Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GzoI3wGr_ag6G_6WH-4ViCuSGXc.roa
File: GzoI3wGr_ag6G_6WH-4ViCuSGXc.roa (raw, json)
Hash identifier: K0VC7LgsWrk+fHHCaEQiazVujoTC05SUxfkO0K9z8yk=
Subject key identifier: 1B:3A:08:DF:01:AB:FD:A8:3A:1B:FE:96:1F:EE:15:88:2B:92:19:77
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 100B
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GzoI3wGr_ag6G_6WH-4ViCuSGXc.roa
Signing time: Fri 01 Sep 2023 09:37:40 +0000
ROA not before: Fri 01 Sep 2023 09:37:40 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 210.63.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4107 (0x100b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:40 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=1B3A08DF01ABFDA83A1BFE961FEE15882B921977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f1:c2:ea:3e:5e:ca:b0:d0:df:77:8e:40:46:
c7:cd:5b:af:1f:ad:36:c0:9f:a1:90:f1:fb:f6:8a:
1f:d4:95:d3:72:24:ab:41:b1:8d:a4:d7:04:f7:a7:
9c:7d:66:93:2b:ff:68:83:ec:e9:87:b8:dc:66:2a:
0b:04:54:bc:28:92:b8:1e:0e:69:3a:04:91:cb:b4:
c2:93:d2:ce:e9:5f:5e:0d:2d:12:6c:9c:d9:c0:43:
27:cc:7b:69:ae:65:b0:fb:dc:df:a6:c1:c7:d7:b8:
a5:67:cc:35:02:76:93:83:86:98:2e:8f:56:ff:46:
05:df:e4:78:f5:bd:28:e0:a4:2f:11:52:d7:c8:bc:
18:18:0c:fa:75:02:7e:e8:e0:d2:e5:d8:5a:99:6b:
51:2e:4b:44:5e:31:cb:59:5d:d0:6f:37:f9:ac:24:
74:05:cc:69:0d:72:43:cc:bd:94:b6:93:4b:f3:ed:
37:1d:60:1d:07:80:42:b6:1c:31:44:93:67:8c:96:
51:24:21:2a:a5:41:4a:37:34:22:06:62:84:04:b1:
52:10:aa:8b:4a:00:13:b9:49:85:a8:ae:2a:9a:77:
3c:7b:23:5d:08:8f:3c:18:5c:13:69:63:35:b5:70:
0d:5c:cf:57:da:ac:84:56:7f:ef:2f:f4:0a:34:b5:
b2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:3A:08:DF:01:AB:FD:A8:3A:1B:FE:96:1F:EE:15:88:2B:92:19:77
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GzoI3wGr_ag6G_6WH-4ViCuSGXc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.160.0/19
Signature Algorithm: sha256WithRSAEncryption
27:e6:a5:9f:c8:0b:9c:2f:dc:64:a9:2f:84:db:a4:25:f2:e6:
e5:00:8f:74:10:29:80:0e:01:28:33:b6:f1:2e:4c:9e:43:86:
86:60:0b:9d:4f:5b:d7:20:e6:16:8f:b0:ec:31:4b:87:01:b0:
11:fb:2e:d6:67:13:ca:e0:c2:37:bb:b3:a1:9f:48:a3:42:4c:
be:c1:7d:a5:03:ed:db:0a:8b:e0:3c:59:52:ed:d6:81:1c:c6:
45:0c:75:33:b1:f7:91:5d:10:fc:a9:f9:8f:85:c1:86:b6:cf:
8a:bc:eb:72:71:e1:32:97:57:a5:d1:fa:9f:8c:23:4b:f2:79:
16:40:20:05:f8:ab:95:7b:64:08:26:72:4e:50:96:04:a1:d3:
7e:95:e7:33:f4:af:8a:83:76:b2:d3:d2:5b:48:5b:da:9c:a5:
83:5e:74:9e:5c:e9:42:db:d1:ea:1d:44:cd:f9:2c:ae:69:a0:
46:90:e5:16:4a:85:b9:bb:6d:6c:bc:a1:72:cf:da:28:37:7e:
a3:a3:4d:de:16:0b:16:a2:dc:a4:55:64:8e:7e:de:73:f8:9a:
64:c8:73:d1:1c:b1:00:4b:a6:cc:3f:8b:a3:61:50:07:a5:8f:
cd:b2:0e:6a:d6:aa:a5:4e:9a:75:ac:eb:e8:11:51:eb:bb:57:
ca:53:20:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:05 2025 by rpki-client