Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FbZ_TBAMq1DoUOoPVl3a_lBGn_A.roa
File: FbZ_TBAMq1DoUOoPVl3a_lBGn_A.roa (raw, json)
Hash identifier: 7NC5yGwBvNDGZI07hws7EvWleV0P88raW1A6u1SxIi4=
Subject key identifier: 15:B6:7F:4C:10:0C:AB:50:E8:50:EA:0F:56:5D:DA:FE:50:46:9F:F0
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C6E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FbZ_TBAMq1DoUOoPVl3a_lBGn_A.roa
Signing time: Wed 29 Sep 2021 02:49:50 +0000
ROA not before: Wed 29 Sep 2021 02:49:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 219.86.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3182 (0xc6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=15B67F4C100CAB50E850EA0F565DDAFE50469FF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:02:f6:30:a9:47:0f:d8:43:ce:6f:2f:21:f2:
f1:c2:c5:23:1a:1c:c8:23:a7:ba:8e:20:9e:41:34:
b1:0f:d5:66:0c:58:b2:1c:bb:30:e9:50:b1:f2:77:
57:bc:eb:ac:05:9d:0f:d1:8b:e1:6f:75:76:c2:99:
81:3f:92:3f:52:67:fb:63:6d:bf:d1:b7:73:56:7c:
9a:ee:4f:89:7e:b3:31:26:8f:be:f9:4b:6f:14:e4:
f9:89:86:97:60:bc:33:a6:b3:6f:fc:ea:0c:d4:66:
a5:f6:ed:11:ae:37:be:19:bf:76:3d:79:20:06:7e:
fd:b0:96:7d:14:6a:da:08:c6:3f:aa:34:55:e2:39:
90:a0:91:ba:41:71:65:35:64:dc:ab:1a:70:25:79:
bc:ff:83:4a:a0:98:4a:12:2a:73:e3:e0:08:94:f9:
13:d6:23:0a:0a:d5:8d:47:88:bf:94:df:7b:7f:59:
47:04:a0:18:fc:3d:3b:38:b3:fb:aa:dc:2d:eb:70:
45:bc:62:ae:03:ac:e1:5e:88:7d:e5:bd:7e:21:4d:
fe:01:f3:77:20:6d:bc:cb:d7:8b:e8:9e:d1:62:8f:
4b:c4:a5:38:89:01:3e:7c:6f:a2:28:be:12:4c:13:
b7:c3:b2:78:a9:1f:ed:9f:f8:78:c6:61:7b:65:13:
d8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:B6:7F:4C:10:0C:AB:50:E8:50:EA:0F:56:5D:DA:FE:50:46:9F:F0
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/FbZ_TBAMq1DoUOoPVl3a_lBGn_A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.86.0.0/15
Signature Algorithm: sha256WithRSAEncryption
0f:4a:89:9d:90:70:e2:3e:8d:64:19:97:bd:15:93:f8:bf:27:
32:4c:5f:62:2a:1f:f8:d1:1a:59:ae:8a:0a:96:e9:18:6e:0e:
49:c8:10:f3:b2:79:7f:fe:9e:36:db:62:d6:63:88:9b:74:6e:
3e:ba:07:78:4e:fc:23:6b:f4:69:25:dc:f0:8e:a6:9c:2b:31:
e2:fa:e8:f2:e1:9e:e2:82:3b:24:80:62:b4:c4:fc:6a:82:47:
7a:66:8b:e3:74:a2:b0:cf:21:e3:e3:05:74:bc:13:9b:92:77:
e7:e6:b4:70:fe:ea:70:3e:ff:15:29:24:13:4f:40:09:84:6b:
bc:7a:d9:cb:56:a9:ac:a6:4e:a8:79:46:78:d9:bd:23:57:ba:
5f:9f:bc:5e:bb:b9:f1:f2:71:ed:90:b4:5d:6c:70:ac:93:24:
02:77:96:b5:a3:82:e4:42:02:9b:e6:45:f6:91:d8:a5:46:6e:
56:dd:c5:3e:4a:7c:6f:04:c4:93:78:2e:e1:6e:46:79:40:d0:
bc:96:14:74:86:6a:64:19:6c:81:20:ec:d6:ae:e5:14:e3:1e:
de:d7:b7:22:bb:94:be:9d:e3:26:46:de:11:38:e7:f8:02:21:
d6:80:80:fb:4b:22:67:fa:9f:7c:66:8b:a9:47:c4:dc:10:4c:
7d:e8:7c:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org