Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eknSYmfQTqxxeFBSAcG90T3CmKA.roa
File: eknSYmfQTqxxeFBSAcG90T3CmKA.roa (raw, json)
Hash identifier: uEst7Q3CG7wZvdtg/2Xp0gUGKT/9Y1YACDmqFENDmc4=
Subject key identifier: 7A:49:D2:62:67:D0:4E:AC:71:78:50:52:01:C1:BD:D1:3D:C2:98:A0
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A7E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eknSYmfQTqxxeFBSAcG90T3CmKA.roa
Signing time: Sun 07 Feb 2021 11:36:25 +0000
ROA not before: Sun 07 Feb 2021 11:36:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 202.145.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2686 (0xa7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7A49D26267D04EAC7178505201C1BDD13DC298A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:68:f9:27:77:6a:66:d7:a5:85:7b:df:e4:4d:
a6:00:87:93:d6:b7:8c:ba:06:99:96:ea:09:00:63:
06:fa:f1:f5:fd:c9:c2:0f:d5:a7:f1:56:9e:64:fd:
f0:3e:6c:23:db:50:33:8b:dd:8a:b0:e6:ab:55:3f:
33:0f:02:03:98:08:30:08:43:94:44:ed:ff:e0:60:
d7:bd:6b:ee:9b:b0:f7:f0:fa:74:24:e5:ca:ad:07:
02:8a:c3:d6:6b:12:e4:e7:a1:bd:b0:fb:2b:53:d4:
1d:a3:1b:01:f4:95:49:da:c5:d1:39:51:5a:33:ca:
4e:27:d8:8a:ad:3d:cc:81:3d:af:ca:dc:5c:3b:50:
6c:b5:f8:0d:73:f5:a9:e6:53:6e:e3:91:f2:10:d6:
cf:07:76:1d:f0:f2:65:08:5f:dd:9c:9a:bc:c8:6a:
00:3a:f7:52:61:37:9f:5d:96:c9:87:8f:3f:fc:3a:
38:6a:89:53:50:f8:73:52:42:d3:4d:85:d9:65:92:
d1:25:e1:7e:fb:12:41:a4:88:e4:76:69:9e:f0:23:
51:c3:60:2b:62:4a:eb:f8:6e:d2:9b:52:71:c3:fd:
57:16:22:21:89:f1:29:1b:5d:a6:fd:94:8f:b0:f1:
1c:6e:b3:2a:b3:2b:71:24:e2:1e:eb:69:6b:27:ba:
6f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:49:D2:62:67:D0:4E:AC:71:78:50:52:01:C1:BD:D1:3D:C2:98:A0
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eknSYmfQTqxxeFBSAcG90T3CmKA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.145.64.0/18
Signature Algorithm: sha256WithRSAEncryption
5b:ea:bd:c6:2b:e1:df:4a:da:08:d7:8c:b1:03:b8:48:0b:78:
a9:ae:49:e4:0d:17:00:f6:03:a1:1b:40:fb:87:0f:9f:e2:8a:
5d:66:2f:87:1b:47:a6:dc:30:06:fb:c3:45:59:21:96:ec:e3:
75:ba:e7:0d:73:43:73:fa:f4:c5:9b:18:27:eb:a6:17:55:ee:
ac:3b:65:69:f4:cc:12:b1:14:69:42:f3:ef:a2:d3:19:73:9c:
4b:93:60:6e:2e:1b:9f:d8:59:63:b1:d2:68:79:d1:0b:8f:a0:
67:24:1a:98:23:12:76:09:5e:5e:00:85:4a:48:c8:e4:db:30:
45:f0:14:50:df:f5:ba:e1:da:62:db:fa:c8:3e:42:5c:5b:0f:
aa:ec:7e:3b:f0:70:aa:8d:58:7c:4a:f6:99:99:06:fe:b8:f9:
9e:93:ee:2d:5d:15:33:42:71:b5:ef:c8:8c:f2:8d:f6:e1:51:
83:f6:4e:fd:55:41:82:c8:fc:46:ea:19:88:c3:59:58:23:5e:
67:1f:f1:aa:9d:92:30:f8:0a:6b:c0:0f:bd:d0:ad:52:91:2e:
02:f6:30:29:41:0e:8a:f1:c9:42:78:23:90:ef:59:a8:ff:6c:
33:a0:30:71:08:1d:ed:b1:c5:e8:aa:da:6c:d4:51:62:1f:cd:
29:30:1c:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org