Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JSSSh3i_PRO96Km4n4Q2e173CgE.roa
File: JSSSh3i_PRO96Km4n4Q2e173CgE.roa (raw, json)
Hash identifier: l+slY8TrgX9Xm6ZRi0pgtpxkigGV9r2JFnL7SacvJV8=
Subject key identifier: 25:24:92:87:78:BF:3D:13:BD:E8:A9:B8:9F:84:36:7B:5E:F7:0A:01
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C5A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JSSSh3i_PRO96Km4n4Q2e173CgE.roa
Signing time: Wed 29 Sep 2021 02:49:43 +0000
ROA not before: Wed 29 Sep 2021 02:49:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 203.211.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3162 (0xc5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2524928778BF3D13BDE8A9B89F84367B5EF70A01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b8:90:dd:1e:e4:06:44:c0:f6:88:39:2d:59:
ba:08:ce:8a:a6:db:c0:55:87:0a:ba:9c:79:ac:47:
8a:52:2a:02:2d:e6:af:36:7d:25:57:d7:f4:f0:f2:
fc:fd:22:29:f9:a4:8e:43:d2:fc:b1:30:2a:82:cc:
e7:09:11:d1:18:40:fa:8e:13:4a:e7:ef:d5:22:c8:
fd:d6:f0:d3:db:d5:36:97:b0:85:84:47:11:eb:11:
92:a2:56:3b:f0:6e:85:68:41:d2:12:65:50:ce:14:
0b:69:53:40:fe:bf:cb:e3:be:41:ef:4a:38:8a:36:
2a:23:cc:f9:b5:24:c7:f2:39:fc:b8:0f:b2:b2:26:
03:1b:40:dd:b0:03:93:86:1c:6d:6b:f7:1d:01:9e:
cd:f1:df:ec:e9:d9:a4:3c:8c:16:68:06:4d:7d:3c:
57:7a:95:06:de:c5:0d:07:e6:bf:d9:bb:79:9c:0a:
e0:e9:40:7e:50:62:e8:1a:30:5b:04:50:e3:43:a8:
04:7e:e7:bf:6d:d6:c1:30:16:c5:57:ca:d1:21:38:
80:0e:2a:98:87:ac:4c:04:cd:09:10:96:52:71:74:
4a:80:e0:b9:5d:b4:ea:f4:18:c0:4e:30:3f:b0:5c:
5e:ac:1e:f5:7d:8f:30:62:18:ff:71:e8:93:09:c0:
af:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:24:92:87:78:BF:3D:13:BD:E8:A9:B8:9F:84:36:7B:5E:F7:0A:01
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JSSSh3i_PRO96Km4n4Q2e173CgE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.211.0.0/19
Signature Algorithm: sha256WithRSAEncryption
19:78:93:f0:ab:c2:55:01:3d:70:a2:f3:d9:e2:2a:9c:3b:29:
5b:97:09:f8:3f:c9:3b:5c:2a:1f:35:7b:93:71:bd:84:e4:05:
5d:ce:b9:4c:66:ad:a4:f9:5f:cd:4a:9d:f5:be:4c:83:98:9e:
f9:cc:0f:a2:b1:2b:89:13:2a:b9:5b:ef:07:19:87:09:e7:7d:
12:9a:5a:48:ea:5c:6c:eb:b5:cd:66:64:e0:bb:03:e0:5f:aa:
1a:0d:5c:b9:43:e1:eb:97:ac:32:8b:6c:6d:97:29:14:3b:29:
3a:85:0f:42:73:30:3f:86:72:b0:95:dd:aa:80:f1:6c:89:50:
77:1a:47:83:24:00:ae:94:12:59:df:b2:af:3f:2c:03:7d:4e:
86:4c:dd:c6:25:29:a6:38:56:a7:9b:4e:ae:3d:ce:49:c0:5a:
15:30:67:42:ba:38:88:61:df:c1:a7:59:f2:3e:2f:c3:94:97:
3d:0e:d0:50:df:79:c9:1e:f9:b4:8d:40:b0:2e:ce:8c:b4:14:
bc:83:45:1a:14:38:3f:70:02:33:83:64:e4:dc:ad:b9:09:f4:
00:00:6b:2a:fb:b1:cb:cb:bc:b5:57:1f:81:02:f7:8f:0b:5d:
f5:82:24:5c:f8:f5:61:5c:5a:32:d0:5f:73:97:6f:a1:2b:f8:
2a:e4:2b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org