Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JZZ4JSqRQZ5rprcqo4eC14Y3Jg8.roa
File: JZZ4JSqRQZ5rprcqo4eC14Y3Jg8.roa (raw, json)
Hash identifier: inNrW7FUgXk44q0jFq6V7KjJfli/nvo/JjxMLQ7HdbY=
Subject key identifier: 25:96:78:25:2A:91:41:9E:6B:A6:B7:2A:A3:87:82:D7:86:37:26:0F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A96
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JZZ4JSqRQZ5rprcqo4eC14Y3Jg8.roa
Signing time: Sun 07 Feb 2021 11:36:41 +0000
ROA not before: Sun 07 Feb 2021 11:36:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.63.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2710 (0xa96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=259678252A91419E6BA6B72AA38782D78637260F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:94:e8:2e:32:51:45:3b:64:c6:34:ff:4e:e3:
fb:d8:fb:76:52:d5:78:56:1f:5e:bd:9c:37:5f:0a:
0a:e5:a4:3b:7e:ac:ae:dd:59:fc:e2:19:0f:2d:72:
88:5e:98:45:72:53:0a:23:8a:c6:37:9f:83:90:be:
b4:d0:48:e4:08:d4:25:2d:ef:23:6e:90:22:ac:33:
93:f8:77:27:3f:93:be:3b:41:26:17:98:b7:0b:3b:
3c:03:96:7d:6b:c3:aa:29:ab:b5:82:77:eb:4e:b8:
ba:30:60:62:98:f0:1d:06:df:93:2d:32:29:e9:74:
92:b3:bc:01:6b:3b:3e:55:0c:ef:db:d7:1f:f3:10:
65:43:99:cc:e1:66:0d:0f:bd:1b:83:c1:0c:56:1f:
39:d8:9a:2f:86:57:e8:32:ba:ed:8f:c5:19:18:7c:
4a:95:ca:18:57:56:1c:05:46:89:56:0e:f8:9f:b5:
21:28:b3:55:d7:cd:d7:4b:81:c4:6f:32:5c:98:17:
2a:46:e8:0b:31:2a:b4:c0:70:2d:8d:e7:dd:cf:d1:
ab:73:52:28:2a:6a:d9:fc:61:06:34:23:b2:28:72:
a6:aa:6c:dc:28:e9:75:81:81:0c:ad:1f:75:a8:59:
27:69:03:75:6c:96:9d:0f:69:af:f8:83:2c:f0:ba:
4d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:96:78:25:2A:91:41:9E:6B:A6:B7:2A:A3:87:82:D7:86:37:26:0F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JZZ4JSqRQZ5rprcqo4eC14Y3Jg8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.128.0/19
Signature Algorithm: sha256WithRSAEncryption
43:01:23:af:24:cd:41:c1:f8:23:b7:9a:1a:e7:44:43:98:75:
20:46:d9:ce:6f:e3:d8:ee:80:5c:04:fd:a5:6d:bf:b5:54:78:
86:3b:19:26:1c:8e:0d:20:f9:f5:b7:0e:f0:19:36:d0:7d:78:
37:bd:1f:eb:c3:fe:1b:72:c8:d3:9f:17:25:36:62:a2:48:eb:
97:03:09:02:42:ab:44:63:64:54:58:74:52:2d:61:c0:c3:ca:
0d:86:b7:a5:91:d6:ed:d5:e4:09:ea:25:a3:5c:40:8f:fd:26:
7a:09:d1:0c:04:57:ba:94:6f:0b:2c:23:35:24:17:17:e6:99:
5c:16:0e:66:bb:6a:d2:8b:92:5c:2b:07:f0:4b:2a:d2:f0:20:
ea:15:26:07:3d:ef:bb:7d:f6:ae:ae:13:5c:17:2f:6f:27:6f:
3d:d9:45:a2:80:54:0d:3e:3a:4b:bb:97:eb:cd:bc:a6:f6:1d:
09:92:8e:97:f3:f1:f5:62:24:cb:37:75:a3:6e:24:ca:13:25:
5b:f7:2a:75:34:74:75:5a:0a:2e:1c:48:05:c1:a1:fc:22:ba:
cb:f6:ff:ca:f7:56:fc:8d:f6:04:09:8f:01:0a:05:ad:c8:3f:
88:38:4e:5c:8a:72:44:bd:02:5e:f8:4e:07:12:fc:42:ae:92:
0f:8a:62:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org