Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/OjRwb4daVyrzsrXbDN_TiRqOi_I.roa
File: OjRwb4daVyrzsrXbDN_TiRqOi_I.roa (raw, json)
Hash identifier: dpPoLTnHicdgkDFVwVchbiu85WKeGJhkVSdcsmDhoIM=
Subject key identifier: 3A:34:70:6F:87:5A:57:2A:F3:B2:B5:DB:0C:DF:D3:89:1A:8E:8B:F2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 07FF
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/OjRwb4daVyrzsrXbDN_TiRqOi_I.roa
Signing time: Tue 29 Sep 2020 09:57:38 +0000
ROA not before: Tue 29 Sep 2020 09:57:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.63.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2047 (0x7ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3A34706F875A572AF3B2B5DB0CDFD3891A8E8BF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c6:09:87:73:62:b3:47:a5:74:54:66:0d:39:
97:6d:18:ac:d8:fa:49:15:4c:8d:68:af:3e:2b:55:
4c:97:8a:43:d7:70:40:b9:2f:34:36:00:46:5a:2f:
9f:80:5e:8a:62:b9:0a:10:d3:28:57:a7:07:02:d1:
e4:a1:17:fb:0b:83:b4:61:2b:cb:0f:24:15:fe:b7:
ed:de:5f:ad:ed:c1:06:ad:91:c3:cd:05:ca:80:57:
78:53:28:da:87:99:1f:eb:87:3f:84:0c:cd:8f:ec:
2b:4c:33:43:1a:d4:17:6a:64:9e:84:c5:cf:1f:52:
2a:37:c6:a4:29:29:94:7b:82:d8:27:24:c0:07:5a:
72:ad:f8:a9:9f:6a:79:87:31:2d:40:a1:b1:ad:22:
4d:2b:4c:2c:f8:d7:9c:e6:36:8c:d6:34:4d:d3:c8:
5b:41:42:84:6d:f1:28:5a:85:b5:62:b4:fe:5e:e3:
56:69:e2:ba:ad:1f:ae:83:f1:05:09:51:15:46:a5:
80:4b:32:68:b9:7f:47:72:4b:5b:85:00:12:cf:9d:
72:72:07:fe:00:4b:ff:60:94:a6:ba:f6:f6:70:0e:
76:4a:06:9b:fa:ad:cf:a9:21:f6:a0:5e:53:b0:90:
ba:d8:36:3b:38:34:3b:a6:4c:a0:30:03:f9:96:f1:
a6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:34:70:6F:87:5A:57:2A:F3:B2:B5:DB:0C:DF:D3:89:1A:8E:8B:F2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/OjRwb4daVyrzsrXbDN_TiRqOi_I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.128.0/19
Signature Algorithm: sha256WithRSAEncryption
19:f8:b7:04:57:b4:29:4a:06:31:61:e2:88:5e:3a:25:87:7b:
02:39:4c:b2:b4:d9:90:35:56:57:9a:db:b1:ae:dd:9b:f4:b9:
62:e7:c1:2f:0c:e8:b1:fc:05:df:11:0e:bf:5b:86:00:b6:25:
e1:ef:02:60:06:f3:53:2e:63:46:6a:2d:a5:90:3c:cb:10:54:
1d:86:3f:d2:72:a1:be:4a:39:04:51:6b:ca:c8:92:40:30:58:
d7:7f:04:2b:ef:17:f4:47:43:3f:71:2f:83:29:90:c5:13:a5:
7c:70:9d:8f:b1:8a:ef:8f:21:4b:29:11:0f:bb:ab:25:bb:13:
2a:c7:fd:32:96:76:5b:3b:e2:a9:3b:24:60:01:c8:ad:28:37:
f6:f0:6a:6f:25:60:f8:c4:67:10:56:a9:7d:cd:85:8a:be:d3:
dd:6e:6b:7e:30:30:76:88:ea:32:10:ec:b1:2c:17:84:6e:60:
96:70:13:c2:80:e8:fc:a0:89:00:c9:97:68:76:12:11:a5:b0:
93:a3:86:89:d9:2c:fe:16:8e:91:5d:c6:1f:f9:b5:48:5c:d0:
85:f6:09:69:55:0e:75:7c:48:10:3e:4b:ec:af:43:1b:be:cd:
74:e4:41:21:e7:89:8d:1f:18:1e:f7:1c:d3:80:04:14:16:67:
33:49:82:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org