Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/PBdSQZzPnGk9dGURaNMV00Zw_Jg.roa
File: PBdSQZzPnGk9dGURaNMV00Zw_Jg.roa (raw, json)
Hash identifier: VP5g7ae5owTRcR6tSN4UpH9OehFlxt77okYNT+iEP5E=
Subject key identifier: 3C:17:52:41:9C:CF:9C:69:3D:74:65:11:68:D3:15:D3:46:70:FC:98
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A8C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/PBdSQZzPnGk9dGURaNMV00Zw_Jg.roa
Signing time: Sun 07 Feb 2021 11:36:34 +0000
ROA not before: Sun 07 Feb 2021 11:36:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 203.211.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2700 (0xa8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:34 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3C1752419CCF9C693D74651168D315D34670FC98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1b:62:ae:f3:67:e2:87:ef:76:74:35:de:84:
5d:4d:fa:44:66:8d:6d:1c:34:a8:62:37:c6:89:62:
86:81:70:7d:3a:8e:6f:4b:96:a0:46:4a:07:6f:d5:
55:4f:84:b9:bb:ce:2c:b5:50:b9:2f:ca:7e:23:cd:
e9:09:6a:4b:55:1e:8e:fe:20:82:2e:fb:5f:bc:b2:
1a:75:fa:fa:2f:9b:32:c5:91:6d:e7:bd:de:b8:b3:
95:d8:ed:57:46:b1:91:89:bb:5f:eb:cb:35:9c:72:
42:65:98:9e:0b:d5:36:e6:38:c2:cb:f6:ca:0f:c4:
47:4a:db:5e:0c:ea:bf:36:90:2a:66:b2:46:ba:64:
80:96:c5:90:23:b3:43:5e:14:9f:a3:4c:fc:a9:d6:
55:b9:1c:1a:d6:82:06:28:83:59:88:7b:dc:39:4b:
b6:83:d3:62:ba:8c:ce:ed:68:85:1d:de:d0:dd:8e:
e2:b8:32:d1:b8:64:2a:6d:15:17:47:31:b2:c4:6b:
c0:71:a3:a9:7c:4a:d5:ed:fc:ee:e4:04:d1:ec:b2:
e0:51:2d:54:6e:bb:f4:99:38:87:fd:0e:54:d3:c5:
c4:e6:2b:8c:6c:6e:2a:20:84:f4:d3:f8:67:39:9a:
31:41:77:8c:5b:e0:43:d6:e7:66:3b:c1:8d:5a:12:
05:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:17:52:41:9C:CF:9C:69:3D:74:65:11:68:D3:15:D3:46:70:FC:98
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/PBdSQZzPnGk9dGURaNMV00Zw_Jg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.211.0.0/19
Signature Algorithm: sha256WithRSAEncryption
94:4b:f0:ab:90:7a:d9:d8:5b:55:d1:48:cd:fc:a3:d7:df:28:
95:04:ed:1a:da:60:15:e8:0d:f0:35:39:5f:88:49:58:52:a1:
54:e8:44:6c:fb:96:63:57:22:65:cf:0d:5f:5c:05:ec:5c:c1:
73:a0:08:14:6c:be:4b:50:5a:e0:20:18:c3:3a:1c:c6:6a:1a:
a8:d7:5c:29:d6:32:a5:b3:9f:ea:f5:e9:ff:f1:37:56:99:bf:
1a:47:9b:d2:64:e3:2b:c7:bc:9b:3a:3a:48:54:8a:8a:35:34:
a7:e8:bb:f7:73:43:fa:4a:83:b2:f4:94:63:c9:c4:1f:1d:91:
43:0e:34:86:67:94:53:ae:e6:fc:ef:88:bf:70:95:cb:ae:59:
2f:73:9e:4f:d2:f7:1e:a2:eb:50:c9:89:f2:52:67:5f:5f:b4:
4d:13:54:1f:11:93:9b:fc:28:67:6f:9d:52:28:58:94:d7:eb:
a2:7f:b5:c9:12:23:30:2a:57:99:18:52:6b:0a:12:4f:47:73:
36:19:80:b8:55:c5:37:09:df:d3:87:10:c1:f8:c3:92:5c:2a:
d9:e7:a9:65:dd:7c:77:b5:bb:2e:71:06:d2:95:63:12:a5:54:
1c:ef:c9:e9:2b:a7:be:72:4e:e7:bd:48:8e:d3:6f:0a:a2:0e:
5a:e9:48:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org