Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/SPFPwNdwS4IJPT-G6hTqwOSiGMo.roa
File: SPFPwNdwS4IJPT-G6hTqwOSiGMo.roa (raw, json)
Hash identifier: w7ypfnX1oo6xdm0nkIYFARFdPfNE2fZ/x40gmWgBtPk=
Subject key identifier: 48:F1:4F:C0:D7:70:4B:82:09:3D:3F:86:EA:14:EA:C0:E4:A2:18:CA
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A7C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/SPFPwNdwS4IJPT-G6hTqwOSiGMo.roa
Signing time: Sun 07 Feb 2021 11:36:23 +0000
ROA not before: Sun 07 Feb 2021 11:36:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 202.145.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2684 (0xa7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=48F14FC0D7704B82093D3F86EA14EAC0E4A218CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:10:b6:42:8f:2a:5f:78:00:32:85:9e:1d:94:
68:36:d2:18:9d:93:e2:d1:43:de:fd:42:a1:73:a4:
65:6f:48:47:11:33:51:e6:13:66:4b:b9:3e:83:01:
8f:d3:db:08:3b:46:96:e6:2a:8b:9c:80:86:44:7d:
6c:02:49:bd:b2:d7:5f:7a:06:e6:e7:2f:01:6e:e5:
78:5b:4e:b5:14:66:05:20:b4:c3:82:02:c6:e0:25:
4c:03:68:e9:0e:20:7f:9c:b3:2b:36:98:a3:25:59:
a7:08:d5:01:dc:55:79:3c:9b:41:57:09:60:51:58:
19:74:b4:fe:31:51:c7:77:98:67:b2:3a:39:c0:34:
69:82:2f:fe:0f:d9:a7:13:20:e1:98:a2:30:25:59:
b5:5a:e3:9a:a8:5c:ec:74:b4:3e:25:1a:e4:41:06:
a9:6e:45:68:a3:6a:33:35:af:79:4e:dd:10:d2:55:
30:c1:2d:7c:a8:a4:3c:98:de:94:c6:87:db:56:b5:
63:7f:92:ad:79:53:a9:bb:52:b4:16:2c:93:06:e6:
b9:42:82:34:00:7a:5e:30:8c:ad:a8:38:2f:2d:5a:
6a:50:42:c2:f7:29:ca:56:a1:d9:6a:d5:9e:aa:ae:
9e:c9:96:ad:ef:cb:ef:4f:26:f2:27:e3:ac:b4:16:
59:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:F1:4F:C0:D7:70:4B:82:09:3D:3F:86:EA:14:EA:C0:E4:A2:18:CA
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/SPFPwNdwS4IJPT-G6hTqwOSiGMo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.145.32.0/19
Signature Algorithm: sha256WithRSAEncryption
69:b9:77:59:f2:90:10:e8:78:a2:e5:61:2a:21:55:7b:c6:37:
56:0d:b2:09:53:ce:be:00:3a:d1:dc:50:f5:93:99:11:64:45:
9a:4a:74:19:3a:fe:10:6d:d7:1e:43:53:c4:45:33:4c:5a:b8:
ae:31:57:d5:3e:2a:97:b7:8f:7d:ce:f5:0d:d8:2f:3a:99:af:
69:48:1c:c7:55:2c:8a:1b:a4:22:ae:d1:b0:82:f5:fc:56:d5:
cc:76:f6:ac:80:01:f5:e7:57:88:18:9a:92:9d:17:1a:a0:fc:
59:d9:d8:86:3d:a9:77:6c:79:bf:3e:59:b3:82:cb:53:ab:4c:
2b:0b:ab:4d:cc:c0:d1:69:bc:8d:93:bc:ca:70:4b:7c:4d:fc:
91:24:8f:4a:fd:5b:96:4d:cb:ba:84:82:a1:ae:55:bc:8c:c9:
b7:05:38:77:e4:47:c9:e9:d2:45:08:c6:f9:b2:0d:16:3f:47:
27:3a:43:2d:8f:7f:90:58:3e:3a:94:41:18:6f:41:98:05:ed:
3e:b5:bb:34:04:9f:34:dd:6b:ab:57:f6:df:11:64:61:fe:fb:
55:64:af:94:6c:f8:00:02:b9:62:43:97:b0:30:f3:3f:37:01:
db:39:c7:71:da:a9:e1:a4:c2:ef:bc:aa:73:b7:66:85:dc:da:
3f:ab:cf:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org