Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/PbceveCaVr7fJLIJd29dZLTcOSs.roa
File: PbceveCaVr7fJLIJd29dZLTcOSs.roa (raw, json)
Hash identifier: oDHikbTCjFuF/VHwYFk29W4L+n7wbBva3bKkMLfODs8=
Subject key identifier: 3D:B7:1E:BD:E0:9A:56:BE:DF:24:B2:09:77:6F:5D:64:B4:DC:39:2B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/PbceveCaVr7fJLIJd29dZLTcOSs.roa
Signing time: Thu 15 Sep 2022 02:47:15 +0000
ROA not before: Thu 15 Sep 2022 02:47:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 103.224.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3DB71EBDE09A56BEDF24B209776F5D64B4DC392B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:27:93:00:0b:36:3b:97:04:20:6a:7a:e4:ec:
cb:3b:5c:61:da:cd:91:29:c9:b4:eb:ca:b2:0c:af:
e0:71:ce:3d:6f:cc:c9:b9:5a:5b:60:45:1a:4a:69:
77:46:0a:8e:a3:34:5d:cd:4b:09:07:cf:6f:d0:af:
27:38:42:d7:ca:8a:72:23:00:aa:88:f5:fd:37:a0:
5b:c3:f4:0c:16:7c:a0:4a:fe:3d:c2:af:8d:5c:a0:
98:04:6e:70:df:46:6d:6b:5e:cb:d0:0b:2a:c1:d4:
34:b8:a1:b1:03:02:b9:4d:6c:eb:69:08:d0:0d:1b:
9e:1b:e9:a4:5e:9d:f7:fe:69:14:39:aa:1e:c3:73:
e9:96:dc:93:aa:34:79:04:6c:cd:4c:37:d2:d5:8c:
de:de:b7:98:cc:d9:92:83:d0:b8:0d:45:62:15:4f:
ee:90:75:ba:fe:fd:ca:a0:5b:4f:53:c4:76:a9:c8:
ae:90:0f:27:b1:c5:94:6c:82:5a:f5:b4:83:b2:03:
3e:ab:a6:45:a7:18:66:72:c8:e0:19:9c:2e:73:06:
27:1c:5a:9b:0d:34:29:34:a8:1b:56:63:5c:40:33:
85:80:84:83:b9:f3:0a:08:59:7d:20:70:bb:c5:50:
34:99:a8:67:5b:50:19:0e:d3:3d:09:a7:3b:8f:10:
e7:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:B7:1E:BD:E0:9A:56:BE:DF:24:B2:09:77:6F:5D:64:B4:DC:39:2B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/PbceveCaVr7fJLIJd29dZLTcOSs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.132.0/22
Signature Algorithm: sha256WithRSAEncryption
44:17:83:1e:bc:a4:9f:18:5a:9e:09:2c:27:ad:10:f0:fc:37:
0d:b4:ed:d5:45:72:30:80:3a:ab:73:72:9c:b8:5d:16:bc:ed:
ac:aa:f2:13:16:d7:71:0f:dd:ca:86:2b:03:1c:a9:ed:92:a6:
00:c4:64:90:5a:6f:e5:3d:1e:3f:c1:16:61:33:58:6a:fc:ea:
d4:56:45:1e:9e:23:42:4f:42:03:2b:08:69:50:17:47:9f:3f:
2b:1e:ba:ea:8f:8a:a0:20:9e:27:56:50:c9:06:4a:aa:1b:6c:
fa:21:2d:40:e3:2f:11:40:3c:87:5c:d6:ae:37:a5:10:0a:d7:
33:40:15:6e:a8:6d:2c:0c:63:59:2b:80:41:ad:81:ae:11:a6:
30:d9:6b:f8:76:e5:09:d8:9b:df:c7:d4:6a:27:63:2c:7c:43:
c4:07:c3:79:71:e4:ab:f9:bf:88:18:b5:a4:fe:d5:a2:f6:20:
ca:9d:dd:16:13:d4:d4:48:d1:63:49:12:75:8b:d3:10:b3:32:
da:eb:b2:e8:d0:65:7b:17:38:9b:b0:cd:1f:42:d9:f1:87:75:
33:1c:ea:64:18:50:42:58:9a:76:eb:2b:2b:f8:52:70:13:6b:
68:2a:72:f7:48:e9:b4:dd:3d:dd:c9:6c:0f:83:08:86:84:99:
92:cc:17:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org