Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XIdG3N4rEpN8TaBAscjmZv1jGH0.roa
File: XIdG3N4rEpN8TaBAscjmZv1jGH0.roa (raw, json)
Hash identifier: e2CHxbP37UIoR9WmqwcnEcJtVDKzjGOMLS4K6+IftMg=
Subject key identifier: 5C:87:46:DC:DE:2B:12:93:7C:4D:A0:40:B1:C8:E6:66:FD:63:18:7D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C80
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XIdG3N4rEpN8TaBAscjmZv1jGH0.roa
Signing time: Wed 29 Sep 2021 02:49:55 +0000
ROA not before: Wed 29 Sep 2021 02:49:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4662
IP address blocks: 203.65.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3200 (0xc80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5C8746DCDE2B12937C4DA040B1C8E666FD63187D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7d:cf:96:96:0d:00:00:6b:78:33:c0:3d:41:
21:ad:dc:63:a9:8c:e2:21:c4:d3:8a:2a:eb:4e:2e:
18:d0:5a:da:08:bc:56:98:58:5b:7b:94:1c:23:ea:
30:a6:b2:87:00:64:bd:91:5e:83:5b:64:ce:da:2a:
f5:9f:01:86:04:4d:81:2c:65:51:bf:1b:54:b2:84:
6e:22:86:61:60:dc:18:15:35:b4:95:be:42:6d:a0:
68:81:a2:3f:44:47:bf:a7:18:ea:71:d5:ea:be:31:
b5:1a:3f:af:3b:4f:3a:12:82:64:4a:55:6c:c0:35:
b8:bf:60:44:8c:f9:61:84:d4:75:d5:98:6d:d1:86:
ff:fb:af:ee:50:a8:4c:ae:df:b3:66:2e:00:7e:5a:
0e:d2:f1:a3:e6:95:32:d4:bf:b8:7f:32:e1:25:e1:
9c:21:3e:c4:b8:2e:20:1a:bd:5c:6d:66:d6:d4:31:
e1:6e:fd:a2:e7:1a:d4:e3:1c:f9:41:72:b9:d1:b4:
d0:6d:00:be:00:7f:56:ca:00:ac:52:53:0c:2e:bb:
69:38:39:25:4d:a2:b3:0e:2e:f8:fb:90:81:b7:c4:
5a:a2:2b:b4:b4:8f:70:36:34:f4:86:b8:3c:ae:36:
cb:de:0d:ba:a7:20:6f:49:d7:a0:82:58:1b:de:c1:
9a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:87:46:DC:DE:2B:12:93:7C:4D:A0:40:B1:C8:E6:66:FD:63:18:7D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XIdG3N4rEpN8TaBAscjmZv1jGH0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.160.0/19
Signature Algorithm: sha256WithRSAEncryption
1b:d2:44:93:3e:e8:5a:4d:74:4e:ba:32:e1:05:73:bb:ce:73:
57:78:5d:04:25:1f:c8:39:83:87:d7:b1:bc:67:a0:82:54:fe:
c9:fe:ab:6e:68:bf:e7:8d:71:86:84:29:7d:36:97:87:39:13:
29:14:26:c4:3f:12:e7:f2:40:8a:8f:2c:72:11:f7:8b:66:75:
ed:db:fb:04:98:48:3c:b2:5e:1d:90:02:8e:4e:4b:9d:e7:6d:
2b:71:40:a2:ce:ca:9d:e3:8f:b1:ac:9d:9e:2b:4c:d0:ad:c9:
4c:dc:27:c0:47:c0:e1:6e:e6:c4:9a:88:eb:4a:af:30:d7:54:
ed:30:be:0e:c5:a5:2c:4f:9c:52:99:d1:26:6c:78:43:ef:84:
ad:88:5e:7a:94:f3:0e:2b:85:b6:8b:4c:d8:32:72:c8:27:ef:
66:e6:c0:48:5f:28:54:76:33:cb:43:79:18:c3:20:81:b4:1f:
02:43:32:f0:b1:52:37:14:20:0d:23:86:29:cd:b0:62:9a:a9:
c9:33:86:73:6a:0f:15:7a:cb:cf:35:c5:23:42:db:91:8e:15:
eb:b7:3c:5f:d4:17:86:6c:26:21:dd:d3:4d:74:37:3a:ec:ee:
7e:9c:7c:b7:c9:33:a4:1b:da:45:59:43:67:71:a9:cc:b0:ca:
ba:1c:82:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org