Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CXjgnP0OmGtj76BG343MIKPFEeg.roa
File: CXjgnP0OmGtj76BG343MIKPFEeg.roa (raw, json)
Hash identifier: mR9KR87j1mPZFSYkuwZ+VB0OCtsuULmYK7v1F6iPKq0=
Subject key identifier: 09:78:E0:9C:FD:0E:98:6B:63:EF:A0:46:DF:8D:CC:20:A3:C5:11:E8
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 080F
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CXjgnP0OmGtj76BG343MIKPFEeg.roa
Signing time: Tue 29 Sep 2020 09:57:43 +0000
ROA not before: Tue 29 Sep 2020 09:57:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 219.81.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2063 (0x80f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0978E09CFD0E986B63EFA046DF8DCC20A3C511E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c6:61:e8:19:c6:5f:fd:4a:29:f8:7b:0b:92:
6b:29:70:2e:05:09:e7:c6:a0:87:46:89:a5:ee:51:
33:f0:31:f4:72:0d:ba:00:42:68:08:a3:a8:0f:76:
77:1c:3e:e1:de:e1:71:20:9e:e7:87:7d:6f:a6:84:
ac:a4:05:35:71:37:3b:e9:e6:74:ee:f6:72:40:0c:
76:86:13:1f:05:77:24:ee:77:01:28:ad:22:07:db:
77:84:94:ce:31:28:52:16:f4:0c:a3:f9:bb:2f:10:
20:00:f1:8e:c2:b5:8c:c1:28:2a:2b:21:c0:5e:cd:
5b:d4:40:de:d5:98:b6:e1:54:9b:ed:99:62:e2:8a:
47:9f:5c:c5:b5:57:ae:72:b4:d9:aa:07:52:c4:52:
a0:44:1e:6a:d2:60:64:59:6a:b9:e1:e8:5d:e2:97:
9a:cd:34:26:d7:20:f6:4a:84:ae:7e:cf:d1:db:91:
9d:09:07:41:f6:cc:12:1f:a3:d4:4a:36:66:68:7c:
64:f2:f8:57:bf:e7:d5:68:b6:b2:0a:d3:0a:48:a3:
8d:01:76:6a:56:6c:4f:4c:9f:49:44:7b:ce:a2:88:
fe:51:b1:5c:ba:a1:3d:e6:52:f9:df:25:1f:72:a6:
93:aa:1d:8c:95:e0:28:f4:63:7b:82:7d:45:e4:e5:
36:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:78:E0:9C:FD:0E:98:6B:63:EF:A0:46:DF:8D:CC:20:A3:C5:11:E8
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CXjgnP0OmGtj76BG343MIKPFEeg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.81.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3b:cd:b7:21:d5:38:b7:22:72:19:2a:74:7f:b1:93:46:c2:b3:
f5:7c:81:e2:06:09:d1:31:b5:2f:27:2a:11:98:e1:6e:e9:2f:
52:4f:2e:38:73:bf:7b:e8:05:a2:eb:95:3c:97:8c:0e:26:1f:
e3:b7:f9:be:b6:0e:7d:7d:f8:3c:c2:de:28:1a:bc:75:a1:e4:
60:9e:f7:0f:4f:c7:2d:df:35:44:dc:af:ea:6d:f1:a8:73:f7:
13:1e:da:b2:02:a4:1a:7f:db:4e:aa:25:d4:71:71:65:e3:47:
b3:5e:bf:e1:6f:4a:2c:aa:67:34:70:47:66:b5:ad:92:ab:e6:
6c:8d:5f:40:53:8b:2d:8d:8f:d5:05:75:42:7b:8c:30:e7:3a:
45:69:c2:7d:c6:ce:62:44:5c:c1:f2:5b:34:37:77:a3:b0:37:
42:bb:4f:cb:6c:32:3d:a0:f0:b1:f6:dc:16:6f:68:fe:04:59:
d4:87:2a:a6:ed:4b:4e:dd:6a:bb:c8:72:37:ca:04:d5:18:ac:
17:2e:d7:e4:00:e0:88:6f:4a:12:b6:92:5a:96:b9:6e:34:8c:
6b:36:2f:13:0b:a1:a3:9c:a9:ee:b3:65:21:bd:a2:7c:8b:13:
86:3d:67:3f:ba:04:ec:7b:42:78:d5:83:6f:0f:94:65:64:ed:
70:8e:14:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org