Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6yVunDHjiEtVoKH-pweUgZkMOxs.roa
File: 6yVunDHjiEtVoKH-pweUgZkMOxs.roa (raw, json)
Hash identifier: ftH8It4mjo2tMhStJhq+mVKJ+eFM9IPrUB4gTY6aSQg=
Subject key identifier: EB:25:6E:9C:31:E3:88:4B:55:A0:A1:FE:A7:07:94:81:99:0C:3B:1B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6yVunDHjiEtVoKH-pweUgZkMOxs.roa
Signing time: Thu 15 Sep 2022 02:47:31 +0000
ROA not before: Thu 15 Sep 2022 02:47:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 203.77.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EB256E9C31E3884B55A0A1FEA7079481990C3B1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ae:d2:21:d2:05:50:60:6f:5c:ca:d9:b1:49:
a7:51:10:46:4f:c9:64:fd:e4:4f:ec:f2:7b:7a:9b:
7c:10:24:40:2e:c5:2d:b6:8d:6a:dd:e6:8d:0d:3a:
44:63:fc:42:ec:1e:dd:ae:7c:cc:56:c5:d4:ae:a1:
dc:3e:df:97:e7:44:56:8c:ae:01:41:20:82:0e:56:
68:17:3c:8d:f8:27:2d:4c:d6:16:29:a2:cd:70:7c:
70:44:ec:1b:a3:4f:fd:5a:98:eb:87:24:a9:b0:67:
a0:14:ba:f4:7d:c4:ba:e7:0c:d0:16:e1:e1:06:df:
07:34:8a:b4:e1:47:e3:e6:15:f4:dc:a7:26:02:54:
bd:b7:9e:08:cb:17:04:77:53:de:67:db:a5:92:0e:
c1:cc:fe:15:91:94:d8:66:23:17:f6:5d:63:9c:a5:
0a:56:55:98:22:fc:1b:3f:72:36:0d:66:ee:b7:09:
3d:92:39:63:d5:93:ca:63:69:1d:c3:78:09:32:2e:
9a:7b:9d:c8:6c:7a:bd:ad:0a:b5:65:53:3c:34:2f:
9b:dd:06:10:89:70:85:2e:5f:0c:f4:16:51:98:31:
bf:63:2d:b9:cd:ef:7c:fe:ea:78:f7:c3:da:b2:ec:
69:93:ab:a1:cd:bd:28:e7:05:bb:58:5b:b1:d9:f6:
e7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:25:6E:9C:31:E3:88:4B:55:A0:A1:FE:A7:07:94:81:99:0C:3B:1B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6yVunDHjiEtVoKH-pweUgZkMOxs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.32.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:85:76:41:7c:c7:98:58:0c:31:09:f2:d3:4c:63:68:61:d8:
e3:c9:e7:6a:b3:d6:fa:f9:01:cb:54:88:98:4b:b1:89:6d:04:
e4:5d:89:95:09:db:68:24:cc:e7:98:8a:65:c2:3b:b9:7b:d3:
2e:5c:7f:91:3f:ee:75:52:c8:90:72:40:55:c3:d4:8f:8b:b8:
78:c0:b5:ae:e6:0c:03:6b:e0:f9:c3:c5:8b:26:e5:3a:7c:da:
5c:d7:89:3e:22:dd:aa:71:6d:e5:1d:91:99:ba:13:02:ab:f3:
05:cd:6b:db:f7:d7:c7:0c:68:15:b6:be:f3:83:b2:67:2b:f2:
4f:0e:2f:15:d3:cc:a3:5e:78:57:3c:71:d5:3d:03:9f:82:9d:
1d:59:9c:a3:0b:8e:9e:fb:5a:7f:c2:c8:89:21:4d:64:38:14:
fb:45:9c:9d:f5:97:38:4c:19:ee:8e:13:1c:e8:ef:3f:52:92:
b6:8a:c7:e2:f4:ec:1e:c2:60:5b:fa:7e:c5:db:4c:07:b1:fa:
dc:ba:90:49:45:8f:4f:8b:3c:6a:db:fa:9b:57:72:77:bf:23:
81:ed:a4:61:13:72:f9:84:2a:c4:a6:34:63:8d:7f:28:7d:fe:
57:69:a0:d8:8d:94:67:d6:5d:0b:55:4b:9a:f9:99:e8:76:7f:
db:ee:7b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org