Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Jo6fZP6VLolOjtR8Uu6W8Q_R9m0.roa
File: Jo6fZP6VLolOjtR8Uu6W8Q_R9m0.roa (raw, json)
Hash identifier: pa5WRYD65Ljynta7alTOxh+giILSmu3R7TlvUne8PFg=
Subject key identifier: 26:8E:9F:64:FE:95:2E:89:4E:8E:D4:7C:52:EE:96:F1:0F:D1:F6:6D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 07E2
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Jo6fZP6VLolOjtR8Uu6W8Q_R9m0.roa
Signing time: Tue 29 Sep 2020 09:57:30 +0000
ROA not before: Tue 29 Sep 2020 09:57:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 175.96.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2018 (0x7e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=268E9F64FE952E894E8ED47C52EE96F10FD1F66D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bc:54:e6:41:5e:f6:df:17:e1:65:b2:12:3d:
eb:32:37:37:e8:96:51:7f:92:31:a6:cd:46:30:ed:
3f:75:d8:6a:3c:d7:69:1b:40:06:69:98:12:13:2e:
a0:05:4d:71:85:ba:44:2d:2f:cd:49:fa:fb:c0:2a:
7a:40:8a:47:61:78:a2:86:d3:43:b5:01:c0:0c:2d:
c3:39:0b:e3:3d:88:e9:da:fc:a5:c1:65:a2:a0:86:
23:8a:3e:b8:05:9c:7f:7f:1d:56:d3:6a:ef:a9:2b:
3c:42:72:a6:ce:0d:93:68:4d:96:fe:b2:aa:93:ef:
fe:af:21:de:c7:4d:5f:f1:7c:2d:37:fa:be:c9:f8:
9d:50:00:84:e0:b9:66:73:9f:89:4d:e5:84:62:70:
59:7a:3f:65:77:a7:bc:3b:bb:0a:02:4f:b0:7b:2c:
ef:dc:58:4b:3a:e6:d7:28:69:da:84:92:9a:ab:7d:
e4:87:fc:7b:5f:6d:7f:ba:c3:20:c7:07:9f:9b:86:
41:c1:c2:df:cf:b6:64:9a:cc:72:4a:24:3e:b7:70:
06:b8:09:0e:9b:00:e1:8c:95:5e:fd:b4:86:1d:45:
fe:50:2e:a0:6a:80:13:fb:de:fa:77:4b:6c:b0:0a:
4e:f0:7e:55:31:11:f8:03:0e:d3:29:7b:cc:a9:a2:
a7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:8E:9F:64:FE:95:2E:89:4E:8E:D4:7C:52:EE:96:F1:0F:D1:F6:6D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Jo6fZP6VLolOjtR8Uu6W8Q_R9m0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.96.0.0/14
Signature Algorithm: sha256WithRSAEncryption
85:8c:86:42:50:ca:99:e4:d6:cb:00:cb:05:a3:2d:37:5d:8c:
7c:ec:38:d7:36:26:ba:60:94:5c:2b:4e:fd:de:6f:34:06:2f:
63:a1:5e:02:c8:bf:91:00:38:d4:18:9b:13:be:2c:70:c3:02:
44:2e:55:da:34:27:5a:20:04:6f:d9:96:9e:c7:2d:0d:13:5e:
e0:12:77:3c:f3:2d:c7:af:91:7e:82:f9:5f:c4:97:38:a1:2c:
16:1c:91:ac:c0:fe:ef:29:db:17:cb:af:07:18:96:3c:97:5b:
71:26:fe:a2:ec:e3:5c:69:b6:57:b3:33:50:ec:8f:09:ec:b3:
eb:72:47:4e:e2:78:4c:33:27:cb:79:f6:9f:bd:a6:ab:0f:07:
44:34:90:d9:17:74:dc:5f:7b:7b:9a:4e:5a:fc:59:77:46:22:
4e:33:78:f7:25:9d:ef:a9:09:e7:06:67:57:f8:64:ac:ca:d2:
67:e7:95:e7:35:3a:e0:0b:b7:45:46:3f:3d:08:53:95:99:ba:
f3:68:04:01:c4:e1:1d:f6:89:75:bd:8f:67:39:c7:27:4e:dd:
5d:5a:df:91:e6:3f:38:4d:ab:85:1b:d7:4e:c6:57:c5:97:39:
75:03:78:d7:0d:7a:34:17:a2:a0:7a:87:b5:31:6a:1c:43:db:
00:4e:13:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org