Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WEMb59-vGFckTNzd8OnhWtZKKBw.roa
File: WEMb59-vGFckTNzd8OnhWtZKKBw.roa (raw, json)
Hash identifier: QLvoIjrVDBSltGDgQCmeoQ1yEV3CN3G4/l9wrmLmLLw=
Subject key identifier: 58:43:1B:E7:DF:AF:18:57:24:4C:DC:DD:F0:E9:E1:5A:D6:4A:28:1C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 07F4
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WEMb59-vGFckTNzd8OnhWtZKKBw.roa
Signing time: Tue 29 Sep 2020 09:57:35 +0000
ROA not before: Tue 29 Sep 2020 09:57:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 203.77.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2036 (0x7f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=58431BE7DFAF1857244CDCDDF0E9E15AD64A281C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8d:c2:8a:5b:b9:fc:66:22:71:4e:15:46:91:
5f:7f:e3:62:fc:8b:d3:76:e7:37:39:07:16:07:63:
99:96:66:1a:77:59:3d:27:10:db:56:ec:56:10:08:
c0:b9:8a:f3:7b:16:2c:e2:8b:55:60:9c:61:8e:92:
f8:70:70:a1:34:f7:5e:99:8d:a3:10:8a:9d:52:0f:
64:71:bb:8c:c2:6c:69:bc:4c:62:dd:de:36:56:6a:
97:e6:7e:fd:d7:6f:bb:00:e9:55:c0:04:4b:01:53:
af:77:01:8d:6f:7a:fc:59:c5:71:a8:b8:d8:1d:25:
3f:fe:43:db:e3:b8:6a:f9:d4:d6:3f:56:a3:15:d1:
37:cb:eb:d0:82:ae:68:25:b3:22:d8:9b:a2:c0:8b:
40:a6:d8:be:ab:83:59:b7:61:a9:ae:05:ac:ac:42:
92:cd:21:ce:6d:df:87:3a:d4:0a:4a:e1:6b:4d:ed:
91:14:33:49:f6:8f:f7:df:76:6d:c5:e6:63:b2:77:
67:d8:5b:1f:4e:6c:4c:a8:81:ef:8f:46:dd:2b:1f:
a8:97:9f:7a:a0:0f:35:5f:00:be:f1:b8:68:86:dd:
59:d2:47:fc:60:d4:89:55:e8:48:6c:12:39:92:34:
68:e4:1b:52:79:28:ab:d6:f2:fd:af:31:55:9b:ba:
27:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:43:1B:E7:DF:AF:18:57:24:4C:DC:DD:F0:E9:E1:5A:D6:4A:28:1C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WEMb59-vGFckTNzd8OnhWtZKKBw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.64.0/20
Signature Algorithm: sha256WithRSAEncryption
98:69:c1:ba:53:f4:3e:e8:db:b4:69:8b:81:0b:f7:f4:d2:ec:
5d:62:63:68:f5:a2:35:fd:5e:b2:bb:6c:39:d8:ee:66:a7:10:
e1:72:fa:4e:f9:bd:f8:fe:cb:be:32:84:c5:e3:13:3d:a4:3c:
e5:aa:0d:c2:74:98:5a:d3:b5:f4:cb:a9:c9:65:90:b4:f3:92:
55:de:6b:f9:13:ed:81:d7:a5:7a:48:9e:dc:29:be:f7:8c:5f:
fe:e9:bc:c1:4f:9f:96:f1:d1:17:f0:42:74:92:86:0b:31:64:
e1:a3:82:df:b6:4f:1d:2d:e8:a5:69:a5:dc:22:b2:98:2e:fd:
20:eb:66:15:7a:ff:a8:ca:9a:d6:0a:3f:98:55:97:22:4e:33:
58:a3:b7:ee:3e:f4:6c:03:c6:6a:e5:9a:21:1f:e0:8b:01:7c:
71:af:95:f8:6a:08:92:72:ac:7c:f4:d2:3c:e2:95:ab:6e:44:
2a:94:b5:46:dc:b6:9d:fd:7e:6d:27:11:df:d6:a8:91:a8:f6:
db:86:91:58:16:55:03:98:96:6c:7b:92:b5:60:9a:0d:e9:33:
32:da:b2:36:01:04:1d:29:c7:fc:88:32:a7:5f:da:ec:cd:88:
be:24:a6:ba:d0:c3:97:c3:a2:df:1f:cf:08:b1:e7:20:cd:c9:
b4:16:16:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org