Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BgbbwfbEG2qsKb1d5zThvNB88hI.roa
File: BgbbwfbEG2qsKb1d5zThvNB88hI.roa (raw, json)
Hash identifier: +IXvfcknwdXwU7hP/WiEeaNOarAvmlAeOYO2cwmAAuk=
Subject key identifier: 06:06:DB:C1:F6:C4:1B:6A:AC:29:BD:5D:E7:34:E1:BC:D0:7C:F2:12
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BgbbwfbEG2qsKb1d5zThvNB88hI.roa
Signing time: Thu 15 Sep 2022 02:46:49 +0000
ROA not before: Thu 15 Sep 2022 02:46:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 203.77.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:46:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0606DBC1F6C41B6AAC29BD5DE734E1BCD07CF212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:84:de:9b:00:4e:52:16:01:8d:2e:73:5a:ca:
f8:b8:23:cb:2f:81:19:1f:8b:a1:ae:31:52:75:5e:
0b:14:08:60:ec:51:ce:0b:fc:42:96:95:b8:2a:11:
12:c0:02:8a:3d:25:f3:c7:01:9d:90:d9:4d:99:34:
ed:95:bb:fa:e4:37:84:38:7a:82:d3:81:54:c1:b9:
f3:a1:a6:3a:21:a6:27:37:3e:24:e3:b9:b9:89:4e:
23:2a:91:22:63:f6:fd:92:23:36:1e:e3:3e:1d:32:
24:78:25:38:4b:a0:9b:29:bb:c8:b3:ff:86:cf:de:
46:d0:b5:7b:1c:b5:bf:36:da:3e:9f:cd:b5:8a:c0:
dc:36:76:ba:52:d8:e0:6b:fe:36:f2:cf:ff:4c:ff:
fe:89:a3:40:af:ec:29:43:5a:35:8a:98:58:bb:bd:
ea:d8:85:32:55:4c:de:2e:2e:36:71:38:2e:fb:c2:
d8:66:bf:22:b7:39:40:70:d8:aa:af:68:a9:f3:f0:
86:d6:d6:4a:71:06:5f:c3:27:16:b2:6c:d2:75:ae:
b9:b5:c6:df:7f:12:cc:ea:80:74:52:9b:1d:d1:7e:
5b:a5:fd:dc:64:c7:c3:14:6f:34:a0:2b:b2:10:b9:
a5:1b:16:af:44:46:b3:fd:89:02:6f:aa:a5:ea:a8:
b8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:06:DB:C1:F6:C4:1B:6A:AC:29:BD:5D:E7:34:E1:BC:D0:7C:F2:12
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BgbbwfbEG2qsKb1d5zThvNB88hI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.64.0/20
Signature Algorithm: sha256WithRSAEncryption
41:7d:59:8d:cf:f8:5d:0b:af:92:2b:31:fc:8b:a7:5a:f4:88:
b9:a0:e8:f0:a2:e7:e3:b6:a4:41:8e:71:e9:32:c4:c9:0e:da:
9e:56:30:c3:6d:ab:6c:0c:a7:71:74:3a:6b:34:fb:a1:de:7e:
c8:17:cb:2f:11:c2:d4:fa:5f:4f:48:26:8f:5d:34:d0:da:40:
77:8f:dc:3e:2e:b1:1d:6f:21:da:02:d4:a8:46:70:ba:8f:b4:
76:da:14:8b:b5:aa:45:70:32:d3:68:a0:5c:3d:f4:60:d4:16:
44:30:06:5e:ad:cc:61:7a:35:61:1d:2f:f6:72:11:fe:ad:41:
59:d9:eb:7f:e7:b9:50:82:2f:dd:ad:86:38:bb:e9:e4:7f:2f:
ee:6e:d8:6f:d6:97:0f:44:c2:2b:dc:b8:7b:ba:a2:c3:a7:b6:
98:1d:ee:71:1c:e9:a4:69:ae:2a:cd:92:19:12:e5:1f:3c:60:
ae:46:e7:16:b1:42:dc:4d:71:17:76:fc:f9:44:9e:ac:82:72:
38:b5:be:bf:48:cb:72:f5:29:79:16:ad:7d:1a:c1:42:fb:dc:
1c:7c:41:be:c9:cf:94:92:22:7f:24:a8:36:1e:fa:0d:17:c1:
8f:91:38:37:61:85:c4:e5:40:91:95:f1:36:5d:e5:cc:34:7d:
fe:7d:c0:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org