Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/o3jeKE7m6Qser85EP35z-wejq6s.roa
File: o3jeKE7m6Qser85EP35z-wejq6s.roa (raw, json)
Hash identifier: xkkaT6ZW3KG8AXSehaiPHDpBaZ6J3NtjUEHuze+11fI=
Subject key identifier: A3:78:DE:28:4E:E6:E9:0B:1E:AF:CE:44:3F:7E:73:FB:07:A3:AB:AB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AEA
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/o3jeKE7m6Qser85EP35z-wejq6s.roa
Signing time: Sun 07 Feb 2021 11:48:54 +0000
ROA not before: Sun 07 Feb 2021 11:48:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4662
IP address blocks: 203.77.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2794 (0xaea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:48:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A378DE284EE6E90B1EAFCE443F7E73FB07A3ABAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:c9:3d:8b:75:2b:41:01:9f:4f:c0:8d:12:1b:
5f:71:e6:b0:30:41:1b:4e:69:bb:29:05:b8:7e:ad:
4a:7e:40:44:f1:17:03:d2:c7:38:82:19:ed:8a:f7:
7e:b3:96:57:6a:c1:c5:85:51:9b:69:af:30:c9:5b:
d5:7f:75:70:11:93:b3:2a:a8:c8:40:89:dc:b3:a2:
7a:f2:b7:68:24:c0:68:a4:bf:7f:7b:04:ca:28:44:
e4:29:5c:27:b8:6f:db:3e:78:ab:5a:a6:c1:62:0c:
0e:3f:1d:32:15:fa:bc:52:6a:c2:9d:73:b0:ec:3e:
ca:cd:bc:68:f3:57:31:8e:bc:47:ea:f5:61:66:8b:
e6:ae:c7:f1:5e:20:c7:a5:08:65:a4:0b:9b:d2:6d:
10:7d:98:ce:06:08:ee:bf:bd:b3:e2:19:6b:d9:2f:
8f:98:09:60:3c:13:a6:04:6e:a0:4f:f4:f7:31:e2:
58:5b:fa:0c:be:45:04:d5:7b:07:bd:5c:34:dd:9a:
e6:a0:12:0f:ac:98:3b:28:a6:8c:c9:9d:bb:42:a4:
a2:95:63:93:9f:33:52:ed:b0:59:35:ee:4b:15:8d:
85:29:d6:34:6a:29:1e:37:53:7a:f7:9c:34:73:49:
84:6f:e0:74:c1:aa:f6:f0:00:4a:88:61:70:7c:88:
d2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:78:DE:28:4E:E6:E9:0B:1E:AF:CE:44:3F:7E:73:FB:07:A3:AB:AB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/o3jeKE7m6Qser85EP35z-wejq6s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.0.0/18
Signature Algorithm: sha256WithRSAEncryption
30:ef:a6:38:10:c5:e2:ee:63:32:22:c2:45:4a:0c:8f:0a:a6:
15:c5:8b:69:58:e5:ea:5b:7c:63:95:8e:bb:20:f3:06:09:4d:
90:27:e8:03:33:0d:97:fd:a4:20:0e:1a:ce:22:f9:72:9d:84:
a6:30:3c:24:a9:02:01:b6:ae:e7:3c:af:40:0f:77:94:fc:b7:
f3:cb:9d:43:dc:f5:00:cd:d5:38:24:08:74:c5:7f:69:19:74:
87:d7:2d:5e:3d:21:8d:31:88:a5:42:23:28:9d:0a:17:fa:ef:
01:f5:5f:82:5d:cd:d2:a1:e9:ee:07:cc:79:56:95:bf:5e:dc:
91:43:91:ae:ec:83:b3:3d:35:b6:e3:48:c9:e4:52:10:d4:d1:
62:45:f7:3e:fb:11:64:3d:01:48:3c:c7:70:8e:cd:98:87:87:
d6:f7:8d:de:2a:18:37:6e:3f:aa:72:e6:92:c0:56:96:21:52:
b4:e7:02:78:c7:78:6b:c6:4e:4d:63:5f:6a:0d:b4:45:c7:16:
7b:86:5d:56:50:3f:20:41:c6:59:6d:c2:b0:fe:a3:1b:9a:91:
b5:47:17:8a:65:ce:6d:5f:35:6d:15:6a:ce:c4:6a:5f:85:38:
53:10:1c:0d:a9:a2:74:0e:28:03:b4:97:6a:c7:7c:54:f3:de:
1e:bb:52:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org