Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QNgGcx04XIjqmLf1v0_xSnfjYV8.roa
File: QNgGcx04XIjqmLf1v0_xSnfjYV8.roa (raw, json)
Hash identifier: JvFsQdvHJEiymBvbCtXwOPcpzud9wcv/X63U4FSy0/Q=
Subject key identifier: 40:D8:06:73:1D:38:5C:88:EA:98:B7:F5:BF:4F:F1:4A:77:E3:61:5F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C64
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QNgGcx04XIjqmLf1v0_xSnfjYV8.roa
Signing time: Wed 29 Sep 2021 02:49:46 +0000
ROA not before: Wed 29 Sep 2021 02:49:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.192.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3172 (0xc64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=40D806731D385C88EA98B7F5BF4FF14A77E3615F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7a:a4:54:e0:da:ee:53:f3:9d:31:76:93:1e:
de:d7:f4:21:a9:31:47:3b:01:3a:6f:22:3b:e4:e4:
c2:f5:e8:0e:8b:0d:02:70:73:67:26:07:45:93:43:
30:77:39:a1:21:a5:d5:89:0b:c4:35:6f:d3:11:95:
ee:46:b5:6a:d1:52:b4:51:72:24:84:ac:ca:aa:9b:
96:0d:28:74:77:52:49:2f:9c:57:96:63:85:ba:9b:
a3:30:00:79:5a:68:4e:f3:03:85:55:ec:a9:52:91:
c1:7d:b7:e4:14:c8:be:6c:69:67:34:6c:52:01:3a:
16:27:3e:67:fb:b3:74:82:fe:75:a2:62:91:ad:c1:
47:ba:af:a7:54:c1:73:31:68:df:80:dc:7a:b2:a0:
d6:0e:40:47:2d:18:46:86:ad:55:9c:68:25:b7:13:
0b:ef:5e:d9:d7:72:cb:fd:97:c0:bf:85:58:af:63:
0f:e6:ba:70:12:a7:b4:28:99:5f:22:5c:13:0a:2b:
bf:a0:36:68:c0:73:fb:54:a7:f5:67:26:28:dc:88:
53:d2:2e:a9:0c:b0:76:76:d4:8c:1e:e4:25:6f:00:
fc:ef:ea:8c:0b:79:bd:26:5c:7a:56:ab:16:e4:67:
34:8a:a8:5e:67:12:10:10:d0:ae:60:74:4a:b4:63:
7f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D8:06:73:1D:38:5C:88:EA:98:B7:F5:BF:4F:F1:4A:77:E3:61:5F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QNgGcx04XIjqmLf1v0_xSnfjYV8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.192.0.0/18
Signature Algorithm: sha256WithRSAEncryption
6e:44:5c:cf:20:d2:8b:62:95:3f:09:c0:e8:87:59:46:90:1a:
a9:4e:af:6c:9c:0a:c4:d3:c0:11:ba:53:e7:9e:d8:b3:5f:0c:
48:b5:e1:2e:3f:80:1b:f3:95:df:f1:66:e0:51:97:0a:05:7b:
ac:3b:61:b4:2e:c3:e7:6c:f2:cd:ca:9b:12:a4:2d:e5:8c:63:
69:56:60:4d:cd:9c:91:ff:9f:3e:e9:6b:21:6a:d8:c9:8f:98:
3d:3d:de:e2:e3:62:00:a2:19:aa:55:e1:ed:e3:3d:96:f5:9b:
8f:6a:97:80:c2:78:02:24:b0:4b:9b:c5:31:a4:96:37:7a:6c:
c2:7b:db:8f:a9:bb:75:e0:00:1a:f1:a3:02:ed:2a:fa:58:5b:
e7:cb:44:e8:47:d3:d1:a6:aa:eb:66:87:ee:ad:7f:94:3b:95:
6a:bb:e3:17:c3:1a:67:cd:e6:e1:0f:d6:ec:10:55:57:d1:9c:
95:1a:ec:7e:03:a6:8f:c5:a0:a9:25:34:df:a0:1f:91:ca:4c:
f9:b4:d8:10:41:80:95:85:21:3e:42:85:a8:f2:19:1c:60:12:
15:72:4d:b1:84:1c:38:da:6e:72:97:3c:16:e1:7a:68:64:5f:
79:9a:d2:bf:d1:6f:9e:2e:ed:48:8f:db:7b:f2:a9:fb:42:28:
1d:05:9b:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org