Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Va2AfKRK2cPjEf8uOgVDbAhSnvI.roa
File: Va2AfKRK2cPjEf8uOgVDbAhSnvI.roa (raw, json)
Hash identifier: 1WJFqxKZxzFbXNk8wthzDwq71b8AZbMeQEMMgEFNJvs=
Subject key identifier: 55:AD:80:7C:A4:4A:D9:C3:E3:11:FF:2E:3A:05:43:6C:08:52:9E:F2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 07EC
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Va2AfKRK2cPjEf8uOgVDbAhSnvI.roa
Signing time: Tue 29 Sep 2020 09:57:33 +0000
ROA not before: Tue 29 Sep 2020 09:57:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 124.8.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2028 (0x7ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:33 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=55AD807CA44AD9C3E311FF2E3A05436C08529EF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3e:af:97:1c:cc:ac:ff:78:eb:03:f5:b3:e9:
61:11:43:70:aa:3e:b4:a6:de:0e:4a:70:76:2b:0b:
3f:f9:69:16:be:7a:e9:c2:95:32:26:7a:08:0d:bf:
77:f0:a2:35:9c:e4:d2:cc:16:d7:b2:29:6a:56:e7:
e3:42:ae:db:ad:5d:ad:d7:2c:b8:6c:d1:2b:f8:4d:
19:36:b0:c6:c7:ec:2e:eb:b0:3a:ef:07:65:d9:44:
6d:88:53:9b:0c:ce:76:16:61:dd:79:1a:89:6d:b8:
e4:2a:38:95:bf:b4:54:11:e8:61:c3:bf:db:b5:e2:
e9:53:92:70:1a:81:dd:21:c2:6e:5e:62:5e:1e:b8:
8e:12:14:4e:32:44:59:86:69:d1:34:5b:5a:53:32:
39:34:4b:11:58:f6:8b:24:a2:df:9d:fa:7b:44:9b:
80:5b:c0:14:65:cf:7e:7f:3a:ac:40:ac:ec:59:0f:
2d:c9:43:de:22:31:60:98:40:88:3a:bb:4d:9f:b4:
71:97:c1:25:b0:4b:c0:56:73:6a:17:b9:89:56:64:
1c:5e:38:9c:43:e0:b3:ef:90:52:e9:45:bb:f3:1e:
0a:86:ae:12:c1:60:e7:96:14:11:7a:46:f2:b8:cd:
9a:7e:51:18:4e:df:c2:48:06:c5:32:d4:63:a9:35:
28:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:AD:80:7C:A4:4A:D9:C3:E3:11:FF:2E:3A:05:43:6C:08:52:9E:F2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Va2AfKRK2cPjEf8uOgVDbAhSnvI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.8.0.0/14
Signature Algorithm: sha256WithRSAEncryption
46:a5:5c:5f:30:3f:5e:a4:54:70:ab:0e:8b:31:80:ce:16:c9:
8c:c8:41:d3:44:ec:a2:97:ac:d9:a9:bf:13:e0:43:f1:cc:72:
e3:30:6b:fb:df:72:d2:c6:1b:78:62:0e:53:86:28:a4:45:49:
91:96:1c:06:14:d1:7d:a4:8a:8c:f8:28:55:cd:02:d0:61:3f:
3c:17:99:94:95:74:99:fc:a5:3a:56:90:68:5c:6d:a6:ed:ab:
84:8c:09:76:8e:ad:be:bd:0a:1a:d2:ea:9b:cf:1d:49:b1:ec:
35:98:83:97:8b:45:19:2b:99:5e:e7:f4:2b:ea:fd:1c:9e:be:
ba:f9:6b:dd:fd:6c:be:9f:f6:5b:70:e7:41:70:3b:c4:a3:69:
a5:5b:4b:3b:bd:26:61:c4:63:9a:89:f8:ab:71:21:60:22:f6:
4d:40:65:ce:cd:6d:3d:9b:45:c0:5d:14:5b:b6:7a:af:43:78:
2c:e7:77:8a:b6:17:12:e0:5a:80:49:c3:95:ed:83:70:18:fc:
eb:cd:8e:80:ef:44:11:e9:18:e6:f0:b5:f8:24:2d:39:d9:ae:
fc:e6:3c:4f:2d:4b:7f:29:e6:97:84:9b:e5:8f:d5:f8:19:f4:
18:c4:10:bd:fc:a1:0a:e2:5a:3d:79:1d:d8:98:45:3f:7a:11:
85:f4:76:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org