Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/on0fSJMmvjYvIBcOx9Avs55Vw1M.roa
File: on0fSJMmvjYvIBcOx9Avs55Vw1M.roa (raw, json)
Hash identifier: zzZJnjwecJJvWi5uPN6TkLvN3qlXmE5Mfn53MTvfE+g=
Subject key identifier: A2:7D:1F:48:93:26:BE:36:2F:20:17:0E:C7:D0:2F:B3:9E:55:C3:53
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C77
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/on0fSJMmvjYvIBcOx9Avs55Vw1M.roa
Signing time: Wed 29 Sep 2021 02:49:53 +0000
ROA not before: Wed 29 Sep 2021 02:49:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24158
IP address blocks: 49.214.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3191 (0xc77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A27D1F489326BE362F20170EC7D02FB39E55C353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e1:16:51:c2:dc:e2:d9:48:98:3a:03:8d:67:
6c:fa:27:a4:82:72:1b:de:a0:bb:06:61:5b:c4:ed:
05:74:b1:19:64:68:1b:01:53:53:5e:97:c1:ea:eb:
aa:43:39:a7:cb:9f:f6:2a:74:8b:aa:d9:63:2b:7c:
91:52:0e:59:a3:b4:ec:bf:b9:9a:8e:7f:a9:34:f3:
6b:41:d5:a7:2f:97:62:b3:d4:f1:1e:91:cf:e0:a0:
cf:a3:d0:01:3f:21:0a:f4:35:ba:61:74:96:24:7c:
99:d1:1b:51:3e:f6:b5:aa:cd:a6:0a:e0:88:77:5d:
30:65:43:93:3f:10:a9:35:bc:b7:1b:f2:0c:a5:06:
c9:2c:44:f2:a1:60:9f:00:d8:8c:9e:0a:ca:2b:25:
53:53:a3:d5:93:04:6a:07:7f:a6:78:f4:cc:b7:de:
2f:eb:a9:fd:38:94:73:ac:23:e2:a1:8d:4d:5f:d7:
a8:ff:75:0d:e2:79:66:3e:f1:e8:95:2a:7f:d8:03:
2a:e5:db:c2:8b:cc:f7:83:c4:4c:b8:75:71:d8:56:
3a:81:fc:ee:03:87:c0:11:46:6d:41:28:60:d4:bf:
9b:bd:ac:2a:da:77:a0:4b:43:0e:8d:17:c2:d5:4c:
fd:43:c3:b6:47:fb:3d:a1:71:0b:26:d2:c3:59:81:
dd:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:7D:1F:48:93:26:BE:36:2F:20:17:0E:C7:D0:2F:B3:9E:55:C3:53
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/on0fSJMmvjYvIBcOx9Avs55Vw1M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.214.0.0/15
Signature Algorithm: sha256WithRSAEncryption
12:51:e4:ce:73:2e:e1:5c:88:5b:dd:aa:36:21:18:54:cf:af:
00:7b:a5:33:a9:b5:73:d0:eb:6d:93:06:b6:2d:4c:56:b7:13:
af:eb:44:c7:a1:6e:15:cb:f8:1f:f7:d4:1c:6c:bf:96:4b:52:
54:22:de:d9:13:1f:6b:9d:41:61:7f:05:1a:40:ff:1f:40:76:
81:f0:b6:57:a0:a3:ff:27:18:56:7d:43:a8:45:de:d2:16:2d:
33:19:c4:56:e6:c2:57:0c:00:86:7b:12:ac:4c:7e:f7:3d:b5:
63:5b:92:91:e0:47:28:90:a3:81:0c:fc:66:35:80:b9:4a:0d:
e8:64:61:1e:d9:64:11:78:8e:5c:04:78:c0:4e:f8:9c:4c:d5:
a2:57:f8:67:f4:06:d0:01:8d:a8:e1:9d:b7:2f:ac:74:a2:0a:
b1:ae:08:fc:97:b7:3b:df:e1:45:fd:5c:54:d2:6f:e6:39:bc:
d4:4f:55:20:f6:84:50:2c:46:cb:60:5c:33:a3:e6:99:19:70:
4d:99:8a:59:e3:e4:a2:bf:ac:13:7b:8f:c0:35:4e:29:09:cb:
9e:fe:48:17:bf:f1:d9:25:f8:1c:89:5a:47:85:ac:0d:34:ce:
0d:b9:a7:01:70:a6:91:ac:a7:80:79:b5:25:a1:5f:e4:a9:15:
81:7e:5e:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org