Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kTgTWcflUMbAULkyywve9lt300U.roa
File: kTgTWcflUMbAULkyywve9lt300U.roa (raw, json)
Hash identifier: qVCnFEYmr22E8fOfciF2P5D6UuXtz1uEs9ij2LSifA0=
Subject key identifier: 91:38:13:59:C7:E5:50:C6:C0:50:B9:32:CB:0B:DE:F6:5B:77:D3:45
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kTgTWcflUMbAULkyywve9lt300U.roa
Signing time: Thu 15 Sep 2022 02:47:32 +0000
ROA not before: Thu 15 Sep 2022 02:47:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24158
IP address blocks: 49.216.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=91381359C7E550C6C050B932CB0BDEF65B77D345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:09:d1:24:40:a9:9b:5b:ef:ec:fe:6d:08:37:
ae:bd:5e:95:9e:30:a3:e9:e5:5d:90:94:31:e2:57:
67:39:02:45:4a:e5:4d:8f:fa:24:ec:44:d7:a3:2c:
76:a5:70:7f:40:0e:c3:75:1f:aa:bb:46:53:50:a3:
bf:3f:f1:90:9a:af:a3:b6:7d:f5:62:f3:60:ec:56:
01:a0:0b:f4:ac:50:99:23:89:fe:12:0b:df:84:46:
a2:8b:77:ae:e1:93:dc:bb:ed:61:8d:f9:17:8c:3a:
59:6e:eb:e0:0c:b0:06:29:c0:2b:e5:f8:7e:c9:1a:
68:82:6e:68:87:a8:df:32:22:0a:87:8a:73:98:02:
55:7b:89:cf:ab:26:a4:50:a3:f0:ed:e7:4b:5e:6e:
c9:4c:2c:35:7a:98:38:e6:c6:e3:6e:86:b3:fe:f0:
c4:e2:49:02:f5:6e:bc:01:1c:16:8b:41:b6:d6:2d:
07:1d:8b:ec:ba:7c:57:2f:f0:8e:4a:05:2a:2f:e4:
f3:b2:97:59:0e:b2:c5:34:db:1a:4b:d6:91:2d:85:
63:a6:8f:00:83:61:de:2d:9c:3b:3c:b6:0f:6b:f7:
dd:3a:d3:f2:bd:14:be:84:c1:b4:7a:f2:6e:92:c2:
e9:07:6e:4e:76:11:eb:97:a8:93:cc:96:4a:2a:2f:
ab:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:38:13:59:C7:E5:50:C6:C0:50:B9:32:CB:0B:DE:F6:5B:77:D3:45
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kTgTWcflUMbAULkyywve9lt300U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.216.0.0/14
Signature Algorithm: sha256WithRSAEncryption
7b:f2:10:b5:48:44:53:33:58:22:7f:f6:84:c1:4f:5b:19:06:
da:4d:ca:71:c5:e4:97:4b:67:83:95:a1:29:35:4c:03:6d:01:
d4:5c:69:e2:f7:fd:65:cf:23:11:a6:52:c9:0b:25:65:d5:22:
df:9f:d0:0c:1f:8b:fc:17:6c:33:02:52:57:c2:41:b8:a4:c5:
7c:ed:b6:87:1f:f8:e0:d4:7c:d1:ed:1b:9d:52:73:c0:91:fc:
a9:a0:15:26:8c:2f:6c:dc:e8:01:87:ad:8a:7e:12:70:83:e3:
05:c2:d4:0f:4a:1d:b6:f5:23:4f:d2:90:cb:9d:cc:2b:d3:1f:
61:07:6f:a3:26:ef:3d:f0:05:22:6b:1f:17:cb:b4:f9:08:2e:
37:4e:b4:c3:f4:06:2e:48:e7:1a:36:fa:d9:a3:70:39:46:46:
fb:10:0a:f2:8a:62:15:59:6f:21:5b:3a:31:8e:81:2a:88:89:
b9:f0:28:69:70:48:3d:90:bf:09:0b:9a:dc:b5:45:0b:28:b7:
bb:6b:0e:87:72:34:00:a0:17:71:7b:b5:b8:60:84:de:53:82:
4a:79:a2:31:db:32:0f:14:09:73:c0:8a:24:b8:6d:62:f7:5e:
86:28:fd:ba:c0:48:7a:5f:c6:18:6b:ad:71:21:90:fa:ef:04:
21:c8:43:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org