Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GFNzg0A4c4tZObSGxIqMN-WQ_Q8.roa
File: GFNzg0A4c4tZObSGxIqMN-WQ_Q8.roa (raw, json)
Hash identifier: CfjLc/UzKsX4VD3UFCzZPvF2H/0/6tSGKbOXsr9wuO0=
Subject key identifier: 18:53:73:83:40:38:73:8B:59:39:B4:86:C4:8A:8C:37:E5:90:FD:0F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 07FD
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GFNzg0A4c4tZObSGxIqMN-WQ_Q8.roa
Signing time: Tue 29 Sep 2020 09:57:37 +0000
ROA not before: Tue 29 Sep 2020 09:57:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4662
IP address blocks: 203.65.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2045 (0x7fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:37 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=185373834038738B5939B486C48A8C37E590FD0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:78:83:df:2c:15:9f:d1:90:f0:7f:3d:b2:05:
a4:00:a0:39:61:ce:b0:c4:b4:04:39:1b:68:a9:4b:
5b:b0:09:0a:cf:cb:67:51:8d:c6:90:ec:ca:5d:ab:
19:70:65:d2:c3:24:1d:df:94:26:cc:19:e5:e7:5a:
82:c7:b8:38:72:5b:69:2b:db:ae:af:eb:da:ef:c1:
45:f5:86:b4:30:3a:95:33:ea:2c:30:9e:78:b7:d8:
9a:c6:08:57:f5:e2:e6:16:b8:5c:b8:da:79:b2:48:
4c:81:b4:d8:a1:89:43:15:b2:c9:f1:d8:49:66:d7:
36:b9:95:db:05:3e:fe:d6:4e:d2:d0:ed:25:c7:3f:
3b:16:15:f9:25:a2:6b:75:cc:ee:f6:ad:a5:ee:87:
a6:ec:c1:ce:37:7b:2b:42:85:cf:fa:e2:33:db:42:
bc:7e:dd:8b:c0:56:7b:f3:ea:59:b3:2f:3c:29:e8:
bc:ac:e1:49:e7:b7:88:fb:c3:d9:26:6f:f9:9b:e1:
2a:b6:38:74:d8:f6:81:3c:80:0c:e2:16:a8:ba:3b:
54:98:d9:a7:ba:c6:96:fa:72:8f:ac:89:47:86:ca:
2b:81:16:cc:b1:81:0f:65:55:de:9e:95:38:28:4f:
84:3c:db:d5:8b:b9:86:09:69:21:15:39:63:5b:49:
84:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:53:73:83:40:38:73:8B:59:39:B4:86:C4:8A:8C:37:E5:90:FD:0F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GFNzg0A4c4tZObSGxIqMN-WQ_Q8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.160.0/19
Signature Algorithm: sha256WithRSAEncryption
68:5c:ec:07:bb:6c:0d:ee:16:f6:27:26:db:20:05:24:0c:02:
3a:a4:fa:72:48:25:67:0e:83:d7:b0:53:cc:8b:b3:8d:cc:af:
1e:2c:3c:ac:d3:bf:c9:52:0e:25:20:df:cf:a5:c2:6f:b1:57:
53:a3:ad:bc:9f:41:74:2a:08:a5:0c:fd:e9:9e:f4:1b:c9:7a:
08:78:18:80:c9:22:c2:47:63:3e:2a:f9:d1:6a:6d:1b:30:f3:
54:bf:fb:38:eb:52:2b:fe:26:b7:7c:a6:84:67:6d:e4:35:01:
dc:f8:14:35:70:bb:b7:48:81:de:e2:1c:f9:72:5f:45:de:39:
8e:8a:1e:15:50:04:a8:71:d4:8e:32:42:bf:40:2a:6f:7d:ff:
ea:31:76:fe:52:7e:6f:9c:74:f4:4d:8a:12:0e:e2:42:2b:33:
aa:44:86:27:92:f3:9c:9d:7f:5b:88:25:ac:3e:08:20:ae:00:
c8:23:7d:ef:61:5b:c7:3a:d7:17:80:d1:86:3c:8f:79:0d:d3:
ad:e7:4b:b9:46:dc:61:bd:0e:78:6a:df:6a:7b:2a:03:e4:ef:
b9:d6:e8:9c:b8:b0:a7:66:68:9b:c2:1e:86:29:51:62:fb:a9:
04:f7:9c:ed:4f:ec:03:57:59:30:d1:4d:f6:c1:9d:2e:b7:28:
ed:af:b7:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org