Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZTrNCzQgBd2Lfmdn1oTC6zSNRPY.roa
File: ZTrNCzQgBd2Lfmdn1oTC6zSNRPY.roa (raw, json)
Hash identifier: orTz724vpJ2pCGbq5GkiN4sR6E0EVGzOcO8rjujDUoo=
Subject key identifier: 65:3A:CD:0B:34:20:05:DD:8B:7E:67:67:D6:84:C2:EB:34:8D:44:F6
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C93
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZTrNCzQgBd2Lfmdn1oTC6zSNRPY.roa
Signing time: Wed 29 Sep 2021 02:50:00 +0000
ROA not before: Wed 29 Sep 2021 02:50:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4662
IP address blocks: 203.77.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3219 (0xc93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=653ACD0B342005DD8B7E6767D684C2EB348D44F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:26:4d:75:be:c0:89:4e:5d:0f:41:19:fb:5b:
c2:65:cd:43:6a:b7:08:48:16:2e:01:90:48:fa:c0:
53:84:3d:5e:3d:9b:a4:a4:61:55:e1:9f:e9:ea:fb:
51:5b:ec:11:89:47:f4:8c:c5:5e:07:b7:74:b1:4b:
91:0a:3e:28:76:b5:f6:28:e2:04:4f:d1:da:4c:e4:
56:8b:2f:5b:f7:58:2f:7b:85:c9:b9:75:92:2f:d9:
51:b6:65:38:37:4d:fc:f9:6c:f0:4e:72:36:45:5d:
66:9b:4f:fe:29:1e:f1:da:ae:e3:3c:42:5a:17:e9:
53:a4:34:55:49:06:4a:29:a7:f2:90:aa:10:b0:17:
96:b6:3a:ca:15:c2:3d:45:aa:c7:fe:6d:ba:06:77:
73:85:44:2b:79:94:bc:9a:e3:b1:93:ec:03:cd:89:
d2:9e:5b:d2:02:cf:16:44:2c:41:07:4d:05:d1:31:
de:b4:07:b4:76:61:a4:38:9a:78:d1:21:cd:c0:f4:
de:39:3e:10:a5:fc:bd:14:b1:02:87:c5:ff:4d:47:
64:03:16:ae:78:68:5b:7e:95:54:3f:a5:05:46:8b:
31:d2:6a:96:bc:89:18:51:49:73:83:b6:0e:ea:02:
45:15:e2:1c:36:56:a4:be:a5:a5:13:f9:f2:45:75:
ee:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:3A:CD:0B:34:20:05:DD:8B:7E:67:67:D6:84:C2:EB:34:8D:44:F6
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZTrNCzQgBd2Lfmdn1oTC6zSNRPY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.0.0/18
Signature Algorithm: sha256WithRSAEncryption
7c:95:b9:7d:24:79:3e:c6:76:df:3e:96:6d:a8:16:e5:8d:ee:
5b:d0:ac:94:de:1d:bb:78:cb:b8:ea:7c:bb:b8:87:43:88:d0:
e4:bd:72:99:90:6b:c8:18:59:8b:cb:ce:e5:ca:b0:2a:b7:70:
1f:3e:6a:6f:45:fb:e4:35:fd:cc:8b:72:29:72:e9:a1:a9:91:
05:0f:a1:24:f2:9b:d0:5e:a8:5a:a5:0d:26:87:83:28:6c:e1:
7b:ec:73:5b:fc:bf:c9:e2:95:2b:bb:e4:f8:be:76:3b:e7:45:
78:5a:1b:3f:70:e0:31:da:c6:52:78:ce:1e:7e:56:83:a6:3a:
b0:a4:1c:58:33:ac:29:43:78:e8:c9:9a:4c:41:7b:df:71:b7:
7b:43:66:ec:d2:b8:5b:53:6a:5a:e8:96:0f:6e:fd:1c:0c:7e:
54:c9:58:a0:28:d9:6b:9f:74:fb:1b:a8:ab:fc:5b:66:85:a3:
2d:02:ce:b4:30:6f:ed:03:45:15:cd:e5:d8:6d:c9:6e:ad:cc:
a0:d6:af:5c:67:22:2f:19:36:d4:af:46:26:b3:af:f2:f5:17:
02:b7:65:d0:25:71:54:85:bb:d5:bd:e7:eb:ec:e8:57:df:a6:
90:5b:3b:80:fb:1b:11:0c:7c:7a:30:aa:71:f0:af:16:9d:a2:
01:87:b3:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:10 2025 by rpki-client