Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1kryMW1zuzlpAaYK-dCk8dFNJ38.roa
File: 1kryMW1zuzlpAaYK-dCk8dFNJ38.roa (raw, json)
Hash identifier: hpJMlqpekx7j8R9/zJbfRBi6sTiG8oKwShCXn772FWw=
Subject key identifier: D6:4A:F2:31:6D:73:BB:39:69:01:A6:0A:F9:D0:A4:F1:D1:4D:27:7F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1kryMW1zuzlpAaYK-dCk8dFNJ38.roa
Signing time: Thu 15 Sep 2022 02:47:34 +0000
ROA not before: Thu 15 Sep 2022 02:47:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 219.86.56.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D64AF2316D73BB396901A60AF9D0A4F1D14D277F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ab:16:26:84:76:ca:48:9a:05:98:1c:33:43:
54:a4:ff:d7:c6:aa:62:57:7a:05:1d:0d:da:c1:4c:
51:c1:f1:86:b5:57:36:bd:c6:5c:90:0e:f7:8c:ee:
75:cd:4e:ce:56:9f:5d:c1:3f:98:79:82:b7:30:0b:
76:90:50:ef:0f:2e:79:18:c7:cc:75:dd:1d:5f:b8:
c0:12:91:5c:71:06:82:9b:be:d3:21:5f:62:3e:f0:
9b:9e:2a:fa:23:4c:4f:71:4b:08:c5:52:22:bb:de:
c3:99:dd:0f:be:11:e2:af:8d:b0:b4:29:c2:7e:74:
69:bf:cc:cf:a6:8b:a9:1b:50:c7:0a:c0:fe:36:49:
7d:63:38:12:48:cc:dc:1f:0f:c5:f8:4d:a5:ed:8e:
0f:87:18:2e:8d:86:6f:84:c2:5c:82:15:26:f8:34:
0f:4c:11:a7:65:b8:37:93:96:53:4d:09:e2:ff:0f:
14:04:c1:20:2e:56:9a:f4:60:be:b1:60:52:75:81:
a2:72:ce:8c:97:59:26:03:54:b2:5d:5d:f2:4a:4b:
6a:79:eb:6c:d9:66:f5:20:15:bb:2b:ff:aa:37:61:
64:2e:b7:cc:8f:d2:09:01:ce:53:7e:e9:29:58:56:
50:7c:db:af:1d:87:c8:5b:5e:d5:dc:1e:87:d6:47:
2b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:4A:F2:31:6D:73:BB:39:69:01:A6:0A:F9:D0:A4:F1:D1:4D:27:7F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1kryMW1zuzlpAaYK-dCk8dFNJ38.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.86.56.0/21
Signature Algorithm: sha256WithRSAEncryption
34:de:b1:59:62:92:02:7e:be:7b:bc:89:71:f5:0e:d7:c0:ec:
d2:6c:63:21:a6:9b:a6:9d:b4:ce:c3:13:c4:46:59:f6:e5:53:
f1:c2:69:47:80:9b:0f:66:d1:c5:00:94:32:04:fe:b0:f0:c3:
1d:82:e4:1d:df:1b:22:44:ea:17:15:de:23:97:f2:89:48:ba:
38:5d:6a:2b:92:0f:5d:77:33:f0:12:7a:97:49:05:38:db:2c:
e5:0c:87:7b:b7:10:66:fa:88:0a:40:4d:0c:b4:fc:a0:aa:ea:
73:c3:88:48:2b:37:9c:b4:2a:29:41:51:eb:18:7a:46:25:e9:
ab:56:8c:75:35:5b:64:fe:52:d7:61:8a:23:6a:54:07:80:a6:
8e:e0:c8:c0:cd:57:c5:23:7a:24:95:66:5c:eb:d9:01:d9:2c:
b2:20:c0:08:b0:03:9a:20:61:0d:47:02:a6:0d:94:2c:a4:70:
ba:e6:de:0e:c0:90:df:84:37:4f:44:60:b5:b4:ad:c3:db:4f:
6e:33:d5:2a:4b:21:86:33:91:c1:ac:27:34:15:b8:be:1e:30:
4d:c3:08:c9:5b:8b:2d:bc:7d:04:c9:d0:96:ef:1e:5b:27:10:
ca:36:83:5f:3e:3e:95:08:f4:b9:37:5a:17:0f:3f:65:c2:99:
0b:82:61:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org