Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/crpvFfOF1-azfO_Cxe8kXN5upcY.roa
File: crpvFfOF1-azfO_Cxe8kXN5upcY.roa (raw, json)
Hash identifier: HOuWKYmo8xfeCIF9+ysK0AXc+gzUWx0Mt1MgAwO77vo=
Subject key identifier: 72:BA:6F:15:F3:85:D7:E6:B3:7C:EF:C2:C5:EF:24:5C:DE:6E:A5:C6
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CBB
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/crpvFfOF1-azfO_Cxe8kXN5upcY.roa
Signing time: Wed 29 Sep 2021 02:50:11 +0000
ROA not before: Wed 29 Sep 2021 02:50:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131628
IP address blocks: 175.99.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3259 (0xcbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=72BA6F15F385D7E6B37CEFC2C5EF245CDE6EA5C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:64:9a:58:92:0b:7d:1f:de:e2:4d:bb:fc:ee:
47:fe:ad:88:09:e1:71:c5:33:42:5b:99:70:b5:58:
b1:7b:dd:e6:36:02:10:cd:45:93:b3:c4:ec:77:14:
9a:ae:5b:1e:79:bf:82:bd:3b:cc:20:ee:d2:1d:45:
c2:1f:8b:b2:3b:8e:92:e1:62:a3:fc:19:9f:91:2c:
ab:ac:05:1e:6f:20:8d:09:c7:3b:31:70:ef:a4:9e:
0a:b2:1c:0a:b0:c3:57:50:1d:bf:2e:77:e7:a9:77:
6a:2f:66:b9:25:3b:0a:0a:95:15:ae:6a:7c:18:40:
1a:62:32:bb:f3:ac:13:0a:ed:43:f9:92:36:25:a7:
e0:0d:0b:4f:aa:02:e5:98:48:23:e5:f3:e7:ba:86:
da:a1:6b:7d:b7:58:4e:ba:64:50:41:e4:9a:79:73:
f5:a6:7a:59:7b:39:47:57:f6:b4:7e:08:8b:b2:00:
2e:a5:13:13:2e:fd:7e:f2:4c:0f:2b:4a:54:20:d5:
3e:46:84:84:e5:5e:b2:ea:1b:36:1c:d7:c2:0f:45:
90:5b:ea:e2:49:19:5b:7f:22:f3:58:db:fb:6b:51:
43:74:6a:00:34:9f:79:7f:70:76:27:61:69:9a:b9:
56:b7:61:59:61:38:0b:28:9b:74:12:0a:22:27:d4:
6c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BA:6F:15:F3:85:D7:E6:B3:7C:EF:C2:C5:EF:24:5C:DE:6E:A5:C6
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/crpvFfOF1-azfO_Cxe8kXN5upcY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.99.0.0/19
Signature Algorithm: sha256WithRSAEncryption
97:32:22:1e:da:82:30:2b:a5:63:69:53:30:d1:22:84:bf:f4:
75:31:30:0b:a7:0a:79:8e:8c:21:d1:99:c4:a8:a9:6e:69:3b:
1a:9d:b9:68:5d:31:df:95:cc:e4:5e:8d:be:b4:1e:21:fa:a3:
ae:cc:de:3b:f4:45:0b:d2:0b:b6:54:98:89:8c:b5:56:a8:69:
07:9d:50:06:a2:b8:12:23:e2:24:d4:91:32:7b:b5:90:3b:29:
98:21:e3:29:eb:1e:79:2c:76:5e:7b:44:dd:59:04:b0:57:35:
b4:d3:b4:86:d2:ff:ba:d9:d9:7a:fa:17:54:f8:67:52:f9:3e:
39:2a:e0:26:eb:d8:81:c3:86:26:c0:33:7a:c4:37:cc:23:f7:
c4:14:66:c5:e9:eb:6b:b5:39:ad:76:97:07:a8:7a:32:bd:6b:
3e:12:c4:95:be:18:2f:19:4e:83:1c:04:b7:0d:d3:57:d2:b0:
a8:c6:f6:97:75:a9:37:51:89:fd:ff:8b:5f:de:64:50:2e:87:
98:06:d8:48:be:84:88:9a:74:d6:38:93:e1:49:88:d2:14:7a:
23:0c:04:d8:b6:6d:0a:41:c7:81:19:a3:b5:e0:5c:b4:a8:01:
f2:2e:36:f9:ec:be:2d:94:7f:4f:cf:a8:03:5a:b3:3e:06:e2:
b0:32:3f:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org