Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pgHToDcapD5w2C8fSyxqPlHoJPs.roa
File: pgHToDcapD5w2C8fSyxqPlHoJPs.roa (raw, json)
Hash identifier: zBbMA4vY8rMe3p2Dmw9kpdy2eWk90E1L1ynvvlzWXGs=
Subject key identifier: A6:01:D3:A0:37:1A:A4:3E:70:D8:2F:1F:4B:2C:6A:3E:51:E8:24:FB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CAC
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pgHToDcapD5w2C8fSyxqPlHoJPs.roa
Signing time: Wed 29 Sep 2021 02:50:08 +0000
ROA not before: Wed 29 Sep 2021 02:50:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 175.98.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3244 (0xcac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A601D3A0371AA43E70D82F1F4B2C6A3E51E824FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:81:4e:f6:d6:11:f1:c8:08:b7:d4:66:10:1d:
44:de:eb:71:55:c9:a0:90:a1:b5:8a:87:a5:28:6f:
c9:31:59:93:a0:26:7c:a1:ca:ff:a7:d1:12:f5:30:
28:38:d7:1c:ff:7f:91:a7:4c:45:b4:bd:84:00:16:
17:ff:67:8a:fa:73:73:e4:df:bc:42:6c:7e:45:5e:
12:d4:1b:f6:cf:c7:db:b4:7c:82:06:ed:bf:cc:20:
2a:b9:13:c7:57:19:b3:e2:13:6f:20:49:b0:4e:4a:
28:85:04:d0:21:33:bc:f8:8e:91:7f:a7:c4:73:27:
db:11:68:1a:a2:b7:44:a0:4e:a5:6b:05:2e:07:ae:
cb:08:7d:02:5b:f3:74:99:71:45:73:5a:3c:71:73:
34:7b:da:2c:a3:91:9e:6c:d8:13:e3:a3:69:64:44:
4b:61:5a:4a:07:3c:2a:8d:ce:1f:71:a3:b7:d5:75:
b2:7d:a5:d7:77:9a:c7:70:78:9e:fd:62:f9:eb:d9:
b2:16:d1:77:7b:aa:7a:5f:7d:49:57:71:3b:26:0c:
18:4a:9a:21:81:c6:4c:6c:b3:7e:d0:d7:f5:cc:15:
81:fa:d4:fb:5f:d7:b0:74:ec:3c:fd:dc:38:0b:66:
2f:e6:bf:e2:a3:3d:59:a9:2d:66:f0:8f:ed:48:22:
cf:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:01:D3:A0:37:1A:A4:3E:70:D8:2F:1F:4B:2C:6A:3E:51:E8:24:FB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pgHToDcapD5w2C8fSyxqPlHoJPs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.98.208.0/20
Signature Algorithm: sha256WithRSAEncryption
22:41:c9:9e:82:52:a6:b1:a1:3f:ce:22:62:bd:a9:f3:db:a2:
bd:47:e9:7e:0a:c1:25:71:fa:fc:a6:86:9b:2a:20:f9:82:75:
8e:83:37:2a:27:88:4b:00:7c:ab:ce:08:b9:88:46:48:fd:d1:
4f:2e:3e:7c:e6:7e:ea:08:43:0f:b9:b2:5d:ee:7c:63:7f:77:
8b:e8:9d:de:b6:67:b9:f5:fa:95:20:4b:3b:51:6d:e7:ac:a2:
e7:0e:db:41:d0:10:ee:d1:82:ad:ff:4f:b9:ac:9f:ab:bd:c3:
e1:17:c5:02:03:00:14:00:13:4d:24:4d:e3:70:83:f8:31:04:
b8:a2:68:8b:ac:2f:1a:97:6c:1c:17:28:56:5d:ac:ab:b6:20:
b3:fe:ff:2b:a5:5e:fd:b3:71:f8:19:ae:1a:59:cf:ef:9d:1f:
d1:07:a5:43:b1:ff:fa:47:86:3b:25:48:2b:05:88:6b:b1:e2:
ae:8f:df:c6:0b:ca:2f:c0:87:f1:f7:06:87:0d:3e:cf:48:cc:
1c:3a:73:62:9b:a8:be:49:30:19:05:f1:b8:e8:8f:1a:6b:87:
95:92:c4:7a:ca:b8:61:f6:16:1e:3f:72:0c:0c:67:4d:a7:5d:
ae:05:31:6b:4c:a1:d9:18:73:b6:a0:b6:69:e4:0e:03:68:c4:
66:8c:0b:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org