Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mdkaiVRr_YXhibveQtP0Ixdef7o.roa
File: mdkaiVRr_YXhibveQtP0Ixdef7o.roa (raw, json)
Hash identifier: 1FV+hlE3bLl/xOtof/AkFnDzmv6GVq37nUv+MKqQNQU=
Subject key identifier: 99:D9:1A:89:54:6B:FD:85:E1:89:BB:DE:42:D3:F4:23:17:5E:7F:BA
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C8F
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mdkaiVRr_YXhibveQtP0Ixdef7o.roa
Signing time: Wed 29 Sep 2021 02:49:58 +0000
ROA not before: Wed 29 Sep 2021 02:49:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 203.65.172.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3215 (0xc8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=99D91A89546BFD85E189BBDE42D3F423175E7FBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:29:32:e4:67:b5:a5:b6:7a:67:da:89:20:04:
a2:80:1a:cf:ac:20:d9:1e:72:09:ff:f2:61:44:3c:
5d:b0:ad:2a:6f:f1:a1:5f:0f:d8:e8:4d:6b:8c:fa:
a3:c9:ca:3d:27:66:b1:c9:46:77:58:0b:a3:43:6c:
67:6d:aa:59:ae:26:f6:6f:5e:9e:74:03:1c:34:c5:
5f:05:c2:1b:b4:e5:46:4f:b8:61:10:0b:cc:55:5b:
0e:63:b7:1a:06:b9:37:99:0f:dc:b3:f2:fd:7e:c7:
35:c6:af:c3:40:f9:f7:81:47:28:ba:2e:49:f9:36:
df:87:31:d7:b6:64:9d:79:fa:77:31:06:be:2c:f7:
51:3d:06:2e:fe:7c:7f:73:8a:97:af:d0:17:19:ee:
37:8c:f3:ec:58:69:6b:f0:ac:44:5a:34:42:b6:0b:
26:80:f4:be:a0:af:bc:05:af:f2:5f:d2:ab:09:36:
48:81:33:61:80:59:23:2f:bf:00:af:ee:99:09:30:
e5:e3:0c:91:ca:a1:b7:99:ff:82:47:76:71:88:1f:
ab:76:c7:49:a2:97:6b:e0:99:f6:c3:02:12:82:ae:
ce:a4:05:1e:c8:4e:dd:aa:e0:c8:7e:ab:3a:21:51:
64:9b:5b:3b:57:50:3b:d2:4c:e6:b0:fe:ea:05:5b:
37:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D9:1A:89:54:6B:FD:85:E1:89:BB:DE:42:D3:F4:23:17:5E:7F:BA
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mdkaiVRr_YXhibveQtP0Ixdef7o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.172.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:da:26:5e:07:ab:06:f8:e5:e8:5c:83:70:f7:31:95:5a:82:
b3:1a:cb:bd:09:f0:bb:aa:2a:1a:c9:5e:62:aa:ea:33:0d:f3:
f6:b1:62:ae:b3:97:dc:9d:4c:0a:32:39:42:34:ca:10:e4:46:
f6:0a:39:f7:17:f5:22:4b:fb:4f:d0:07:30:33:78:0e:e6:44:
ef:c7:d5:ca:28:90:a9:bc:8f:41:bb:6d:8a:1b:cd:3a:8c:a7:
27:0b:f8:15:07:db:86:47:ba:39:60:de:e9:b9:85:48:be:34:
82:c4:45:ba:77:d4:97:d2:3a:89:60:3e:55:19:39:57:2a:21:
be:b2:bb:b3:7d:5f:35:95:54:fc:83:59:34:3c:53:11:79:3e:
5a:13:ac:26:9e:40:e5:65:31:de:84:fa:b0:70:86:50:3f:8b:
fb:a8:00:7f:66:81:f4:63:2a:b2:24:8d:d1:40:2e:ca:2b:6b:
ec:01:80:c1:30:ba:8a:b7:7a:f5:14:e4:48:8b:39:00:09:c9:
47:e7:ec:8e:d2:26:01:65:5e:e1:d2:c5:46:b5:7c:86:f4:45:
5f:e2:2c:a2:59:fe:9e:c6:5c:f8:b1:48:6f:38:d6:a1:7f:73:
76:11:af:1e:d8:9d:2b:fc:22:87:0b:cb:a0:86:13:f4:fb:c9:
69:23:46:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org