Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IH5p3dIGRxSEp_qjVrvk21W2JtM.roa
File: IH5p3dIGRxSEp_qjVrvk21W2JtM.roa (raw, json)
Hash identifier: BR91EwOhTzvTnE4Se9xP/Ja+U9jpcvPCVUJLoOjQbNU=
Subject key identifier: 20:7E:69:DD:D2:06:47:14:84:A7:FA:A3:56:BB:E4:DB:55:B6:26:D3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C5D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IH5p3dIGRxSEp_qjVrvk21W2JtM.roa
Signing time: Wed 29 Sep 2021 02:49:44 +0000
ROA not before: Wed 29 Sep 2021 02:49:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.62.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3165 (0xc5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=207E69DDD206471484A7FAA356BBE4DB55B626D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4d:47:56:89:e8:66:b2:72:e6:a4:91:8a:c5:
d3:49:6f:04:cb:02:68:0a:4d:fa:6e:b2:db:1e:c9:
b6:14:d2:8f:43:4b:7e:d7:53:66:86:fd:81:8f:53:
28:c7:50:1c:14:81:bc:a6:a1:45:ee:a2:29:5a:33:
f2:83:b2:95:63:bb:71:65:73:d0:22:ec:4f:1a:f0:
c4:32:5e:3e:bb:36:ba:ae:02:85:14:ee:db:21:97:
44:4b:5a:09:c7:60:6b:98:a6:ff:29:50:42:c1:50:
31:18:e1:75:bb:0f:0c:dc:e4:d5:b1:c9:69:5d:68:
69:9f:7f:c4:5b:b1:8f:89:09:13:54:13:c7:0e:0d:
86:73:00:c5:7f:ae:15:83:8c:a9:c9:ff:32:d3:58:
7e:a7:d8:30:e2:e8:69:2d:18:f3:ef:cc:09:1c:f2:
0b:40:ce:50:13:4a:c0:f7:11:3f:75:99:2f:b8:5c:
8a:94:5f:1e:15:8d:64:f4:b4:ed:31:94:ec:1a:a2:
39:4d:ca:41:64:03:2f:2d:a9:54:e1:96:ce:3a:48:
5b:54:e1:24:fa:ae:53:d8:10:a3:33:42:01:34:c1:
22:42:2d:45:02:6f:0d:10:4c:87:76:f0:0d:11:46:
44:3a:e0:1e:6c:fc:d0:d0:8d:54:35:f9:93:c4:6d:
93:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:7E:69:DD:D2:06:47:14:84:A7:FA:A3:56:BB:E4:DB:55:B6:26:D3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IH5p3dIGRxSEp_qjVrvk21W2JtM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.32.0/19
Signature Algorithm: sha256WithRSAEncryption
74:7b:66:66:8b:ab:6b:13:85:67:74:29:f0:2a:ce:1e:d4:0a:
57:8c:f4:01:8e:ef:c1:b1:72:ef:45:19:40:6b:81:83:53:2e:
40:f5:8e:5d:2e:00:c8:6f:0c:df:30:15:87:fc:ac:ce:05:c9:
69:71:59:63:91:dc:33:75:51:06:c5:53:7f:2c:b0:1f:f4:b1:
8e:07:ea:23:d4:31:4d:15:54:ce:cf:45:99:ed:86:3f:49:b5:
67:80:35:16:a5:a4:2c:fd:a1:ce:0c:49:d3:76:f0:ef:08:5b:
c3:c8:c2:d5:3b:bd:4f:71:53:45:7c:fd:ec:e7:c9:da:92:8e:
20:aa:66:da:4c:27:c1:e4:13:98:9f:0c:02:bf:10:cb:71:ce:
5a:72:15:4e:d1:26:4e:e8:18:c5:be:dd:50:44:d8:77:43:c4:
03:99:af:9c:b7:af:2d:ba:1b:22:2c:d8:12:b8:e4:ef:43:18:
88:d5:0f:94:b3:8a:e0:f1:20:3d:9f:d6:06:57:0a:cf:5c:d8:
cd:e9:47:4c:88:da:23:d9:3d:31:67:02:fc:e7:3a:27:a4:56:
81:f8:92:e8:de:01:e4:25:08:8b:ad:3a:25:f5:ed:f1:07:7d:
f7:f8:8c:44:08:9b:ac:08:1e:e3:ea:98:33:f2:1e:4a:fc:85:
55:8d:6e:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org