Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/F4ILNBhslNkPc4oDrZ9XCtk3jGg.roa
File: F4ILNBhslNkPc4oDrZ9XCtk3jGg.roa (raw, json)
Hash identifier: XuRoIvu40HjCiJ20QBhlflyxFSYkbSThRy3gvuWY7OQ=
Subject key identifier: 17:82:0B:34:18:6C:94:D9:0F:73:8A:03:AD:9F:57:0A:D9:37:8C:68
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A88
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/F4ILNBhslNkPc4oDrZ9XCtk3jGg.roa
Signing time: Sun 07 Feb 2021 11:36:32 +0000
ROA not before: Sun 07 Feb 2021 11:36:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 203.77.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2696 (0xa88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=17820B34186C94D90F738A03AD9F570AD9378C68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:6a:6b:b3:dd:6b:9d:10:ef:12:93:74:d2:64:
78:1b:02:be:22:1b:d4:ea:42:6a:99:4d:3a:5c:ee:
19:d6:01:53:08:69:09:0c:fa:9a:6d:c3:c6:a8:91:
ec:fa:6b:57:be:8a:0b:7f:ca:a7:a0:c7:a0:1f:31:
a3:78:d8:be:62:fc:f5:e4:e4:a3:66:d6:9b:d4:e1:
0a:7a:4b:7a:d0:e4:43:64:86:13:99:5b:2e:18:1f:
10:c3:73:09:f3:74:57:a4:29:73:61:a1:cb:c6:a3:
5b:7c:f9:f7:62:c7:ca:82:a1:fc:b4:9b:d6:b5:b5:
c5:1f:99:ff:d9:40:de:66:59:76:54:bd:49:16:b6:
80:99:84:b7:f4:73:90:28:24:fa:33:a3:a8:85:07:
ab:58:20:ee:6b:a9:28:d7:5a:b9:96:60:d2:39:f4:
0d:fb:f4:a6:ad:7b:2a:c7:83:55:d1:a3:bc:a5:11:
24:93:1f:3e:5e:5f:aa:cf:ab:a6:41:13:cb:ea:f8:
9e:70:4a:57:63:cc:98:28:fa:3c:57:15:d4:83:89:
cf:b8:a8:c3:8f:1a:3a:32:9b:7b:83:40:1a:f0:82:
da:b8:82:a9:28:60:8b:45:36:db:41:f7:46:f1:7f:
09:c3:48:50:9f:a0:5e:b6:f0:69:3e:26:53:89:05:
58:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:82:0B:34:18:6C:94:D9:0F:73:8A:03:AD:9F:57:0A:D9:37:8C:68
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/F4ILNBhslNkPc4oDrZ9XCtk3jGg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.64.0/18
Signature Algorithm: sha256WithRSAEncryption
46:ae:84:c1:a2:46:99:eb:17:29:8f:c6:ec:ab:a0:c9:1d:60:
60:13:c2:b8:7a:fb:17:d8:72:73:9e:67:a2:c9:f8:4b:a5:de:
14:a3:9b:f6:8f:a3:5f:7b:b3:33:b7:a0:4e:08:31:7e:cb:ab:
29:ce:95:9b:79:e2:ed:bc:14:50:4a:83:da:20:f9:49:34:b9:
5a:7d:41:7c:47:2c:2e:e7:80:0f:c4:93:82:7c:20:8b:6b:48:
77:04:b6:fb:8f:59:48:24:bf:4c:e9:07:a0:5d:c6:87:1c:a0:
4b:72:30:4d:85:5d:50:bd:d1:29:0d:74:e9:fb:d1:b7:6b:ad:
00:28:8f:57:51:19:92:28:de:70:7b:e3:a5:06:10:e0:2b:a3:
97:6a:e2:b0:16:a3:5c:cb:32:2a:1c:71:52:bd:88:d3:b8:cc:
28:22:a9:dd:42:19:de:a8:de:43:fa:9c:6d:4a:d6:89:80:46:
52:0b:1a:d7:59:2a:26:8c:95:9e:f7:12:28:54:f1:af:f7:6e:
2b:e6:aa:32:0b:4f:7c:73:02:d1:55:f9:f5:03:9d:1d:a0:ba:
9f:62:fe:d8:82:93:da:fe:36:72:29:be:e0:4e:ce:8d:ca:3b:
51:ae:db:39:a8:4e:31:f0:29:d7:d6:ee:da:8c:0c:2e:42:a6:
06:e7:12:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org