Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/SgdUX97ZqJhKzGIiptt2a8QO7wg.roa
File: SgdUX97ZqJhKzGIiptt2a8QO7wg.roa (raw, json)
Hash identifier: 55TgWQossEoVSuuiE2vJGF9dX35AM2VtRmp10earYUU=
Subject key identifier: 4A:07:54:5F:DE:D9:A8:98:4A:CC:62:22:A6:DB:76:6B:C4:0E:EF:08
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 07F1
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/SgdUX97ZqJhKzGIiptt2a8QO7wg.roa
Signing time: Tue 29 Sep 2020 09:57:34 +0000
ROA not before: Tue 29 Sep 2020 09:57:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 203.77.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2033 (0x7f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4A07545FDED9A8984ACC6222A6DB766BC40EEF08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d5:52:46:26:48:72:60:db:4b:8c:1a:1a:6b:
d8:e6:43:9f:51:b5:c9:b3:67:47:50:87:b4:43:85:
3e:1d:dd:40:3b:a1:7a:d9:02:cd:6b:69:3b:4c:f0:
ad:f1:2d:b5:b7:a5:a3:5e:d6:c2:c3:74:46:a5:21:
bd:ee:98:e2:63:5c:df:e2:78:31:12:d3:f0:39:cb:
1a:cd:55:5f:07:a4:7c:b3:00:29:9e:64:e6:bb:b4:
bd:52:88:c4:f6:6b:b3:dd:eb:d3:db:b2:eb:d3:3f:
d4:37:e1:c3:b5:91:d7:0a:7e:e8:6a:c5:73:7c:28:
dc:98:71:8d:0e:ca:45:ee:72:18:7a:98:5e:75:a4:
00:6a:cd:fc:42:47:b9:2a:06:33:3b:a4:14:47:45:
e1:05:01:0e:c0:03:b8:28:52:fd:22:82:14:ab:f0:
1a:de:d7:de:f9:27:34:4c:71:31:2e:20:86:b2:23:
fd:e5:40:6e:64:1d:db:8e:02:11:02:69:dd:e5:03:
f8:fb:98:4d:ac:58:7b:3d:a5:52:fe:50:fb:d5:f1:
b1:96:59:26:da:bc:fd:e9:22:b2:5a:7d:d3:aa:69:
21:97:d0:19:34:96:53:d6:4d:44:51:bd:5b:4a:40:
ec:cd:c8:3f:aa:fa:f9:cf:78:76:80:a6:99:8b:01:
a3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:07:54:5F:DE:D9:A8:98:4A:CC:62:22:A6:DB:76:6B:C4:0E:EF:08
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/SgdUX97ZqJhKzGIiptt2a8QO7wg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.53.0/24
Signature Algorithm: sha256WithRSAEncryption
68:d6:4c:d9:ec:e3:67:c4:a3:67:ab:cd:44:71:c8:69:6d:56:
4c:59:a8:d2:0c:af:56:a4:12:58:1f:99:96:8d:cf:f6:4a:0a:
13:04:11:bb:c8:35:10:c8:22:b3:63:d6:6e:85:ca:d6:d3:85:
7a:81:02:6d:42:51:88:bb:91:fe:b4:0d:01:4a:ab:b9:83:6f:
66:1a:30:72:57:af:86:76:e4:a6:60:87:7f:36:31:55:5e:5c:
c0:8f:1f:8c:88:3c:3b:49:5a:f5:af:ae:b1:a2:69:1d:f4:2d:
53:06:db:1e:28:af:78:08:75:a9:95:de:3a:9c:fd:02:65:96:
4b:05:6b:2a:dc:2b:ff:c6:93:7f:8c:32:6c:13:ea:c8:81:82:
ea:a1:a9:13:fe:03:98:c6:73:29:be:68:0b:9c:50:85:99:ca:
f0:ce:f7:94:d6:25:f4:86:76:26:11:69:b4:b3:ab:6b:64:43:
d3:37:23:0c:a0:ea:9e:de:21:5e:69:7b:78:8c:ae:51:b2:4b:
eb:0e:12:48:7e:a7:f2:4e:c4:6c:d0:b7:7c:60:e1:8d:63:7b:
cf:11:2d:05:98:af:0c:37:8d:12:a2:2b:5f:6f:bb:c2:c0:85:
09:e7:e5:57:5a:e6:ca:cc:86:a7:8c:d6:70:54:47:10:de:f5:
f6:17:a1:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org