Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kcKfsTz6qHQYhklcdzvr1bZRY-8.roa
File: kcKfsTz6qHQYhklcdzvr1bZRY-8.roa (raw, json)
Hash identifier: 47/STQtxMsntRfQfr2DApmeoS0+A7A//WQKiK9arZHc=
Subject key identifier: 91:C2:9F:B1:3C:FA:A8:74:18:86:49:5C:77:3B:EB:D5:B6:51:63:EF
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kcKfsTz6qHQYhklcdzvr1bZRY-8.roa
Signing time: Thu 15 Sep 2022 02:47:24 +0000
ROA not before: Thu 15 Sep 2022 02:47:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.243.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=91C29FB13CFAA8741886495C773BEBD5B65163EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f2:c5:b5:1f:ee:c4:26:a6:5a:04:8f:77:e8:
21:3c:72:a3:88:a9:b9:ca:ec:68:59:fa:26:2a:3a:
4e:c4:1b:2f:29:bc:4a:92:02:94:8e:18:99:a6:90:
68:ea:64:ed:1c:78:48:88:5d:1b:15:1c:21:ab:fe:
f1:47:9a:12:3b:fb:c5:d4:0f:23:5f:b6:ef:a3:dc:
d2:82:a0:38:66:b4:c4:9a:98:af:db:f7:51:a7:91:
0c:84:e3:d3:81:43:1b:16:f3:19:ee:9c:c2:b0:57:
97:1e:82:f0:0b:33:ec:96:96:28:ff:a5:bb:8b:80:
66:8d:3e:30:6c:ea:d8:6e:cc:e2:e6:da:fa:74:17:
df:e0:a1:2d:cb:a3:63:7d:80:2c:ff:e2:5e:97:02:
2d:ee:d1:bf:47:7a:04:be:2d:5f:7a:99:bb:34:72:
a9:7e:69:84:d4:e5:3c:19:52:8e:a9:14:6b:8e:a9:
a1:83:3f:67:7e:98:6f:c2:66:fb:a1:58:71:ec:cf:
9e:57:bd:13:72:3a:ea:f2:f7:90:68:a9:cb:10:f5:
fd:a3:3e:8a:dc:99:58:f6:4a:4b:8a:98:c6:07:cf:
12:3b:74:c7:a1:dd:88:1b:21:2d:06:d7:e4:13:33:
4b:ad:67:ea:69:38:49:8f:d4:e7:3f:6f:e7:98:0d:
94:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C2:9F:B1:3C:FA:A8:74:18:86:49:5C:77:3B:EB:D5:B6:51:63:EF
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kcKfsTz6qHQYhklcdzvr1bZRY-8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.96.0/19
Signature Algorithm: sha256WithRSAEncryption
99:cd:9b:03:5a:4a:26:84:ed:14:5a:27:55:a1:07:0e:fd:3c:
e5:b2:06:4d:dc:32:4d:70:91:dd:43:e9:f8:94:f2:2f:c9:b2:
be:02:31:69:38:31:b7:70:6b:64:12:5a:7d:01:70:1f:00:69:
ca:3e:f2:7a:f7:8a:0c:53:e9:9a:b2:46:df:1c:02:e5:9a:27:
79:2b:55:13:14:98:c6:e1:38:91:4e:10:a8:1b:03:32:15:61:
dd:90:c8:b7:ca:a4:a6:23:23:62:ca:2f:47:62:91:af:93:ec:
de:31:93:45:2c:93:fa:0d:84:ea:cb:78:66:af:5a:3e:3e:6e:
23:55:2c:59:b0:61:cc:d9:66:c3:0c:73:44:99:4a:09:a6:9b:
a5:2b:ae:64:35:b5:a6:56:09:59:b4:98:07:1d:8d:e6:7b:b9:
d0:ef:83:6b:6e:30:10:90:c0:3e:81:81:12:d9:21:36:83:95:
56:f6:da:16:5c:4f:50:c9:57:f6:7f:bc:28:a6:8b:a0:79:d9:
5f:a4:27:cc:ea:a9:ec:82:e5:e6:07:47:9e:4e:18:53:6d:73:
0c:b0:24:2d:23:df:c1:ff:2b:27:0c:44:05:e8:03:27:02:e8:
39:7a:5c:14:0d:d4:49:8a:72:fa:c8:92:40:03:a3:e5:97:ac:
01:a2:27:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org