Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/fnOuSc4vIefe-BEDuZaYm5bJsr0.roa
File: fnOuSc4vIefe-BEDuZaYm5bJsr0.roa (raw, json)
Hash identifier: a7HxVwO0aQIw8hg5TO+4wrs4Q58VYx+MyRupbX5r4hg=
Subject key identifier: 7E:73:AE:49:CE:2F:21:E7:DE:F8:11:03:B9:96:98:9B:96:C9:B2:BD
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C94
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/fnOuSc4vIefe-BEDuZaYm5bJsr0.roa
Signing time: Wed 29 Sep 2021 02:50:00 +0000
ROA not before: Wed 29 Sep 2021 02:50:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4662
IP address blocks: 210.62.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3220 (0xc94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7E73AE49CE2F21E7DEF81103B996989B96C9B2BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:00:01:09:a0:04:4a:03:7b:16:05:34:f2:cc:
01:c7:4a:b6:33:67:d7:a1:e8:c9:88:0e:8c:3d:54:
20:5a:f4:0b:03:8c:f6:e3:d7:a0:1d:09:8f:f3:a7:
a7:01:74:1b:5b:ff:e0:6d:ea:9e:87:b1:7d:9e:51:
cc:c1:ed:80:ef:54:52:36:d2:a5:31:8b:0a:f0:2d:
62:43:f3:58:c7:2d:9b:fc:13:80:91:46:89:2d:2d:
96:aa:8c:24:a7:c1:d6:b0:ec:a5:d6:07:cc:bf:42:
75:fc:f1:0e:1b:c7:bd:0c:45:f3:06:dc:fd:e2:ee:
f4:46:6d:76:35:ff:c1:05:49:a3:d4:cc:aa:bf:16:
0e:fa:af:1b:ab:6e:2a:9a:fe:7a:a4:c3:c4:41:ba:
bc:d5:ea:29:f7:a4:5b:f5:f5:00:d9:c3:19:68:43:
9d:f3:72:04:5c:72:af:0b:d6:aa:00:1b:71:8f:5c:
87:18:de:35:cb:ca:3f:86:ae:a5:b3:9a:ca:59:a0:
fa:b4:42:81:b4:2f:ae:7e:38:ea:04:08:05:e3:4d:
eb:ba:8b:8a:d7:f1:88:7f:bc:ba:7b:ac:d7:36:bf:
ac:e0:30:33:86:20:6b:55:cc:f7:dd:f5:ee:7c:ec:
0b:1d:80:fc:62:e8:0e:30:91:ca:35:ae:7a:f8:de:
09:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:73:AE:49:CE:2F:21:E7:DE:F8:11:03:B9:96:98:9B:96:C9:B2:BD
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/fnOuSc4vIefe-BEDuZaYm5bJsr0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.0.0/18
Signature Algorithm: sha256WithRSAEncryption
51:f6:49:c3:21:d1:ba:cb:38:19:73:21:d7:31:fe:c4:b1:47:
de:b1:0d:76:bc:98:83:a0:4c:07:a6:ff:9e:a9:19:fe:76:38:
79:3a:6c:02:38:50:ab:02:91:22:f3:8b:69:2e:42:ad:4f:4f:
6a:c9:8d:fb:4a:8b:7d:5f:00:01:50:04:3b:0b:8c:dd:04:02:
f6:48:03:4e:3d:fd:00:4f:64:c8:98:ff:89:7c:8f:e6:50:fb:
9b:1a:f8:9e:6e:c0:5f:3a:b2:79:f0:3c:48:21:3a:76:d8:22:
99:71:f2:11:61:1e:cb:a0:7b:92:3d:a5:93:94:3c:98:f3:fc:
d8:30:f6:3a:bc:c3:fe:a4:bb:d4:ed:06:5a:1b:15:24:37:58:
48:b8:8c:80:a0:f4:2a:a9:73:29:f3:0b:58:48:7b:4f:77:21:
24:19:c9:9c:0c:23:d7:14:65:37:2c:31:e0:f0:00:2d:6c:fd:
74:c2:76:02:15:34:85:14:7d:b1:b9:95:54:8b:1d:d8:da:13:
a9:26:b6:dc:59:a4:d3:02:68:9c:51:fe:a3:2b:4f:f5:01:47:
ba:5d:3b:d2:6c:e8:81:6f:c8:94:eb:7c:ec:88:69:57:bd:4d:
fd:d1:25:03:4d:77:1a:c0:96:59:96:95:ee:a8:c9:27:be:85:
9a:27:f0:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org