Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KtTpVDccd3otRm4DmgmVL-4Ty8g.roa
File: KtTpVDccd3otRm4DmgmVL-4Ty8g.roa (raw, json)
Hash identifier: QqTmbUS8jozchIJJFCs2dXRWrb6qnZFZqPcOGhls6No=
Subject key identifier: 2A:D4:E9:54:37:1C:77:7A:2D:46:6E:03:9A:09:95:2F:EE:13:CB:C8
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0804
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KtTpVDccd3otRm4DmgmVL-4Ty8g.roa
Signing time: Tue 29 Sep 2020 09:57:39 +0000
ROA not before: Tue 29 Sep 2020 09:57:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 202.145.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2052 (0x804)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2AD4E954371C777A2D466E039A09952FEE13CBC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:20:70:c1:d5:32:10:d6:64:16:29:9f:2e:a2:
4c:2a:f9:3e:0c:66:0c:58:35:9c:26:f4:c8:dd:f0:
e3:1e:36:dd:1e:43:2b:b9:88:89:b3:b4:23:3a:a6:
78:28:8b:8d:e0:1a:3a:e6:b4:96:25:02:c1:6a:b8:
87:db:3f:a5:24:c8:34:0b:08:d2:6c:79:6a:c0:80:
a3:27:44:b3:a6:9f:76:77:15:3d:06:50:7c:c3:a3:
87:57:63:6a:1a:5f:fb:93:fb:5b:48:64:f8:8f:e6:
b8:eb:77:52:93:3c:ba:d0:5d:96:e7:84:a6:d9:8c:
33:6d:f9:49:37:e9:5e:b3:f0:1a:38:9d:a8:3d:a6:
b7:0a:59:f0:0c:0f:bc:f8:bf:92:4c:7d:bb:aa:75:
1f:c3:dc:c6:ec:5a:5e:25:86:1a:ca:2a:b5:cd:be:
82:ca:3c:54:52:38:b8:f6:5c:0d:18:6c:03:a7:73:
6c:03:bd:7a:d1:49:5e:f5:9a:19:13:d2:df:ee:ea:
22:99:40:dc:ef:35:2b:21:1a:ae:40:c3:14:f1:99:
fd:10:eb:4a:9c:1b:af:e5:98:02:ca:42:b9:9c:21:
b7:39:61:7e:53:39:cf:28:85:f1:bf:81:93:93:18:
7f:d3:a3:1d:49:d6:e8:9a:e0:30:58:f4:8c:2d:8d:
36:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D4:E9:54:37:1C:77:7A:2D:46:6E:03:9A:09:95:2F:EE:13:CB:C8
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KtTpVDccd3otRm4DmgmVL-4Ty8g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.145.32.0/19
Signature Algorithm: sha256WithRSAEncryption
57:dc:bb:91:73:e7:36:89:85:86:b8:c5:34:f7:1a:a1:41:17:
8d:a8:ca:78:4a:8d:30:c2:f1:92:fc:b0:09:14:d1:02:90:34:
cc:56:d4:bd:5a:43:fc:71:0a:68:44:4d:49:a1:d6:b2:ac:d3:
0f:c5:b4:b8:d9:d6:f3:68:75:d3:27:de:76:dd:9b:24:83:33:
8c:4b:34:f3:f3:32:68:d6:b5:7b:b5:0c:bc:15:10:83:44:25:
e5:84:f3:3c:ac:2e:d7:92:9c:a4:fc:64:a4:4a:0e:6e:e2:86:
2d:1d:26:8f:c3:86:94:c2:c5:20:54:d1:11:11:87:43:4c:54:
73:e2:99:fe:c3:a4:f7:e6:80:43:fb:d7:dc:93:06:4f:a2:c4:
31:8a:74:2a:22:b0:e0:7b:55:65:db:0c:81:21:45:69:6d:2f:
bd:5e:88:be:c5:f8:4b:54:f3:c6:ac:2b:ca:9a:81:63:a0:b5:
4b:a1:1e:74:ac:70:b0:29:f2:a5:27:cc:15:c9:bf:a3:e3:a0:
58:c7:bf:c4:be:28:ee:9f:8e:1f:d5:2f:73:b1:55:4e:55:53:
fc:1a:54:62:5b:01:b7:11:22:83:e3:2e:6b:53:b3:f6:9b:0e:
46:3e:91:e3:23:ed:47:8c:fa:fb:8b:73:b5:49:e8:b0:a3:d1:
21:f9:fc:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org