Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/RDML6nTsWm0kaB7pZtuTnBa81ZE.roa
File: RDML6nTsWm0kaB7pZtuTnBa81ZE.roa (raw, json)
Hash identifier: OTPMBM5AR+Z91GJTIHxv8RBMs+SUceQ/vLPGvYwqc20=
Subject key identifier: 44:33:0B:EA:74:EC:5A:6D:24:68:1E:E9:66:DB:93:9C:16:BC:D5:91
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CB3
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/RDML6nTsWm0kaB7pZtuTnBa81ZE.roa
Signing time: Wed 29 Sep 2021 02:50:09 +0000
ROA not before: Wed 29 Sep 2021 02:50:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 219.86.64.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3251 (0xcb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=44330BEA74EC5A6D24681EE966DB939C16BCD591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5b:85:64:71:b7:78:c3:7a:42:12:88:f2:30:
88:db:35:9c:9e:ce:9d:42:52:e1:1e:ed:be:05:ee:
d3:1b:51:d3:b8:9e:f5:b1:a5:a2:f9:df:65:b2:e6:
e2:01:64:e2:aa:35:a7:d4:54:9e:3a:d2:d6:07:0b:
e1:f0:c0:e5:15:cf:22:a8:19:81:1f:0f:f6:c7:95:
63:a4:ff:75:59:aa:1a:0a:e6:0e:57:23:29:5b:1c:
4b:18:40:48:9b:69:6b:79:12:e6:82:62:1b:09:96:
66:bb:bb:91:08:c3:71:56:5d:0d:fe:4a:c9:50:07:
ca:87:27:39:03:a4:70:72:e7:28:3f:50:7b:08:be:
28:91:3b:1b:4c:e9:4f:63:6c:5f:a2:ea:1e:5c:83:
57:7f:42:c9:14:1c:ce:93:4b:cd:82:f0:e9:40:1e:
0e:c6:64:b6:7d:c8:a9:41:49:7e:95:7c:77:85:9a:
f1:90:c6:72:7d:94:71:0d:a7:bb:92:cb:d6:0f:c2:
b3:e8:26:88:1c:6b:05:d7:4a:66:14:55:20:b7:26:
38:f0:45:31:90:e2:4a:7c:de:e2:14:62:fd:b6:aa:
2e:b0:dd:c9:8e:8c:c4:ee:06:d9:14:6a:47:4a:da:
8b:38:cd:9a:97:9e:81:0f:09:39:eb:c4:f3:f4:76:
b5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:33:0B:EA:74:EC:5A:6D:24:68:1E:E9:66:DB:93:9C:16:BC:D5:91
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/RDML6nTsWm0kaB7pZtuTnBa81ZE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.86.64.0/21
Signature Algorithm: sha256WithRSAEncryption
44:ce:3b:0f:06:3f:1d:0d:0c:c6:b3:a3:d9:53:40:9b:e6:00:
7a:62:5a:0a:7b:25:e9:e3:3a:ba:4e:d3:b1:6e:7b:20:61:41:
52:a8:a9:0a:37:25:e8:fc:86:02:90:b2:28:a5:6d:e7:45:81:
ac:20:0e:25:fd:fa:8f:ce:11:89:d5:72:a4:be:aa:76:40:02:
e0:68:23:c1:56:69:b5:d7:bc:c1:74:71:e0:fd:29:b0:c8:b9:
7c:b9:c5:28:50:cd:a3:b1:ef:36:c3:d2:cb:a2:f5:57:8d:44:
5b:e5:29:f2:8a:08:58:13:e3:94:c4:52:61:a5:40:37:f9:b9:
df:8e:f7:ac:ee:9d:a6:d3:9a:d2:30:2e:bc:00:57:83:c2:44:
6a:db:be:56:b5:2d:ac:25:1d:29:df:aa:99:e9:e2:88:e8:cc:
10:05:d1:51:fe:e0:e2:c9:3c:eb:ca:1e:8b:36:27:1a:8e:f1:
13:e3:43:57:4c:2e:e4:71:53:52:c8:35:be:33:5c:12:27:db:
ba:c7:c9:f8:22:4a:69:5f:07:16:dd:47:f4:2b:ce:db:ff:b0:
49:96:1c:1c:c3:45:b9:f4:76:41:38:6a:b0:f5:84:0b:4c:24:
07:4d:62:82:6b:b1:cd:0e:2f:e4:40:ec:1a:cf:2b:31:7f:18:
b4:e3:1d:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org