Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zoj5um26mf9V9vMmKwbNKupDUck.roa
File: zoj5um26mf9V9vMmKwbNKupDUck.roa (raw, json)
Hash identifier: cZ26SCg+hoFRdNe3vQvkV1EaeHqjM1qlq5dBD0oqg2c=
Subject key identifier: CE:88:F9:BA:6D:BA:99:FF:55:F6:F3:26:2B:06:CD:2A:EA:43:51:C9
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zoj5um26mf9V9vMmKwbNKupDUck.roa
Signing time: Thu 15 Sep 2022 02:46:55 +0000
ROA not before: Thu 15 Sep 2022 02:46:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 202.145.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:46:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CE88F9BA6DBA99FF55F6F3262B06CD2AEA4351C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:89:1a:b3:43:85:2d:4e:66:fb:42:9c:fb:12:
0c:c3:59:e8:80:d4:ce:59:d8:50:c4:e7:c0:58:be:
28:1b:1c:b4:68:d5:b2:ef:52:e7:12:19:47:ac:28:
69:8d:7f:b2:5d:e8:04:38:ab:ca:45:7a:2d:33:c5:
1c:ec:54:27:25:51:46:98:32:d2:37:31:10:73:58:
51:36:75:21:2d:f0:dd:e0:5b:27:b3:b5:33:40:ff:
5c:e7:36:46:95:5c:14:81:5a:8c:95:62:5c:2c:a0:
a6:2f:c9:0a:31:6e:7d:ee:05:88:5e:42:d5:3b:3c:
44:fa:62:53:cb:a1:e8:6e:d9:6e:73:85:b7:36:f2:
65:1d:9b:31:4a:d2:51:09:c6:03:69:2a:8c:30:17:
be:af:ab:d6:a3:23:28:07:ba:14:05:4f:34:6b:8d:
1a:4b:05:f4:2f:52:9f:1f:d1:a0:32:c9:27:97:ec:
e1:50:02:54:e6:37:2c:ab:36:d7:98:c1:f8:f3:ba:
97:c8:60:5c:1b:d5:f7:ae:cf:f6:53:ae:b0:0c:c4:
f9:01:bc:14:0a:ca:2e:54:0d:ec:5d:ed:ef:0c:21:
5a:24:85:69:e5:f4:b5:d4:a3:c6:18:fa:ab:b7:4c:
90:1a:24:6e:3d:65:0f:d2:8b:91:d3:e9:bb:2b:37:
a4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:88:F9:BA:6D:BA:99:FF:55:F6:F3:26:2B:06:CD:2A:EA:43:51:C9
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zoj5um26mf9V9vMmKwbNKupDUck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.145.128.0/17
Signature Algorithm: sha256WithRSAEncryption
3a:c0:33:1a:25:ba:c6:af:65:4c:f3:be:f8:f4:8f:39:a8:a1:
22:45:90:e5:8a:c0:26:d2:83:64:28:33:46:2b:db:1e:09:23:
0c:84:39:23:d4:8a:ee:70:22:28:fd:bd:52:87:7e:99:19:44:
7a:19:42:d9:5e:3d:d0:89:07:1d:92:f2:96:dc:dd:28:c5:34:
79:cc:90:cb:a8:4e:49:4a:c4:4b:00:21:4f:22:b3:10:7a:f5:
4a:b5:5f:25:23:c1:3f:a5:d9:f4:c4:44:e1:ea:72:38:ac:25:
28:7c:6c:cd:6a:cc:fc:1c:52:c7:35:fe:2a:a2:11:8c:c3:3a:
0f:95:71:13:ab:93:94:d4:bc:35:cd:07:c1:3c:0a:1f:6a:61:
14:8a:5f:1d:ab:7c:cd:cc:5e:cf:8e:c0:10:1b:7e:49:c4:c4:
12:3c:18:76:59:6a:da:5d:b3:e3:24:ec:68:73:e5:3c:44:d4:
10:07:b4:2d:1e:fc:45:8a:34:ba:46:b9:13:5c:a7:5d:cd:7e:
0a:19:93:dd:26:23:2b:62:98:4d:a1:17:84:6f:e4:fa:e3:95:
45:9f:5d:15:d7:73:30:ea:bb:fc:85:ba:5e:7a:86:81:c2:b1:
27:fc:25:77:46:6e:15:47:18:66:1a:a7:41:74:5e:d8:bc:5f:
ab:7a:35:be
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ2NTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKENFODhGOUJBNkRCQTk5
RkY1NUY2RjMyNjJCMDZDRDJBRUE0MzUxQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPiRqzQ4UtTmb7Qpz7EgzDWeiA1M5Z2FDE58BYvigbHLRo1bLv
UucSGUesKGmNf7Jd6AQ4q8pFei0zxRzsVCclUUaYMtI3MRBzWFE2dSEt8N3gWyez
tTNA/1znNkaVXBSBWoyVYlwsoKYvyQoxbn3uBYheQtU7PET6YlPLoehu2W5zhbc2
8mUdmzFK0lEJxgNpKowwF76vq9ajIygHuhQFTzRrjRpLBfQvUp8f0aAyySeX7OFQ
AlTmNyyrNteYwfjzupfIYFwb1feuz/ZTrrAMxPkBvBQKyi5UDexd7e8MIVokhWnl
9LXUo8YY+qu3TJAaJG49ZQ/Si5HT6bsrN6QzAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUzoj5um26mf9V9vMmKwbNKupDUckwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvem9qNXVtMjZtZjlWOXZN
bUt3Yk5LdXBEVWNrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
B8qRgDANBgkqhkiG9w0BAQsFAAOCAQEAOsAzGiW6xq9lTPO++PSPOaihIkWQ5YrA
JtKDZCgzRivbHgkjDIQ5I9SK7nAiKP29Uod+mRlEehlC2V490IkHHZLyltzdKMU0
ecyQy6hOSUrESwAhTyKzEHr1SrVfJSPBP6XZ9MRE4epyOKwlKHxszWrM/BxSxzX+
KqIRjMM6D5VxE6uTlNS8Nc0HwTwKH2phFIpfHat8zcxez47AEBt+ScTEEjwYdllq
2l2z4yTsaHPlPETUEAe0LR78RYo0uka5E1ynXc1+ChmT3SYjK2KYTaEXhG/k+uOV
RZ9dFddzMOq7/IW6XnqGgcKxJ/wld0ZuFUcYZhqnQXRe2Lxfq3o1vg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org