6tkubB129qUcODIKsIkbkdPlko
xD/6Tr39G53giA5Wh6A4xVr2q3NAhj1tGgT9K8WmNafxI30+kiADkNzEQxHPHW5r
af9D5K3N7QzY2U/z/dnBeM8kRGjlkvRn/ieCGc8C6bAfuDVIeHNalheSBYIDvD6S
MXUcuGm4YJkKUEit5Z4EE+a3C5cXelJtj9tSXOS+1XwsF+w4yOY9VKDLQB7o1xaO
gqjwfpr2JrmfqzA6RJyEPYHx/ezdu4rDE7jjAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUzKtLqnPRXafRopnsNGkDtw6E0BAwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvekt0THFuUFJYYWZSb3Bu
c05Ha0R0dzZFMEJBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD
AjHYMA0GCSqGSIb3DQEBCwUAA4IBAQBrQDXqEzmoDq7HAi6VyWgcCouOFTVgsFxD
o5Fz+dFwBNFRCs7nJrjZ2IQjEnHbI1sfGUiDpu+TkePNOFSumaciVtsZsUVRdDOv
H+a+o+Y9KDil6QwXxxIst0AoP9VwWA92AF1lisrl75WJ65FTD2tUDMaOimgyiC2u
vjG4vhzoI6z9v7UduHIqb3ETB+R1ririUCi6Plb3GcL/J0TYNIBTjupafMocUxHB
TnzKq/59GEGI1E1kMvT84GPPRe5VE+XF/JztFZw9hd46oue1iQUghzzc31NmB/KJ
I83xiKc4XzabWOVGZIn7TsAOCgNYenBQJrzJ3WxIbv9uuBj6p+kZ
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org