Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/n9-Vny-QYMBXcKeVHw2bsAr4j8k.roa
File: n9-Vny-QYMBXcKeVHw2bsAr4j8k.roa (raw, json)
Hash identifier: ikNlYa5C9TSgw9FxuVSPC1RJfY/kaEIBHnnz9TiL33w=
Subject key identifier: 9F:DF:95:9F:2F:90:60:C0:57:70:A7:95:1F:0D:9B:B0:0A:F8:8F:C9
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C58
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/n9-Vny-QYMBXcKeVHw2bsAr4j8k.roa
Signing time: Wed 29 Sep 2021 02:49:42 +0000
ROA not before: Wed 29 Sep 2021 02:49:42 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 203.77.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3160 (0xc58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:42 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9FDF959F2F9060C05770A7951F0D9BB00AF88FC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:69:15:a4:b9:b0:c6:87:f3:3a:39:d0:55:00:
25:11:4e:23:6a:61:94:bc:87:72:30:08:aa:57:7d:
ef:82:87:7e:cb:16:7e:f8:f0:b7:7a:ac:54:72:ef:
c1:21:9b:b7:33:a4:77:05:ba:7a:bb:e1:91:6e:a3:
f1:8a:e7:66:a5:92:83:c9:b0:b0:67:e5:00:78:ea:
c5:44:fc:ce:2b:f1:ec:d7:fd:9a:46:8c:29:72:aa:
d7:27:35:d4:f2:ca:41:72:4d:c2:e5:04:97:55:5c:
79:05:3a:98:63:6d:07:b9:48:fa:5a:7d:d0:c1:fd:
9a:6b:47:4e:ef:b4:bf:bd:fe:13:be:5d:f7:09:46:
46:22:92:6d:66:29:2e:31:c1:44:8e:27:94:28:57:
46:62:3a:41:4e:65:eb:77:85:f3:40:59:7d:eb:1d:
46:07:12:f3:97:86:82:93:27:a1:c3:f6:0c:28:e6:
ca:c9:d8:eb:d9:be:f7:0d:3e:13:a4:52:d6:ea:44:
71:fb:9a:84:50:62:9a:e4:cf:a4:ab:5f:a4:61:15:
b3:4c:99:f0:c0:10:12:a5:d9:cd:e1:d9:64:96:6a:
c0:90:28:b2:db:0e:3b:60:90:15:6c:aa:cb:da:7e:
49:7d:78:9f:64:d5:53:21:b6:b1:2f:05:9b:c3:f6:
2d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DF:95:9F:2F:90:60:C0:57:70:A7:95:1F:0D:9B:B0:0A:F8:8F:C9
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/n9-Vny-QYMBXcKeVHw2bsAr4j8k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.64.0/18
Signature Algorithm: sha256WithRSAEncryption
90:d2:a9:65:43:4c:97:71:af:db:9b:a3:f9:ed:43:aa:4f:35:
03:33:fb:86:46:85:6a:c9:9b:e1:b1:60:2d:2d:c8:7a:76:98:
20:04:74:75:34:43:58:cd:0b:3b:ba:16:82:44:3c:26:01:a3:
94:c9:60:c4:c4:6e:ee:d8:a3:0f:db:38:5c:d2:29:44:f7:07:
d7:2a:ce:56:1f:f2:b6:01:d4:43:a9:d3:1b:57:5e:c8:68:b8:
27:cf:7f:49:2c:19:37:42:f3:5d:b6:9e:47:85:8a:6a:39:0f:
69:97:fd:ce:36:7b:f1:81:4d:05:2c:d7:05:38:5f:10:9a:2f:
0a:5a:ef:6c:d4:e6:60:b3:b3:05:3d:4c:a5:98:1c:b7:7d:66:
32:19:0e:22:9e:b6:e0:f6:4e:8d:c8:43:24:10:bb:00:f7:c4:
c7:39:91:6d:62:57:4d:1e:a8:be:f0:5f:1c:a2:44:f4:06:d0:
2c:64:ba:3d:60:d7:70:7d:4a:fd:cf:71:53:05:fe:77:c2:b7:
8e:ea:52:b8:68:cd:94:b0:e9:18:0b:56:d6:98:1b:e5:e7:54:
28:fb:57:e8:04:1d:e4:4d:50:42:66:58:5c:0c:65:93:cb:7a:
59:bc:ac:b2:ba:51:a7:92:cb:ff:6b:27:28:93:93:c6:8e:d2:
ad:a3:f1:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org