Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NFqhHDpHXSJIiSRS3piZftOFLoI.roa
File: NFqhHDpHXSJIiSRS3piZftOFLoI.roa (raw, json)
Hash identifier: aAMjGuX3O1//VOXPopy2wojde0cBJXDrBti9H8A0fVE=
Subject key identifier: 34:5A:A1:1C:3A:47:5D:22:48:89:24:52:DE:98:99:7E:D3:85:2E:82
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B0E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NFqhHDpHXSJIiSRS3piZftOFLoI.roa
Signing time: Sun 07 Feb 2021 13:10:07 +0000
ROA not before: Sun 07 Feb 2021 13:10:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 61.31.197.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2830 (0xb0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:07 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=345AA11C3A475D2248892452DE98997ED3852E82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f8:b4:70:91:0f:14:0e:fa:d5:16:48:64:20:
2c:67:6e:cc:8d:16:46:90:b1:4e:f7:27:27:eb:bb:
e0:e4:25:0c:3c:0a:33:11:f1:86:68:55:7f:f5:56:
c8:68:6b:7f:f7:0b:60:83:87:9f:9c:3b:db:23:d4:
f7:9a:22:f2:ba:b9:43:1c:67:05:91:dc:07:87:56:
55:f9:19:4e:29:ad:ff:dc:35:dc:02:9e:40:6b:56:
5b:0b:47:52:c5:04:67:d8:d4:0e:16:92:d7:07:44:
55:ab:e7:ec:bf:53:31:08:14:ad:e1:b1:46:4d:c2:
08:bc:5b:28:14:0f:88:c3:61:98:de:b0:75:ae:3c:
12:3e:bb:ee:8d:25:1c:9a:6b:68:88:f3:20:66:e2:
4a:45:4e:aa:ee:7d:f0:04:4e:22:a7:b1:97:09:47:
7c:81:78:d6:f9:98:64:b5:41:49:6a:95:60:9f:89:
b2:0d:2a:2c:1f:0d:35:6e:13:9e:8a:b0:8d:fd:62:
0e:f7:31:8c:81:17:01:c9:e9:f5:09:3d:eb:c0:40:
32:71:28:95:1b:cd:94:21:68:8f:19:18:7c:64:f3:
c1:10:33:2a:4d:97:4f:58:6b:1a:f0:48:22:3a:cf:
8b:a3:c3:1f:f3:bd:76:ef:06:53:de:46:59:75:a0:
34:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:5A:A1:1C:3A:47:5D:22:48:89:24:52:DE:98:99:7E:D3:85:2E:82
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NFqhHDpHXSJIiSRS3piZftOFLoI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.31.197.0/24
Signature Algorithm: sha256WithRSAEncryption
16:37:a8:0e:e2:f7:75:79:f4:ea:79:97:94:03:b5:ee:28:5e:
da:5b:d0:f3:ec:ac:34:51:bf:79:2e:4a:89:f2:a5:b9:5f:3f:
30:5f:0a:04:df:b9:1b:a7:e2:bc:2b:09:94:c8:c0:fc:ef:72:
23:8f:1f:56:a0:94:79:fb:ff:77:e3:09:49:69:9e:1b:d7:14:
43:6c:fe:24:7e:3f:39:c8:b8:7b:9c:89:68:b7:ac:83:9c:0e:
ea:84:dd:ca:74:aa:f2:5d:76:0f:e9:66:ee:37:f5:37:c9:f8:
e7:76:0c:f9:0c:a3:39:64:96:c4:9c:6f:8c:42:ea:e9:ea:35:
e0:8f:c0:c0:df:66:74:53:29:32:88:4e:a9:36:85:23:31:77:
d0:b3:5e:56:4f:0b:a8:65:d5:f3:ac:f1:9d:bd:7c:ba:73:a1:
36:75:b9:77:c0:39:90:18:37:2e:62:6c:c5:45:cb:cc:49:9f:
ef:9c:bd:96:5f:6a:05:ee:e0:68:ac:cb:7a:89:02:e2:ac:f1:
53:04:25:49:80:69:f6:9e:a3:7d:35:f5:ae:dd:36:5c:0e:b3:
34:30:7b:fc:35:bd:89:33:71:43:e9:e0:fa:63:b1:f1:72:4b:
c4:72:6a:28:14:db:61:e0:fe:44:f3:4b:0d:15:9f:3e:ad:97:
0c:63:4c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:10 2025 by rpki-client