Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/h-9UjirGM_KddzlMcXKEsgbKDPE.roa
File: h-9UjirGM_KddzlMcXKEsgbKDPE.roa (raw, json)
Hash identifier: Oziu2n4FY6lXOlVNUfPFz9F5+F+maILLb43n3rkFA/0=
Subject key identifier: 87:EF:54:8E:2A:C6:33:F2:9D:77:39:4C:71:72:84:B2:06:CA:0C:F1
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/h-9UjirGM_KddzlMcXKEsgbKDPE.roa
Signing time: Thu 15 Sep 2022 02:47:35 +0000
ROA not before: Thu 15 Sep 2022 02:47:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 202.145.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=87EF548E2AC633F29D77394C717284B206CA0CF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:90:e7:c6:79:b0:fe:0a:b8:8c:d2:a3:63:c0:
8e:7b:e1:b2:26:b7:2e:a9:d5:8b:4b:55:a9:49:c8:
4f:28:5a:c9:26:ff:62:d7:42:20:56:63:f1:9a:2f:
4a:ca:db:65:e6:d5:0a:52:2e:40:34:90:e6:4e:ec:
4e:b9:ff:1e:c2:af:de:7d:2d:3a:0c:45:d9:96:46:
2c:86:48:80:f5:3f:f3:f3:ea:12:96:aa:ed:b8:2a:
be:52:20:3a:23:4e:3e:cf:82:5a:4a:68:df:b3:d7:
51:4d:b5:12:58:32:31:96:a8:84:62:35:aa:50:88:
91:f0:58:47:29:eb:da:cb:4e:aa:50:aa:76:4a:d0:
d6:a0:b3:a6:9f:90:91:a0:c0:2a:45:56:59:53:ed:
23:b3:4d:ca:67:5f:4a:6d:ca:91:5b:3e:5c:95:d6:
01:3b:b8:3d:5f:21:97:f6:28:f1:5c:15:ea:0c:84:
28:02:e7:9c:dd:21:8a:7a:b8:14:64:8a:44:74:7d:
f7:4f:d7:ff:2c:4e:b9:ef:de:43:87:48:a8:39:50:
18:60:b6:d6:be:ac:80:87:32:43:71:38:ed:95:c2:
62:96:3a:8e:c0:4b:b4:d7:8c:78:48:2a:55:c8:df:
4d:19:d6:da:62:37:fd:46:dd:50:1a:41:fe:88:7c:
e3:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:EF:54:8E:2A:C6:33:F2:9D:77:39:4C:71:72:84:B2:06:CA:0C:F1
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/h-9UjirGM_KddzlMcXKEsgbKDPE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.145.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3a:a8:28:78:31:5f:00:2a:64:ca:6d:00:94:82:f3:fb:10:da:
05:64:70:3b:89:3a:91:75:13:2f:64:69:90:23:19:02:95:a2:
a6:5b:dd:36:dd:df:8e:bb:6e:bb:6b:60:78:f2:75:b1:d4:ea:
de:6a:59:ed:ab:8e:d0:db:ad:f9:c8:6a:88:25:73:7a:2d:db:
2c:ac:3c:ad:52:e4:e1:82:e1:43:9e:34:bf:a6:a6:d6:05:19:
b7:d6:0d:55:3b:bf:22:8a:af:c3:ab:d1:d2:7a:d2:fe:ac:be:
ac:7e:3f:68:73:af:11:16:99:95:80:19:6a:67:5d:8d:36:00:
87:ff:a5:37:0a:0f:6e:3e:87:b2:99:da:37:14:7a:e7:4c:95:
c3:d3:86:b4:22:c9:b4:a8:19:17:4a:f7:f2:85:63:95:d3:d9:
81:6c:25:d0:ba:8e:96:fe:ca:fb:89:78:7e:74:7c:00:4c:fa:
7c:86:36:9a:46:67:55:b6:21:49:0d:96:9d:c0:57:32:39:36:
d5:df:ed:9a:8b:58:f7:61:9a:ca:8c:83:ce:8b:12:65:2e:35:
98:ca:d1:fc:0c:28:cf:0f:c3:63:06:e6:48:9b:00:2b:ee:55:
7e:5b:a1:da:42:e1:af:c9:54:3f:1e:41:e7:ca:16:76:04:df:
77:9d:ab:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org