Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JXX6nlr5BX8lZo9MsiXoT7hvZBA.roa
File: JXX6nlr5BX8lZo9MsiXoT7hvZBA.roa (raw, json)
Hash identifier: jlpm9lcBVA/h1tMVfyfUOExyMVXc5YPEUEzrsdze66g=
Subject key identifier: 25:75:FA:9E:5A:F9:05:7F:25:66:8F:4C:B2:25:E8:4F:B8:6F:64:10
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A82
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JXX6nlr5BX8lZo9MsiXoT7hvZBA.roa
Signing time: Sun 07 Feb 2021 11:36:27 +0000
ROA not before: Sun 07 Feb 2021 11:36:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 203.65.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2690 (0xa82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2575FA9E5AF9057F25668F4CB225E84FB86F6410
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:de:a5:5d:ae:b4:fe:66:57:52:65:04:2a:fc:
4a:fb:b0:38:99:ff:16:75:4e:00:1e:b8:ef:b7:bf:
85:45:0a:9f:6b:b7:3d:60:b8:ae:9a:04:1b:7e:f6:
7e:38:11:e0:17:f5:f9:8b:4b:66:36:bc:d4:48:63:
f1:97:f7:bb:f8:3c:77:59:2f:20:b1:f2:56:ed:ed:
fe:78:37:97:bd:f0:29:32:c2:cb:a4:6d:7c:58:b6:
cc:46:55:bc:25:1c:18:6d:3b:ff:7b:0e:ad:e7:84:
da:6c:7e:90:6e:00:2a:4a:06:6d:5a:84:5c:79:cf:
e7:8e:2a:f2:79:51:c8:2a:75:35:fa:ff:79:23:c2:
b1:ba:86:5e:f6:91:41:96:47:46:92:51:39:72:71:
b4:55:5f:c3:aa:17:e7:ad:f1:bb:53:7b:41:dd:88:
2d:4f:6f:34:3e:20:ec:bd:94:eb:08:88:12:5a:18:
01:5e:b3:95:d9:0b:85:24:81:c8:af:56:80:0d:db:
e5:de:25:b0:34:bb:45:d7:11:d5:17:dd:59:a3:ca:
5a:b3:af:20:92:42:ac:36:cc:38:31:1e:7e:1b:24:
20:ef:49:34:9b:a4:0b:a3:1a:c8:67:9f:fa:f7:13:
dd:bd:f9:5b:4a:e8:3b:a6:ec:6b:dc:66:e6:9a:75:
98:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:75:FA:9E:5A:F9:05:7F:25:66:8F:4C:B2:25:E8:4F:B8:6F:64:10
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JXX6nlr5BX8lZo9MsiXoT7hvZBA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.160.0/19
Signature Algorithm: sha256WithRSAEncryption
65:10:de:cf:be:62:39:2f:10:c1:25:56:92:51:8e:78:44:00:
55:62:8b:08:5e:26:8c:ca:55:01:af:9e:0f:e6:ad:14:29:a2:
44:d7:65:5f:f4:ca:ac:13:91:65:5e:d9:76:80:55:53:85:7f:
29:cf:d3:36:29:8d:99:5d:72:72:1c:31:29:a5:06:26:09:b8:
b3:75:d9:6c:31:27:4b:ca:d7:68:fc:4d:3a:3a:6b:cf:0a:30:
e6:56:48:25:fd:e1:1a:13:b7:86:89:e3:74:84:e0:c4:a5:bb:
4c:49:b8:a1:1a:e8:80:75:6b:92:98:87:42:a3:be:94:9d:29:
95:1a:0a:43:6d:62:48:e5:b5:11:0f:82:51:43:ef:62:68:e5:
8f:2d:1f:0e:4a:cb:86:90:49:7e:1f:79:59:71:bc:39:4a:7e:
e3:94:ac:ec:cc:43:8d:74:6a:40:42:ad:a0:66:f6:b8:8b:38:
4f:ed:e3:36:1a:c4:7b:e6:0b:d4:fa:13:73:e4:3c:45:b1:f7:
f3:c5:fc:27:9b:f9:94:6d:5f:79:45:fb:d2:16:94:07:31:c8:
0f:b4:8d:ad:3f:67:9e:ca:b3:8a:22:fc:4e:1d:60:4c:5d:97:
b5:19:99:e8:a4:21:86:03:00:1d:85:47:94:45:48:7e:fd:62:
28:ca:82:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org