Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AJA2BB9dU4WP4bXjshKQnDDu0bM.roa
File: AJA2BB9dU4WP4bXjshKQnDDu0bM.roa (raw, json)
Hash identifier: kUo58t6pRtbS519ezfKBCk7oa+xKfuBF3ictR7VuaYI=
Subject key identifier: 00:90:36:04:1F:5D:53:85:8F:E1:B5:E3:B2:12:90:9C:30:EE:D1:B3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AJA2BB9dU4WP4bXjshKQnDDu0bM.roa
Signing time: Thu 15 Sep 2022 02:47:20 +0000
ROA not before: Thu 15 Sep 2022 02:47:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 203.77.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=009036041F5D53858FE1B5E3B212909C30EED1B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3e:6a:38:ac:ae:c4:91:31:c1:65:e7:f7:18:
dd:00:c4:57:a4:22:f8:33:8d:7d:80:48:c8:4a:34:
b1:70:cd:0f:ca:35:f4:53:13:5e:aa:b6:b3:dd:aa:
a8:2a:14:ce:a0:f4:e4:63:6c:99:3a:ad:b6:a5:6d:
e6:14:13:fc:c2:f5:f2:c3:7e:4d:a1:3e:78:a0:e4:
be:98:17:88:5b:90:f9:37:79:dc:13:d4:ad:0e:0a:
e3:74:43:9c:d8:e8:05:8d:2c:02:75:f4:2a:a4:37:
5d:11:a1:29:c1:d7:51:37:01:3d:a6:fa:14:27:7d:
d6:43:a8:eb:aa:6e:f7:ed:84:5e:8d:f9:2d:1e:14:
9d:92:91:d1:cf:4b:a6:81:24:be:09:b6:66:67:b4:
bd:77:b4:b1:9a:11:f7:60:d2:6e:cb:d2:cf:e4:1e:
26:a7:96:80:08:15:a2:6d:ba:ba:a2:de:0d:b0:8b:
70:dc:1d:6b:47:3c:03:cd:ad:e6:6d:15:1a:88:b6:
c7:bd:c1:c7:6d:18:34:c5:7a:cb:4a:83:65:03:b7:
3e:e4:ef:ee:b0:ec:cb:16:8e:9d:85:06:10:1d:e0:
9b:a6:1a:01:30:80:f7:2a:d5:87:74:bf:c7:5f:7e:
69:b1:3f:14:01:a9:27:3f:5c:76:05:47:c6:43:5d:
48:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:90:36:04:1F:5D:53:85:8F:E1:B5:E3:B2:12:90:9C:30:EE:D1:B3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AJA2BB9dU4WP4bXjshKQnDDu0bM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.32.0/19
Signature Algorithm: sha256WithRSAEncryption
80:87:da:49:76:5d:b1:85:d8:cb:a4:e3:06:76:da:5f:67:21:
59:0d:ca:9b:78:ff:8e:1c:67:60:39:4c:73:6c:78:4c:2f:30:
c5:ba:f2:65:4b:6c:d1:05:1f:b7:16:6e:fc:71:3c:82:d0:6f:
92:66:66:af:e0:0e:c9:1c:28:e0:4a:dd:67:eb:eb:3d:29:cc:
6d:ab:c1:a0:3f:f1:02:47:a6:8b:64:96:e9:48:82:cb:7c:06:
ba:44:5d:f6:71:a9:10:57:d5:a4:23:65:66:59:e7:2f:82:89:
03:26:ab:12:c5:d1:c2:d4:d9:25:33:c2:af:99:ba:cb:d0:5a:
37:ad:e5:32:8b:f7:8d:98:84:57:b9:2a:dc:cc:62:6d:30:96:
82:46:2e:e9:f7:3b:ef:c7:8b:16:1c:d0:c7:89:11:f8:89:96:
f0:a9:2b:22:5a:08:7c:43:8d:e0:19:24:f6:04:0f:0f:65:57:
4a:a0:4a:15:2b:0d:ba:f6:ce:25:b1:39:c5:64:37:f2:99:d3:
51:82:48:c8:ff:7f:4b:5b:9b:c3:38:ab:cd:00:39:1a:ea:84:
9e:13:57:a2:94:3e:f3:9e:ea:b0:b4:17:7b:3d:b6:97:6c:d1:
cc:80:b3:12:f7:1c:98:77:4a:e5:7c:63:e6:b3:30:2c:19:7f:
84:40:0e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org