Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/L7ZJlyF2PrHU6eavlgCJ2EiTObs.roa
File: L7ZJlyF2PrHU6eavlgCJ2EiTObs.roa (raw, json)
Hash identifier: KqbBWPLTEFVHjRW1PzC8jQlpDm0yqIeITwyeyWf2oXc=
Subject key identifier: 2F:B6:49:97:21:76:3E:B1:D4:E9:E6:AF:96:00:89:D8:48:93:39:BB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AAE
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/L7ZJlyF2PrHU6eavlgCJ2EiTObs.roa
Signing time: Sun 07 Feb 2021 11:36:58 +0000
ROA not before: Sun 07 Feb 2021 11:36:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 211.79.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2734 (0xaae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2FB6499721763EB1D4E9E6AF960089D8489339BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ef:88:6a:57:31:48:c9:fb:5c:da:bd:56:37:
30:f0:19:ee:64:9a:7f:fa:11:91:73:24:68:48:56:
35:b6:0f:b7:63:f0:93:b1:5d:2e:1c:89:6a:ee:95:
87:81:2f:82:a2:4b:d8:9e:43:4b:83:e9:e8:e6:2f:
93:aa:48:08:52:82:82:80:e6:15:ec:d5:3d:80:76:
99:32:8e:6f:af:7f:ba:68:fc:87:ac:67:fa:54:cb:
89:d7:87:f1:5a:20:39:1f:b6:18:62:63:cb:d6:ab:
2d:29:19:01:d8:4a:be:70:38:f6:01:3b:f2:9e:3c:
a1:87:26:5c:81:6d:cf:4a:b9:a0:fa:65:33:58:bd:
22:92:f6:19:aa:33:68:9a:6b:17:45:00:1c:5d:21:
9b:ca:5f:60:25:32:31:1d:51:b0:b3:d6:ff:03:a5:
f1:89:d0:fb:d7:a3:26:de:e5:d9:c4:31:39:02:3c:
5a:79:f2:ac:d7:88:56:89:7f:a8:af:d4:05:2d:ab:
39:bb:1e:69:2f:cf:f3:b4:05:b1:47:69:33:21:b3:
3e:b2:38:fe:68:24:2b:30:ef:d7:bd:8c:0c:b8:0e:
4b:73:db:49:99:85:93:ca:af:9d:c6:49:0c:5a:5f:
8f:01:5d:2e:bb:f6:09:6b:04:08:f8:50:67:8c:06:
66:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B6:49:97:21:76:3E:B1:D4:E9:E6:AF:96:00:89:D8:48:93:39:BB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/L7ZJlyF2PrHU6eavlgCJ2EiTObs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.0.0/19
Signature Algorithm: sha256WithRSAEncryption
02:dc:28:a1:58:33:c8:fa:4c:fb:8e:e9:6b:37:de:fe:d3:b7:
63:22:51:aa:5e:66:90:60:21:25:71:dc:4d:c7:6c:4b:30:34:
b3:fb:a6:60:9c:d7:9e:97:4e:51:b2:76:23:17:d2:af:39:d5:
7c:95:f4:f1:ed:e5:02:bd:24:c2:a9:b6:bd:e7:fc:29:62:b1:
f7:5f:78:5e:28:6e:a9:30:e8:6d:27:6f:ec:cd:db:b9:67:e3:
63:2d:bc:fb:b9:aa:1e:e9:a4:7d:67:a0:7d:25:88:2f:b3:3d:
2e:c3:7b:81:5d:30:a2:f3:c7:8d:9e:1b:c0:e3:cc:5e:63:6e:
4d:68:48:5e:d4:20:65:3f:ea:4e:cc:5a:f6:ad:4b:b1:2e:53:
ec:e1:60:5e:62:4f:a8:98:cc:b1:d1:4e:44:0f:b2:d3:5c:99:
95:d4:e1:5c:76:cd:99:33:f8:13:cf:66:7f:a8:2f:13:b6:c1:
e1:8c:95:48:df:3c:db:a5:d0:e6:2e:0a:89:74:20:66:c3:78:
8e:84:a6:19:7f:0c:e7:05:3e:76:a6:41:7c:70:c9:ae:69:f0:
db:b3:99:de:bd:e1:73:50:d3:7e:4f:73:c0:b9:e0:11:00:e6:
61:a4:6b:13:a8:bf:66:ed:c4:de:c7:75:09:68:70:c4:b5:1e:
5b:41:fa:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org