Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nYZpw7QW55ZJzmgkwLQDCXXV-6s.roa
File: nYZpw7QW55ZJzmgkwLQDCXXV-6s.roa (raw, json)
Hash identifier: OXUao+pcD/VfIq7riELzu4z9zRAOCMrV5DSX1AX3yDk=
Subject key identifier: 9D:86:69:C3:B4:16:E7:96:49:CE:68:24:C0:B4:03:09:75:D5:FB:AB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0ACE
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nYZpw7QW55ZJzmgkwLQDCXXV-6s.roa
Signing time: Sun 07 Feb 2021 11:40:30 +0000
ROA not before: Sun 07 Feb 2021 11:40:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 203.77.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2766 (0xace)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:40:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9D8669C3B416E79649CE6824C0B4030975D5FBAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:29:b9:f7:a4:75:a4:63:bc:7b:87:74:2e:79:
30:e1:68:a0:98:ca:25:27:ea:cd:01:58:92:da:e8:
97:ff:5b:b7:91:d7:c9:64:72:c5:dd:1f:24:48:04:
a8:87:38:f1:a1:02:46:57:69:d2:f5:54:56:81:eb:
52:34:02:44:62:9c:19:19:50:6b:8a:a3:e6:89:0c:
d3:49:4f:c3:ca:cd:11:a0:c0:b7:bb:86:7a:dc:ae:
57:af:44:c6:62:91:e2:cb:56:cd:64:0f:fc:49:b3:
e0:03:af:0f:8e:12:ed:ab:fd:32:6d:d5:a4:0b:44:
7d:02:75:1d:a9:93:60:e1:d2:d5:fa:98:14:11:ca:
86:0e:34:c0:7b:f7:aa:dc:db:13:f4:d5:50:ad:ef:
ca:ee:41:cf:79:c1:be:f7:e8:fc:7c:7b:c1:ba:bb:
41:58:ec:66:b4:b8:54:1a:53:51:60:3d:54:3a:cf:
f4:6c:8f:13:aa:c5:92:bb:ff:95:48:c1:5c:79:85:
25:79:9a:f9:40:64:25:1a:f8:1e:07:55:9a:6c:2d:
74:d3:d2:4e:61:e6:07:7d:45:30:06:a4:27:24:ca:
c9:31:37:69:3e:dc:2d:bc:a9:68:f3:e5:7b:22:ca:
e4:e1:ba:2c:9a:af:fa:b4:c3:60:0d:7b:e4:9d:e9:
b4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:86:69:C3:B4:16:E7:96:49:CE:68:24:C0:B4:03:09:75:D5:FB:AB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nYZpw7QW55ZJzmgkwLQDCXXV-6s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.32.0/22
Signature Algorithm: sha256WithRSAEncryption
73:c5:e5:4c:5f:1c:ac:2c:49:ed:f0:17:ee:d6:18:25:4e:91:
68:48:7f:29:6e:b0:2f:12:e2:c7:2e:42:a0:e3:46:fc:03:84:
91:6d:3c:f5:d2:01:ab:ff:a3:39:22:17:d5:06:ec:58:93:da:
26:cf:8c:58:fd:2c:f0:22:05:df:84:78:b6:c0:97:12:33:30:
66:e2:9a:0d:90:35:56:6a:6f:eb:6e:c3:0d:8a:7f:70:35:77:
42:c5:bb:c3:b0:1b:92:b3:87:a1:11:a3:0a:37:78:e7:a5:77:
57:f3:e2:ce:f6:0b:82:39:2a:a7:d2:e5:50:0a:d8:c6:6d:ef:
2e:89:c4:5b:9f:bb:55:9c:22:4d:9f:43:30:c9:71:17:75:0a:
c3:bc:3a:e5:dc:7b:b3:87:c5:5d:3b:cb:1c:d2:22:91:f5:c1:
53:f5:ea:31:a7:cf:40:be:4d:54:71:df:74:c0:b7:3a:c6:a1:
0d:8b:97:c8:3f:29:ea:0e:c8:06:4b:6b:f9:ed:04:25:d0:0b:
38:5f:1c:69:b0:ff:86:dc:e7:c9:8d:8f:ed:c8:0e:49:76:6b:
c0:27:70:27:0d:fa:1b:99:50:63:02:e4:13:99:42:27:33:86:
64:11:d7:32:14:d0:68:3b:80:ff:7d:fa:95:83:86:39:a6:b0:
34:10:93:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org