Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/PRjadQKykOodmg1HrlvGorte5Pg.roa
File: PRjadQKykOodmg1HrlvGorte5Pg.roa (raw, json)
Hash identifier: H0CvyOcAQSEBwBjewNG11PwfpQHEftsCLS2xLnZ5AJo=
Subject key identifier: 3D:18:DA:75:02:B2:90:EA:1D:9A:0D:47:AE:5B:C6:A2:BB:5E:E4:F8
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CB0
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/PRjadQKykOodmg1HrlvGorte5Pg.roa
Signing time: Wed 29 Sep 2021 02:50:09 +0000
ROA not before: Wed 29 Sep 2021 02:50:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 219.86.50.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3248 (0xcb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3D18DA7502B290EA1D9A0D47AE5BC6A2BB5EE4F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:76:61:ac:aa:43:a8:e1:c3:25:d0:21:db:2f:
e3:0b:95:34:f4:e6:0d:24:ea:d5:9d:5d:c3:88:4e:
98:52:d5:5d:b6:54:06:05:71:7e:32:04:c0:02:86:
65:c6:c7:e2:57:d9:0c:12:aa:eb:51:64:33:4c:fa:
05:6c:90:39:b0:c0:50:fc:d7:da:ca:2b:49:76:59:
54:5c:e2:ed:19:3e:25:0d:bd:42:56:66:36:66:b3:
dc:8e:09:8f:a1:46:70:7e:18:74:a7:90:ec:8d:e9:
db:53:7e:91:bb:e7:86:ee:e6:7a:3f:e1:b0:f9:57:
38:1e:c6:b1:e6:9a:08:11:77:ef:21:6f:cd:78:34:
16:05:91:8e:e1:1b:c5:69:ee:f9:7f:84:00:76:76:
73:97:11:44:f8:0a:b0:43:d2:ee:a7:5b:74:d2:1a:
3e:05:01:dd:10:53:6a:d7:39:3f:37:09:34:f7:f0:
bc:4a:aa:6e:86:3f:2c:1e:e0:7c:b2:aa:e6:15:de:
ba:23:74:17:e3:0f:52:01:91:15:28:43:13:0b:3c:
3f:66:b3:9a:ef:8a:1d:0d:43:99:de:6e:fa:86:67:
52:a7:ee:30:30:3a:3d:5d:d5:50:d9:64:59:83:95:
1a:8a:92:b8:bd:2b:9f:d6:21:c1:2e:7d:fd:d8:6d:
29:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:18:DA:75:02:B2:90:EA:1D:9A:0D:47:AE:5B:C6:A2:BB:5E:E4:F8
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/PRjadQKykOodmg1HrlvGorte5Pg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.86.50.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:79:ab:a8:2d:ab:75:d5:6f:fe:2c:98:7a:06:34:93:8e:98:
a1:4b:08:ba:2a:03:cf:6d:4e:e1:56:f8:84:5b:3a:ad:75:eb:
fa:b2:7c:c9:44:33:5a:27:b9:09:a7:56:5b:b4:f4:48:26:d2:
28:35:10:8b:f4:aa:01:e0:43:79:db:9d:0f:26:e9:85:22:bd:
86:33:d6:5a:3a:8d:89:54:f2:aa:20:5d:68:99:7c:40:b4:3a:
1c:7f:4c:09:f9:e1:aa:cd:f3:13:95:6e:3b:14:20:35:c4:cd:
55:51:bb:36:cc:fd:7f:53:9a:f7:d2:38:32:a8:66:74:9f:1f:
48:bd:0f:fd:46:84:24:15:33:96:2d:a8:78:05:56:c9:da:ab:
f1:f4:57:17:f9:90:d0:a5:8d:fd:fa:43:31:7b:3d:6a:f1:c3:
5e:35:6e:a0:dd:54:07:06:27:78:ec:74:77:b1:4a:75:44:dd:
fb:35:89:71:5d:06:dd:e7:ac:09:35:02:0d:74:65:5b:a2:c5:
f0:5e:47:64:8d:65:73:b1:16:ad:92:37:26:39:8f:77:2f:2e:
46:9c:76:90:a0:a1:9f:cd:8e:be:b9:a9:ff:5b:fb:f5:b1:07:
7c:ee:6a:34:66:d4:c0:b5:b7:78:56:a2:2a:2c:96:eb:bb:64:
ee:74:2b:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org