Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/2iEPgoGcdO9qJaN71f_vdKKM9bE.roa
File: 2iEPgoGcdO9qJaN71f_vdKKM9bE.roa (raw, json)
Hash identifier: slH28W9AvSTINKeZ4zn16wDUWcedtULh4Ug2HQDO1x4=
Subject key identifier: DA:21:0F:82:81:9C:74:EF:6A:25:A3:7B:D5:FF:EF:74:A2:8C:F5:B1
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0812
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/2iEPgoGcdO9qJaN71f_vdKKM9bE.roa
Signing time: Tue 29 Sep 2020 09:57:44 +0000
ROA not before: Tue 29 Sep 2020 09:57:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.67.144.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2066 (0x812)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DA210F82819C74EF6A25A37BD5FFEF74A28CF5B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b2:93:c8:b7:88:d2:ac:68:52:99:08:50:c5:
1e:4f:b9:09:95:d7:6d:fe:d2:65:a1:70:56:85:6f:
55:77:8c:7e:f9:84:14:d1:5f:f5:32:19:3c:4a:ff:
58:ed:9f:19:44:f7:06:94:2d:09:96:f5:2a:88:e6:
e7:3b:a3:67:4c:90:0d:72:54:6d:e8:5f:17:1c:13:
3c:5d:14:db:49:00:77:05:f0:f4:f3:3c:ff:73:d0:
fd:14:bb:a4:d1:d0:d0:16:a6:68:28:4d:da:6f:d3:
0f:b4:d3:b4:be:55:3c:cb:54:2d:e5:e3:bd:0c:48:
52:04:d5:d8:2c:c8:73:c7:3b:96:10:65:aa:5d:62:
76:03:bc:27:b7:b3:a4:3b:96:82:bd:65:68:37:92:
b2:e0:1e:5c:f2:76:89:fd:c4:b3:22:88:14:a0:28:
e6:51:06:dd:f5:76:11:13:00:a0:e3:99:6e:12:38:
75:07:d5:45:e5:a7:db:57:b2:e0:c8:04:71:27:a1:
77:64:bb:1b:bf:b9:c5:f8:9c:c0:55:3e:9e:1d:25:
60:84:bc:40:12:35:f9:77:f9:26:13:e3:d1:8e:52:
6c:39:60:0b:1f:38:8f:7f:67:52:81:2f:60:43:0f:
02:43:d0:b2:67:fe:07:ab:2b:7f:d8:2c:8d:d6:57:
ce:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:21:0F:82:81:9C:74:EF:6A:25:A3:7B:D5:FF:EF:74:A2:8C:F5:B1
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/2iEPgoGcdO9qJaN71f_vdKKM9bE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.144.0/20
Signature Algorithm: sha256WithRSAEncryption
2b:69:48:2c:f8:c8:b5:48:cc:82:c5:ab:15:d4:d0:45:df:de:
cf:73:e8:2c:56:1b:c0:ed:2e:20:5a:84:e6:3a:ad:3d:39:a4:
7e:2f:55:40:e5:e0:a5:98:dd:8f:c5:22:2c:de:73:3e:7f:b1:
a6:48:69:80:73:4b:50:e5:2b:fa:56:46:26:4b:d6:aa:17:40:
66:43:29:2d:58:85:aa:8b:a2:3e:c8:8b:4f:79:4f:fb:09:c7:
8a:ca:01:ea:b3:ab:91:5d:2f:fe:2c:72:f5:c5:c9:3c:2d:2a:
c5:af:e4:57:31:37:02:b9:16:97:56:34:38:30:88:c0:dd:31:
58:6e:a2:8f:22:49:19:c3:3a:f2:46:c3:60:05:ef:b1:82:9c:
63:2b:ee:ce:af:26:17:9d:08:35:64:e8:28:55:53:3c:5f:53:
6c:3e:e1:b6:5d:bb:76:00:4b:1b:ee:cd:a9:9a:25:96:6a:ad:
3c:b9:37:73:96:21:9e:95:36:e8:87:3e:dc:07:35:fc:cc:1c:
96:fa:25:fc:1a:3d:7c:36:11:05:1d:94:ed:4e:85:fc:0a:d4:
f2:48:58:c2:74:bc:c0:6e:74:97:99:64:65:e9:07:47:73:7b:
4d:3e:c0:e9:b0:09:a2:94:10:fe:ee:50:db:cf:d9:06:d2:bb:
f4:d2:ec:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:02 2023 by rpki-client on console-ams.rpki-client.org