Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/G1eW-haE6EUP7LvNPPYWjmOIYKI.roa
File: G1eW-haE6EUP7LvNPPYWjmOIYKI.roa (raw, json)
Hash identifier: Ht7N15mC5O5GevOMYZIJRvhnk2UF8tAQi4LUxJVb79c=
Subject key identifier: 1B:57:96:FA:16:84:E8:45:0F:EC:BB:CD:3C:F6:16:8E:63:88:60:A2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0D84
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/G1eW-haE6EUP7LvNPPYWjmOIYKI.roa
Signing time: Mon 20 Jun 2022 08:24:25 +0000
ROA not before: Mon 20 Jun 2022 08:24:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 203.77.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3460 (0xd84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Jun 20 08:24:25 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1B5796FA1684E8450FECBBCD3CF6168E638860A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:47:e8:88:93:1c:37:53:6b:7b:a0:88:62:73:
cb:da:5b:ad:39:1f:55:a2:66:10:ab:b2:73:04:4b:
cd:5e:1d:b3:3d:ec:5f:66:53:9e:d9:7d:c4:95:8f:
48:76:ee:f8:2a:b1:aa:00:11:f2:84:27:56:78:dc:
c4:1d:5c:e4:91:f7:b3:4c:83:21:fd:a1:eb:fd:e8:
fa:cd:4b:ba:7d:a7:1a:b0:d0:38:57:ac:fa:f3:e0:
70:91:61:41:75:5d:c4:93:d6:08:19:60:83:1a:74:
70:d4:ca:1f:ec:11:90:9e:f6:7e:0f:91:7f:ce:18:
87:2c:82:0e:f2:7d:fb:92:aa:c5:06:21:dc:20:9f:
21:9e:e9:96:c9:82:c2:5f:08:35:44:b8:23:41:c5:
f5:55:c8:8b:bf:fd:25:85:b1:d0:ae:15:76:4b:05:
50:e5:e1:36:f8:a3:c3:20:78:bc:ce:b8:34:c2:04:
a0:10:c4:5e:73:69:44:30:fa:9b:e2:af:0e:0f:da:
23:c2:75:c3:21:0a:a6:3e:9c:46:53:c0:06:0d:49:
bd:c4:3d:fc:90:34:0b:5e:67:f9:ab:56:29:cd:f4:
d5:a2:fb:57:b7:ca:92:42:97:6c:dd:89:dd:ac:b1:
a5:3f:b5:db:33:1d:ff:a4:08:a9:31:45:d6:43:9f:
3e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:57:96:FA:16:84:E8:45:0F:EC:BB:CD:3C:F6:16:8E:63:88:60:A2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/G1eW-haE6EUP7LvNPPYWjmOIYKI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.44.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:9f:b7:ea:cf:01:10:a2:06:f9:9f:37:e7:14:46:a3:8e:a4:
c0:dd:d1:22:ec:63:d8:75:87:eb:8a:bc:62:eb:dc:67:1b:34:
21:d6:76:ba:aa:45:48:fc:14:78:be:6b:6c:12:bc:7f:ec:43:
02:2a:91:d7:b9:8b:c8:5c:d1:d1:37:74:e4:20:15:f9:35:cd:
53:bb:2d:e6:ee:05:8a:47:30:4e:4f:20:8c:ff:53:ed:cc:42:
82:37:4c:d1:2e:34:bf:a5:d6:c2:1c:85:21:39:78:41:00:af:
bb:ca:9c:f5:e7:35:f6:4f:75:bf:cb:21:62:84:41:03:89:ab:
e0:6b:93:6a:99:76:c8:eb:50:a4:22:a2:b8:aa:48:a1:bb:8f:
94:6f:21:e2:7a:f0:5f:17:b8:69:42:32:4f:e7:cd:bd:d3:cf:
38:d7:d5:31:a0:68:dd:ae:96:63:d5:df:5d:97:01:13:d2:ee:
27:7a:60:e0:1a:a7:69:0b:30:f6:7d:27:cf:04:d5:ef:58:92:
02:4f:5c:0a:28:82:d0:24:f1:57:b6:6b:44:94:33:a9:9a:01:
bf:ef:14:24:07:19:44:17:27:22:30:8f:19:5e:0d:31:7c:45:
c5:4c:18:aa:f7:56:39:0f:ab:78:2d:de:65:0a:f0:f9:55:78:
71:d9:d0:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org