Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IFS7QmL-yLuZSM6GT9SLqhrAL-U.roa
File: IFS7QmL-yLuZSM6GT9SLqhrAL-U.roa (raw, json)
Hash identifier: EGqIWQTdvINGm0OYiiEdB639oRbyyVZsUdZUqIP70mk=
Subject key identifier: 20:54:BB:42:62:FE:C8:BB:99:48:CE:86:4F:D4:8B:AA:1A:C0:2F:E5
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C45
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IFS7QmL-yLuZSM6GT9SLqhrAL-U.roa
Signing time: Wed 29 Sep 2021 02:49:37 +0000
ROA not before: Wed 29 Sep 2021 02:49:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 49.214.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3141 (0xc45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2054BB4262FEC8BB9948CE864FD48BAA1AC02FE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:99:26:30:61:42:c1:9f:95:88:72:70:dd:61:
31:13:7d:98:2c:93:b0:9a:e2:c7:f6:3c:72:ff:89:
e5:90:5e:66:71:8a:08:19:56:3a:60:ea:51:21:f5:
f7:70:72:aa:8f:01:fd:c1:c6:f1:32:db:fc:77:30:
8a:88:bd:85:a1:4a:1f:8e:02:d0:bd:d4:e1:94:56:
4a:1d:4d:53:cf:b3:10:00:98:85:5e:e7:b3:2b:aa:
be:96:02:79:14:e4:8a:07:c2:00:2d:1a:70:10:53:
86:12:71:0e:fe:a1:99:0a:46:e5:25:3f:c2:16:9f:
8b:18:ba:a1:b4:28:b2:b8:ef:8a:70:b4:4b:44:13:
16:63:82:b7:4d:9e:80:78:17:de:8c:7b:db:33:56:
bb:34:3e:ea:df:c0:09:eb:6d:b4:6b:df:94:db:c1:
15:20:eb:48:9a:77:37:4b:d8:b3:08:ef:a5:42:8f:
42:4f:15:a6:fe:8f:00:e5:40:64:02:2d:2b:06:a0:
c3:55:34:90:92:0f:10:9a:a5:68:69:2d:ed:3b:1e:
9f:22:a3:6a:bd:c1:6e:e7:ad:6b:13:53:aa:f5:98:
8c:27:e0:fc:39:2f:3f:20:b1:cb:a9:87:b0:16:5d:
83:c3:62:0d:c5:39:cb:67:76:25:1f:e3:fa:9e:f7:
f9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:54:BB:42:62:FE:C8:BB:99:48:CE:86:4F:D4:8B:AA:1A:C0:2F:E5
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IFS7QmL-yLuZSM6GT9SLqhrAL-U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.214.0.0/15
Signature Algorithm: sha256WithRSAEncryption
0a:4c:d6:c1:b2:98:07:5d:51:35:03:36:17:7e:93:6c:19:76:
1a:d9:0c:e7:9f:bc:32:f2:59:4d:2d:32:bf:37:45:c2:1c:fc:
09:6b:1b:67:15:ea:e0:7b:22:52:ca:e1:1a:74:af:37:21:f2:
3d:19:32:33:e7:f5:cf:d0:94:4a:ab:f7:54:31:bc:68:1f:fc:
7a:31:a3:f6:02:c1:98:3d:6a:24:0e:c3:ea:43:51:ec:ca:5b:
aa:c9:bc:95:6e:61:0c:09:16:e4:a1:68:75:0a:81:a3:cb:b3:
d6:e6:46:ae:1a:6b:87:9e:8b:3a:60:25:55:da:84:76:eb:f3:
d2:80:de:45:06:0d:b5:bf:f1:4d:4a:15:d9:4f:98:ca:76:db:
73:7a:93:08:aa:51:2f:b9:8b:bb:aa:26:ed:b5:3c:73:0e:13:
75:f7:7e:04:c1:35:0f:aa:38:b3:1a:8b:94:f1:4f:6d:e6:27:
cb:66:34:4d:ce:55:0e:9a:83:b7:b4:56:cd:5e:90:90:d6:41:
0a:30:e4:7f:4b:54:a5:d8:df:ff:44:e2:6e:d0:29:50:a9:20:
2b:9a:6c:4c:ab:e0:27:17:bd:55:44:e3:4c:b3:6a:75:ca:a3:
a9:59:a2:ab:80:63:45:a8:a9:9e:76:a4:ad:31:13:bc:44:46:
6b:5e:a9:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org