Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/h6CxEWjNFv2_Ahllyu3TTnArQJA.roa
File: h6CxEWjNFv2_Ahllyu3TTnArQJA.roa (raw, json)
Hash identifier: KjVhhiuc+sf1APS+TVSbffvvo3eEMIW9yxnuzrJ39hc=
Subject key identifier: 87:A0:B1:11:68:CD:16:FD:BF:02:19:65:CA:ED:D3:4E:70:2B:40:90
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CB8
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/h6CxEWjNFv2_Ahllyu3TTnArQJA.roa
Signing time: Wed 29 Sep 2021 02:50:10 +0000
ROA not before: Wed 29 Sep 2021 02:50:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 219.86.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3256 (0xcb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=87A0B11168CD16FDBF021965CAEDD34E702B4090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d6:fb:66:94:5a:95:b1:3c:fb:37:4b:de:0a:
3f:ee:e4:ac:24:96:ab:1a:5e:41:61:a1:f2:e0:c7:
08:f2:c9:b0:4f:e3:94:b8:68:0f:72:b6:d8:83:d1:
2e:3c:91:b8:66:35:f1:66:b2:1d:f4:dc:8c:b0:c4:
6e:1e:71:89:3b:77:75:c1:c4:57:0b:a9:c6:34:62:
25:d9:60:83:d1:55:0e:3d:a9:6b:22:d3:c8:a4:a8:
0b:1f:c4:10:0a:a6:09:cb:39:12:8f:3b:96:e4:a8:
6e:af:e6:8b:c1:59:17:a4:16:a4:a4:6d:08:b9:2c:
9e:0c:fc:72:a3:1d:73:9b:2b:2a:b3:0a:fd:bd:7c:
b1:0f:bd:2a:42:c1:09:e4:5a:48:9f:2d:55:75:2d:
e7:44:a0:87:60:68:4c:4a:15:bb:c5:de:83:e5:86:
7c:b9:67:51:81:99:ab:4c:56:55:c3:f4:6d:65:87:
d0:06:f6:03:4e:2d:d0:7c:88:c6:6f:00:77:a7:19:
f4:85:a4:35:ed:96:03:00:97:f8:10:7c:5e:b0:8c:
26:b3:9a:2a:d2:b1:88:7a:d2:32:98:06:96:28:a5:
83:22:40:56:e1:34:8d:51:05:09:9c:c4:81:42:2e:
39:7d:10:9a:74:62:fa:f2:b3:2c:27:4c:b7:02:a6:
35:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:A0:B1:11:68:CD:16:FD:BF:02:19:65:CA:ED:D3:4E:70:2B:40:90
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/h6CxEWjNFv2_Ahllyu3TTnArQJA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.86.91.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:e2:59:e2:20:86:98:38:fb:00:e2:37:87:af:2e:65:d2:b3:
3c:e0:01:48:8d:ab:82:b1:25:14:a8:e8:15:1d:ed:88:f2:13:
ad:4f:31:74:90:c3:70:df:7d:8d:e1:4c:1f:86:3f:e5:3e:61:
ef:8d:7b:86:84:2b:6a:8a:37:22:a4:fd:0e:46:d2:38:35:f9:
25:82:c8:d9:d9:d5:17:5e:6e:40:26:5d:19:ee:08:75:fe:a9:
01:34:d1:79:02:ae:15:cb:30:d8:5e:d8:95:e3:ef:c6:4c:f1:
80:71:c6:54:8e:a5:92:2c:6f:d7:6c:51:8e:93:fa:55:b1:c2:
83:02:27:86:c1:c6:11:4d:dc:74:16:8f:9e:f9:7f:17:dc:67:
24:5d:41:7b:16:aa:99:2b:20:d7:5f:29:d2:59:4c:10:51:97:
80:f4:e0:b1:d1:d2:f5:2e:c7:fb:7c:84:96:c9:44:ca:aa:72:
91:4c:32:37:2c:24:d1:14:2e:a6:7f:da:d0:65:97:c0:ac:71:
31:56:65:21:fa:85:cd:52:e5:ea:59:08:94:74:0e:56:b5:e2:
52:2d:a1:8e:2a:f6:8a:54:a4:c0:73:ff:38:55:89:f6:86:2f:
28:b5:bb:89:94:54:e7:52:4a:61:e8:57:0e:05:e3:e9:c6:4c:
7d:bc:62:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org