Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NP2eV9fMpqGKEsCQf1Gpzn3RuSo.roa
File: NP2eV9fMpqGKEsCQf1Gpzn3RuSo.roa (raw, json)
Hash identifier: sLaBUXdiCVymBSNrIM30Hlr7mPB4PjkWWB3iv4mUxe4=
Subject key identifier: 34:FD:9E:57:D7:CC:A6:A1:8A:12:C0:90:7F:51:A9:CE:7D:D1:B9:2A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C4A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NP2eV9fMpqGKEsCQf1Gpzn3RuSo.roa
Signing time: Wed 29 Sep 2021 02:49:38 +0000
ROA not before: Wed 29 Sep 2021 02:49:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 61.31.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3146 (0xc4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=34FD9E57D7CCA6A18A12C0907F51A9CE7DD1B92A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:17:87:38:ab:95:25:da:b5:dd:43:d8:b6:d2:
0b:50:58:f4:2f:45:16:72:b3:fb:d4:2f:9c:11:e5:
b9:87:73:e3:8a:d6:5d:f1:87:b7:93:3c:e9:49:46:
b2:1f:29:e5:4b:20:72:fa:02:f2:21:8d:8e:3c:70:
6c:11:52:6b:88:93:50:e5:93:90:87:df:22:e4:69:
73:67:37:f1:b7:48:c8:c9:b9:f7:40:b1:35:73:05:
d5:f4:7f:6a:10:b2:1d:23:3e:a4:1b:07:6e:01:1d:
68:d6:51:1d:7d:07:3f:e1:16:52:fb:92:44:61:a7:
cf:5d:3c:ec:4f:dd:32:2e:9d:d0:e2:85:1c:c2:b9:
00:64:04:84:8d:6f:65:a9:2f:6b:f3:42:8a:73:e2:
db:54:96:89:bc:03:70:eb:cf:5b:8e:98:1f:42:8f:
1d:ab:25:c9:1a:f4:53:46:4a:4f:a9:9f:f1:d9:81:
6b:df:5f:9f:5d:4e:77:1b:b3:0c:58:44:8f:90:99:
3a:f0:87:fa:ad:f7:e5:da:6d:9b:8b:34:89:24:c6:
e5:f1:d8:01:b7:9b:21:06:34:94:d2:c9:e4:e8:62:
e2:8d:b6:58:79:03:db:3f:d7:96:c3:25:a8:ed:22:
11:99:2b:ea:f9:26:8f:f5:5c:a9:0b:04:72:3f:e4:
9f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:FD:9E:57:D7:CC:A6:A1:8A:12:C0:90:7F:51:A9:CE:7D:D1:B9:2A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/NP2eV9fMpqGKEsCQf1Gpzn3RuSo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.31.0.0/16
Signature Algorithm: sha256WithRSAEncryption
85:a5:2a:7e:4a:4e:f4:27:29:00:34:fe:f0:03:e9:3f:eb:7e:
90:03:72:ac:6a:4c:8f:97:d7:ef:bc:c8:08:a3:48:55:c8:66:
0b:91:8a:a2:8b:93:cb:aa:28:57:90:09:2a:81:a6:ba:9a:ab:
0e:eb:a1:04:16:a4:69:6b:71:8e:14:74:93:b5:cb:62:32:24:
09:c1:37:88:27:bf:d8:a6:ae:3f:ec:8a:24:59:54:36:27:a7:
0c:f1:d6:d1:ac:73:58:49:ed:50:01:70:46:12:35:ea:3b:d5:
b4:34:20:df:89:92:e8:2a:5c:8d:1a:c2:b2:8d:47:f8:9a:50:
12:61:d2:24:ce:af:3e:c9:fb:44:5d:30:74:57:47:8e:bd:97:
12:98:39:c3:bb:d4:1a:4f:f7:b3:b0:4b:0c:f5:8d:61:1b:51:
70:e1:c8:8b:56:ce:23:70:88:82:9c:b5:b6:6d:12:c6:16:f3:
92:d3:4c:88:40:41:ac:9c:71:13:8d:d6:8d:ce:87:42:c1:95:
60:98:60:44:c0:b7:85:80:3f:0d:08:25:53:3f:4e:bf:4e:c8:
73:81:8e:52:d4:d6:17:ba:0e:16:6c:2c:f0:f2:cf:b1:7c:b5:
b3:42:0c:96:ac:7c:46:ba:21:ce:97:29:71:53:3e:45:14:ac:
c5:7c:39:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org