Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gabiTMh5Ofm35wJEs8kD0wxJ-Io.roa
File: gabiTMh5Ofm35wJEs8kD0wxJ-Io.roa (raw, json)
Hash identifier: QkvKxxFcTSpNAXNJAsOqPeZKgee7ZIOa/Bl7KWQ6/Zs=
Subject key identifier: 81:A6:E2:4C:C8:79:39:F9:B7:E7:02:44:B3:C9:03:D3:0C:49:F8:8A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AE8
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gabiTMh5Ofm35wJEs8kD0wxJ-Io.roa
Signing time: Sun 07 Feb 2021 11:42:30 +0000
ROA not before: Sun 07 Feb 2021 11:42:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 203.65.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:42:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=81A6E24CC87939F9B7E70244B3C903D30C49F88A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d0:a1:f6:c8:a3:53:95:5c:85:8b:f9:45:46:
11:79:19:05:53:d4:0a:a7:0b:8a:54:30:3e:e8:67:
ac:12:f4:d5:a2:9e:92:f5:13:b1:aa:a6:87:75:6c:
79:0e:d9:83:9f:73:99:ff:69:e6:dd:cd:90:9f:6c:
4f:b5:50:cb:9c:13:87:51:14:9e:eb:f2:1a:ad:56:
aa:39:dd:af:74:fc:50:cc:06:89:92:43:ee:ad:75:
e3:3d:42:13:07:66:18:0c:92:c8:10:f5:67:9e:8c:
39:08:62:59:a6:02:30:b8:88:d9:80:b3:26:b8:4e:
62:bd:66:7a:45:67:3d:dc:c3:4f:c1:9d:02:ea:78:
f5:77:1f:6d:b8:63:90:56:59:2e:28:d5:b7:8a:3e:
25:ce:46:61:39:e9:48:96:f3:6c:20:f8:c9:f9:38:
3c:47:fe:5a:ef:43:7a:ae:3d:bb:b6:47:17:f7:90:
13:64:fd:30:6e:3a:45:b4:66:4e:73:3c:83:60:bb:
bf:e3:08:49:dd:c8:ca:17:86:31:3f:46:1a:e6:5b:
58:9d:c9:2b:0d:04:64:25:5f:ad:e3:22:b3:33:db:
90:96:69:3f:86:27:79:72:ce:c0:95:cb:a8:3c:28:
8f:ca:27:e7:e6:8a:c7:a4:0c:27:e3:58:c1:bd:8b:
a1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A6:E2:4C:C8:79:39:F9:B7:E7:02:44:B3:C9:03:D3:0C:49:F8:8A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gabiTMh5Ofm35wJEs8kD0wxJ-Io.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.172.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:94:f1:4e:cf:34:e4:ad:db:91:b6:29:b0:d5:ad:57:ec:60:
be:fb:ac:78:03:97:2a:1a:36:d9:3c:18:4f:f0:dd:ca:7e:73:
cc:7e:56:df:ef:41:1f:8b:3d:8f:5f:ad:08:6f:16:87:8f:1d:
98:11:f8:49:08:a6:86:42:cf:bd:9f:7f:f5:0a:49:65:cc:56:
c7:c8:65:15:c7:46:95:6c:67:a8:57:ef:82:e8:44:6a:94:23:
85:14:c4:cf:c0:28:60:55:07:d5:25:f0:19:f6:5f:45:ef:bb:
e9:e6:02:40:bb:75:e2:de:c1:96:ba:2d:be:00:6c:57:e4:1a:
1c:b0:5f:05:3f:fb:83:99:73:c0:ae:de:0d:9b:ba:43:f7:71:
4b:85:b6:ca:09:5e:80:f3:ec:36:cb:06:9d:78:3e:ce:c9:2a:
ba:08:57:48:c4:15:df:0c:76:0f:3f:7f:0b:81:dd:f0:aa:71:
5b:de:08:ab:f1:c1:96:2e:f1:1c:8f:e3:9f:2d:d7:dc:99:7e:
fe:a1:7a:f7:27:4a:64:1c:3a:19:0b:29:2c:b1:fa:31:cc:a0:
4a:b4:19:3b:51:13:30:6c:a4:8e:c9:44:49:f6:5a:f7:61:d8:
81:cb:41:92:ca:ff:5c:79:cc:3d:8c:d7:7e:0e:bd:d7:a7:ab:
5f:5c:36:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org