Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JjHfPZgkmS7A0kSOh1WLXjR-5qg.roa
File: JjHfPZgkmS7A0kSOh1WLXjR-5qg.roa (raw, json)
Hash identifier: 3X4iJoflPC/C0rQbYZeM+pWoBThrZ9RWy8rMqJrqOTo=
Subject key identifier: 26:31:DF:3D:98:24:99:2E:C0:D2:44:8E:87:55:8B:5E:34:7E:E6:A8
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C46
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JjHfPZgkmS7A0kSOh1WLXjR-5qg.roa
Signing time: Wed 29 Sep 2021 02:49:37 +0000
ROA not before: Wed 29 Sep 2021 02:49:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 49.216.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3142 (0xc46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2631DF3D9824992EC0D2448E87558B5E347EE6A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d6:6a:ee:2b:54:17:66:fa:21:b5:b5:0a:16:
4e:d5:24:bc:73:d7:62:e0:0c:19:94:72:06:50:dc:
2b:23:36:e8:69:31:28:c9:9c:7e:62:18:88:bd:81:
f3:26:e7:60:60:27:fc:96:18:5e:06:7a:de:df:0b:
37:9b:b6:5b:ec:2d:cf:99:5e:6e:3e:5e:87:23:96:
22:dd:42:c4:7e:6e:bf:c7:f3:3e:29:29:34:bd:9b:
f8:e6:2c:e5:2c:c5:51:44:44:1b:2a:d3:04:72:0e:
c3:49:ab:67:46:b0:24:3f:9e:31:d4:f3:61:3e:57:
39:b0:50:97:61:b5:b7:81:ea:18:b1:d8:e5:d9:42:
7e:7f:ae:28:20:62:06:68:f0:0a:40:da:ad:d8:48:
11:91:8e:50:8d:fe:96:a4:a2:12:d6:b0:2d:9a:4e:
4e:99:1f:7e:f4:45:e5:fd:a4:34:4d:4e:8a:93:15:
d3:a7:ba:a1:04:16:04:c4:06:34:69:f6:04:04:81:
18:3c:39:48:98:0d:12:a3:18:4b:77:75:27:3d:4b:
61:c4:ae:09:7e:37:20:88:93:f9:66:fc:c3:0f:db:
e2:9c:6e:37:81:de:8e:d1:bd:26:b3:14:21:8d:fd:
23:17:7c:25:09:2d:dd:42:54:80:d7:42:50:43:31:
81:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:31:DF:3D:98:24:99:2E:C0:D2:44:8E:87:55:8B:5E:34:7E:E6:A8
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/JjHfPZgkmS7A0kSOh1WLXjR-5qg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.216.0.0/14
Signature Algorithm: sha256WithRSAEncryption
99:ec:62:af:cd:64:a7:b9:c4:54:51:54:f1:2d:cc:05:bc:36:
73:75:16:06:74:43:5d:c2:24:04:cc:50:84:58:11:dd:f5:ee:
5c:eb:b4:69:f8:2e:43:43:53:d5:9c:6a:18:a0:3c:1c:e9:3b:
98:64:c3:0d:5b:9d:97:f2:23:f8:42:97:5a:a2:e9:c3:ae:2b:
29:b9:63:4a:c2:75:cd:cf:b5:3e:82:74:9c:86:76:7c:45:2b:
64:69:f5:5c:a3:ef:13:ba:90:3a:19:d3:a6:db:00:48:ed:04:
f8:8a:54:ab:59:d6:d4:f8:39:6d:05:03:32:ec:a6:a0:a1:4c:
a8:46:ec:10:50:fc:a8:ae:f7:8d:a3:31:72:e9:8f:58:f8:ec:
eb:6c:8e:97:e4:9a:0c:7d:c8:38:10:15:c4:b3:47:d4:48:20:
2c:24:4f:c5:31:7b:66:1f:63:8d:7e:6a:ab:f6:74:b8:e2:ef:
85:57:e9:30:1a:ae:00:48:74:f3:95:0a:ee:a6:8c:5d:98:68:
d5:55:84:28:41:70:15:7a:ed:fa:bb:1c:4b:11:3b:d0:5e:68:
ad:99:55:c8:0c:c6:34:3a:6e:5e:05:19:2f:30:03:4f:2c:89:
34:e1:87:00:9c:13:3c:9e:80:e5:94:08:68:63:49:87:f8:72:
e8:c4:c2:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org