Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oNS3GRDTqxZ2G0PbYvrmuiCqAng.roa
File: oNS3GRDTqxZ2G0PbYvrmuiCqAng.roa (raw, json)
Hash identifier: /+ldwwdKQ0xqkEKEYnYfy6r4Lgd8Q4OaFRP7YL1+g58=
Subject key identifier: A0:D4:B7:19:10:D3:AB:16:76:1B:43:DB:62:FA:E6:BA:20:AA:02:78
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AB2
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oNS3GRDTqxZ2G0PbYvrmuiCqAng.roa
Signing time: Sun 07 Feb 2021 11:37:00 +0000
ROA not before: Sun 07 Feb 2021 11:37:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 219.81.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2738 (0xab2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:37:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A0D4B71910D3AB16761B43DB62FAE6BA20AA0278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2b:d9:b0:f5:1e:93:7e:1b:5f:fd:27:4b:ce:
80:0d:1f:9d:77:eb:57:a0:33:29:ab:68:48:ac:3f:
a9:58:c2:9a:87:69:3d:e7:a1:ed:30:bb:3d:e2:38:
bf:0c:bf:5e:d1:c7:d6:77:51:21:17:5f:73:9e:6a:
38:7d:f3:df:3f:ba:1e:ec:ea:45:df:91:c8:91:d7:
40:6a:89:01:94:43:8b:e8:ca:e6:d5:9c:0b:af:22:
ed:04:de:9f:d9:f1:48:d2:ff:12:76:7e:73:24:45:
31:d6:d0:a5:4d:ab:04:a8:f8:4d:9d:a5:3e:52:76:
69:3b:00:46:d5:6b:5e:7c:9c:34:34:bd:b3:01:bd:
53:66:34:9a:1a:90:49:b3:f4:e6:a3:af:c7:ab:a8:
f3:47:6e:59:80:21:34:c9:2c:7e:70:60:01:19:8a:
0f:68:6c:bc:ca:30:66:5a:d1:80:73:e4:27:90:e4:
99:30:9a:b3:c8:4c:c8:cd:97:ee:71:26:49:cf:11:
1b:c6:c9:ef:23:ec:40:b1:ac:d7:05:99:6e:35:e6:
05:70:53:93:1a:a9:5f:6e:42:77:ea:bc:22:71:73:
e0:7d:87:9b:19:a1:90:3e:3c:d2:04:19:5b:7f:16:
a3:bc:22:d0:5e:3c:1c:57:a5:22:1e:c4:59:a2:07:
61:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D4:B7:19:10:D3:AB:16:76:1B:43:DB:62:FA:E6:BA:20:AA:02:78
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oNS3GRDTqxZ2G0PbYvrmuiCqAng.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.81.0.0/16
Signature Algorithm: sha256WithRSAEncryption
80:6e:84:09:29:61:72:f5:bd:a2:d1:f7:87:e0:31:8b:d9:52:
fd:72:5e:1f:a6:03:a4:c6:d8:94:b9:99:8a:20:37:bc:22:f8:
da:69:27:c6:a4:2c:e2:d1:b4:a5:71:fd:83:0b:ee:e7:cf:8a:
fb:72:81:39:8a:3d:fc:de:10:f8:f4:38:61:e7:63:88:db:5e:
6c:9a:fa:07:46:8e:a7:73:cf:03:c2:43:0a:50:b5:92:c6:61:
e0:00:aa:cf:f5:c3:4a:e9:6a:17:70:e6:0b:cf:78:38:f0:e2:
83:41:90:4c:80:70:36:0c:6d:cb:9e:29:d6:c7:b1:44:d2:a7:
32:c5:cf:c8:59:67:90:92:04:4e:cd:aa:d5:19:4e:3b:0f:e2:
71:88:57:9f:c1:3d:26:b6:ff:bd:0a:ca:21:e2:74:4f:32:e6:
ef:f6:e7:a2:d3:ad:da:37:d5:bf:73:db:4f:9a:b2:51:e4:7f:
28:22:06:88:0f:25:52:38:fb:36:49:eb:c0:fa:bd:33:3a:3f:
7b:b3:94:1a:3c:29:3d:b0:24:ce:7d:a1:7d:3c:6e:bc:ac:2c:
6e:33:93:5a:23:38:b2:ea:fc:8d:2b:c6:af:55:53:93:e4:ae:
54:f6:b0:8f:a1:4a:26:2d:4f:5e:81:b9:29:21:bc:5d:22:38:
80:9c:eb:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org