Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KNrVtl78hChx9UBjcmq-Cxb23A8.roa
File: KNrVtl78hChx9UBjcmq-Cxb23A8.roa (raw, json)
Hash identifier: bR9QIxoSmdjS/fzP7xMJ0XMokU31MSexculJS9Hzh2o=
Subject key identifier: 28:DA:D5:B6:5E:FC:84:28:71:F5:40:63:72:6A:BE:0B:16:F6:DC:0F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 082D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KNrVtl78hChx9UBjcmq-Cxb23A8.roa
Signing time: Tue 29 Sep 2020 09:57:51 +0000
ROA not before: Tue 29 Sep 2020 09:57:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 203.211.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2093 (0x82d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=28DAD5B65EFC842871F54063726ABE0B16F6DC0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:aa:63:ed:98:4b:26:7e:83:19:29:3a:ee:b8:
6d:82:dc:32:bf:d1:7d:5a:50:f6:ca:dd:21:31:34:
3e:4e:2d:d8:5b:55:02:ce:99:f1:58:ce:4f:06:76:
c4:08:6e:b8:e7:e8:01:4f:f3:63:85:67:66:f2:d2:
1b:ef:25:e7:a1:24:3e:01:35:26:48:da:cc:5e:9d:
2b:41:12:48:33:ff:3e:ed:e3:ac:33:6c:88:9a:b3:
67:23:33:35:15:87:75:ce:9b:17:f6:57:42:72:34:
9b:4e:d1:94:81:d6:3c:4e:a6:05:83:60:80:b5:80:
2e:84:30:5d:94:7e:f4:69:44:b8:97:7c:05:9c:2a:
8a:3f:a4:dc:f5:c9:0c:f8:cb:63:ce:81:ad:33:bc:
df:54:af:30:94:e7:cd:25:f9:f1:74:d6:89:2f:24:
bb:3f:48:41:04:f2:25:68:23:23:96:83:93:05:31:
ab:47:ed:4e:74:9e:7a:27:41:f1:56:b8:5d:79:63:
2e:93:2e:56:63:33:32:07:8e:db:f4:a5:ce:2d:21:
93:87:06:22:39:4b:39:cb:3d:80:ac:9e:d4:60:67:
22:22:ea:32:55:04:f9:a9:67:37:81:f2:97:f0:44:
b4:4b:57:38:f7:97:f0:d2:b8:2a:dd:7b:b8:be:2d:
37:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:DA:D5:B6:5E:FC:84:28:71:F5:40:63:72:6A:BE:0B:16:F6:DC:0F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KNrVtl78hChx9UBjcmq-Cxb23A8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.211.0.0/19
Signature Algorithm: sha256WithRSAEncryption
17:87:f7:81:a8:84:e2:76:0e:71:3d:ff:84:a1:92:2f:a4:aa:
24:5e:a3:1c:7a:a3:28:6a:94:96:67:80:bd:e4:47:fb:2f:bf:
81:bb:77:4c:84:93:69:3f:16:8f:93:17:d0:3f:3d:ae:9f:ac:
8d:77:09:0b:f8:6c:9b:14:28:0b:ce:2d:d6:38:42:05:37:01:
82:dd:8e:8b:35:d7:14:42:36:b2:e0:1b:bd:a9:dd:c6:8e:e8:
c8:f2:43:b9:a4:ae:b1:8f:b8:b6:3e:e0:f1:bd:47:7a:e0:a8:
d6:c9:51:c9:e2:9a:f7:77:32:d9:9c:47:8e:fb:19:19:2c:12:
41:d1:7a:63:35:b5:87:d0:37:a3:ed:e5:28:f5:c9:e4:41:4e:
6e:5d:08:62:be:ec:a3:82:0c:9d:17:1c:4f:73:b0:83:67:2a:
fc:d9:d1:1a:5d:3c:2d:07:78:00:8c:79:19:cd:64:ff:f9:1c:
d8:26:d7:15:e6:51:af:d1:2a:e3:23:75:7b:2d:19:d1:08:c6:
54:ec:11:aa:f0:9c:d4:23:f2:78:28:57:cf:ed:b3:5d:0c:5d:
13:be:17:fe:34:5f:4d:64:7d:e1:6e:07:f4:b7:32:32:bc:d6:
6d:12:5d:bc:67:b6:34:65:99:cf:0f:e7:ab:59:1f:bf:83:c0:
2e:b1:19:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org