Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3PNzHLP0qkjPNMRkNVt3YqZNcIU.roa
File: 3PNzHLP0qkjPNMRkNVt3YqZNcIU.roa (raw, json)
Hash identifier: LjaSa5S/YkvrdiVuUDRKnwPdP570ue6rui5M05AdXX8=
Subject key identifier: DC:F3:73:1C:B3:F4:AA:48:CF:34:C4:64:35:5B:77:62:A6:4D:70:85
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C98
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3PNzHLP0qkjPNMRkNVt3YqZNcIU.roa
Signing time: Wed 29 Sep 2021 02:50:01 +0000
ROA not before: Wed 29 Sep 2021 02:50:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20940
IP address blocks: 2001:4546:1003::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3224 (0xc98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DCF3731CB3F4AA48CF34C464355B7762A64D7085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:2b:49:72:1b:db:f2:48:51:76:85:dc:b7:7e:
90:cc:c7:eb:1b:5f:74:67:a8:53:22:3d:c6:54:39:
6e:90:3a:3f:34:4e:ef:6c:d5:15:28:67:3c:63:9b:
cb:9c:3f:05:9a:3c:b2:7c:51:53:20:3e:af:37:5e:
dc:f7:9d:b9:9a:b0:b9:96:6b:ee:9d:12:3a:ee:80:
fa:5a:8e:5b:66:4d:2f:54:82:4f:22:a8:67:19:cb:
93:29:64:38:76:ad:91:76:3b:8b:71:f8:36:02:1c:
89:0b:f1:4c:14:4a:99:7b:08:38:3a:e3:a9:00:a8:
42:21:2a:2b:b4:c8:99:ee:d1:70:63:9a:4c:de:d3:
ad:97:24:ab:93:2a:9c:69:e8:b0:f9:e0:c7:f7:2b:
9d:a8:ab:f4:ab:3d:83:04:4c:64:f7:15:d3:94:9c:
e2:d1:09:2a:7e:9a:aa:a8:05:4a:6a:8e:04:56:a5:
4d:fa:e9:36:0f:a8:e2:7f:43:a7:fc:79:3c:e6:05:
ec:75:70:34:24:9b:1e:fe:b5:5a:8b:a4:76:19:9c:
b3:26:39:8a:9c:9c:74:9f:1f:8e:07:77:c9:7a:13:
09:71:2d:1d:41:30:be:5d:ff:fd:fe:f7:e7:02:ec:
16:5a:f5:e8:a4:b7:de:9f:de:d2:c6:a7:7b:eb:47:
a2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F3:73:1C:B3:F4:AA:48:CF:34:C4:64:35:5B:77:62:A6:4D:70:85
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3PNzHLP0qkjPNMRkNVt3YqZNcIU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4546:1003::/48
Signature Algorithm: sha256WithRSAEncryption
67:76:7d:58:c8:81:cf:cf:58:de:f7:a9:1a:b4:64:bf:41:d1:
da:f9:a1:56:5a:87:ec:ad:d6:d6:a7:5c:ac:77:9e:1b:4a:de:
46:5e:ba:2c:7c:a6:24:59:0c:84:a8:b5:2b:7a:f3:5f:d0:44:
7d:ea:a4:73:bd:bf:31:a1:cf:e4:b5:4d:7d:99:c0:63:bd:56:
02:25:19:5d:d0:d9:70:62:58:c6:20:0a:5b:5b:07:07:ca:65:
e2:50:66:dc:57:a9:b2:e4:59:29:4d:db:f4:d8:c5:bf:01:23:
dc:37:c3:fb:48:4b:09:c1:36:c3:97:ad:25:f0:eb:51:41:aa:
a0:9b:77:a8:77:6c:70:58:44:53:54:72:73:7e:ac:04:98:d0:
b8:e0:17:1d:b0:29:8c:a5:42:5a:7d:be:a1:d7:32:9a:c1:f1:
93:98:f9:c7:2f:5d:af:aa:c8:b7:87:c8:90:9e:26:33:64:5a:
4c:85:da:cd:b8:79:1c:7b:53:66:3b:c8:59:55:4b:91:a9:d7:
b4:c0:41:65:c5:91:80:14:06:62:4d:34:42:8b:50:01:52:b8:
e6:ed:2a:8c:79:e5:1f:5c:7e:92:b6:a4:29:4b:f0:14:7b:5e:
1d:58:ec:6d:0b:77:10:9a:db:56:db:8f:9b:fe:2b:35:ee:68:
3d:38:ab:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org