Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MDtlVY7F-IPBZ7grcyTfBx5_wZ4.roa
File: MDtlVY7F-IPBZ7grcyTfBx5_wZ4.roa (raw, json)
Hash identifier: 6qxXtpBBKf41z2dM1rCact+9xtm8jbhDM+ziCrVGwig=
Subject key identifier: 30:3B:65:55:8E:C5:F8:83:C1:67:B8:2B:73:24:DF:07:1E:7F:C1:9E
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0D8B
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MDtlVY7F-IPBZ7grcyTfBx5_wZ4.roa
Signing time: Wed 22 Jun 2022 02:21:35 +0000
ROA not before: Wed 22 Jun 2022 02:21:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 203.77.54.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3467 (0xd8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Jun 22 02:21:35 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=303B65558EC5F883C167B82B7324DF071E7FC19E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fb:1f:87:fb:43:d7:b1:2e:d8:29:c1:17:af:
01:74:20:7b:3f:25:8a:16:54:42:21:e7:1f:83:c3:
ce:64:11:e6:32:47:1e:55:47:0a:19:65:91:b8:1e:
05:d7:c8:8d:bf:db:ee:2f:97:61:7d:a5:af:95:77:
75:62:2b:c8:54:67:5a:8a:24:87:23:c0:d5:01:22:
11:a4:31:80:9f:90:7f:6f:36:01:b7:dd:41:6e:4e:
31:3a:82:5f:04:33:70:6c:a9:ca:f6:68:8e:b0:b5:
ad:6f:34:43:bf:ea:6c:85:2a:24:77:cd:50:42:bc:
8e:98:fb:cd:30:b1:3b:50:75:86:2f:bc:72:2d:c1:
5a:09:a7:6f:b3:8c:48:e9:f4:66:e1:3c:18:09:7a:
da:2e:96:f9:6e:ea:3c:c9:9e:d8:6e:b3:be:ff:73:
7c:bd:de:82:a6:53:ac:83:5c:00:c1:29:b5:39:bd:
10:df:26:81:2d:06:ad:14:69:93:5c:83:ae:8f:4d:
e5:dc:ef:58:c8:77:df:11:96:07:92:3d:df:a8:70:
d0:f3:cf:f5:a9:d6:34:68:74:b6:64:f0:34:7b:df:
43:e2:88:e7:b3:ae:14:ef:ab:a9:c0:df:71:34:fe:
1d:4d:8a:44:11:e9:de:b0:62:b6:97:e0:81:eb:17:
81:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:3B:65:55:8E:C5:F8:83:C1:67:B8:2B:73:24:DF:07:1E:7F:C1:9E
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MDtlVY7F-IPBZ7grcyTfBx5_wZ4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.54.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:5b:60:85:0e:78:70:1a:db:f1:fd:14:67:6d:05:9c:44:f0:
83:24:9e:c1:54:28:33:c3:6f:e4:ce:0c:4c:74:0a:09:38:75:
23:63:48:72:b3:fa:08:ca:6f:21:58:c4:ec:69:87:79:3c:7a:
49:05:43:b6:b2:5b:0c:88:1d:f2:72:b5:c8:cb:68:ca:b4:e6:
64:59:30:1e:92:1a:5a:c3:1b:f5:55:1b:b5:0e:cb:6d:9b:0d:
7e:26:4f:a2:33:a6:05:65:ac:b3:e5:6d:29:46:c2:1a:ac:7a:
56:1f:e8:09:0c:c7:90:b8:a0:be:f1:4b:35:6e:d7:44:ce:08:
bd:fa:63:e9:eb:50:23:a1:79:cf:56:8c:34:29:b4:5a:af:c2:
9e:52:6e:7d:81:52:f2:ac:24:67:42:c8:2f:5b:05:66:d5:cf:
a1:14:d8:f5:a8:bb:73:84:c9:ad:24:d7:f8:1d:f5:0a:bb:54:
7f:e4:39:be:3e:5e:9c:a7:8b:3a:6b:b7:8e:df:2c:c1:ea:34:
65:65:b6:ee:2f:19:b2:93:fa:42:38:7e:04:b5:ca:25:6e:84:
cd:fb:7e:2f:41:f7:3d:36:c9:42:04:df:23:04:e9:e1:7a:db:
db:1a:25:20:fb:7a:4a:7c:95:83:a8:81:1a:e0:49:d1:34:a8:
e9:bd:6c:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org