Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pqqlaSG1wOBvIMrEN-7W2ZWwBOI.roa
File: pqqlaSG1wOBvIMrEN-7W2ZWwBOI.roa (raw, json)
Hash identifier: SGdzVZqAoVVdR65zhfzRgqpw7rwq/ws9dWavxj1+DqM=
Subject key identifier: A6:AA:A5:69:21:B5:C0:E0:6F:20:CA:C4:37:EE:D6:D9:95:B0:04:E2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C52
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pqqlaSG1wOBvIMrEN-7W2ZWwBOI.roa
Signing time: Wed 29 Sep 2021 02:49:40 +0000
ROA not before: Wed 29 Sep 2021 02:49:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 202.145.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3154 (0xc52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A6AAA56921B5C0E06F20CAC437EED6D995B004E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:58:c7:53:bf:e9:51:05:85:71:fc:83:df:b2:
af:c5:15:3f:f2:7a:6a:c7:43:bc:90:33:2e:df:58:
8e:35:9c:3a:cb:d6:72:a0:bc:68:d0:c0:4a:9b:f5:
35:47:e6:2d:07:2f:ff:e9:c0:23:03:c5:f9:82:04:
1f:30:b5:a3:5d:ed:4d:9c:48:c3:d3:c0:d1:ee:41:
fa:88:ed:42:d2:aa:b0:d1:bb:23:b2:25:75:d5:2e:
cb:48:b3:77:3f:7e:b4:73:21:e6:dc:e8:8a:50:a6:
c6:03:e7:a3:e3:ea:95:6e:ff:80:d3:fc:e5:c5:3e:
0c:e6:59:bc:84:ad:07:01:ef:63:00:83:6b:75:6e:
b3:82:fd:e6:e6:97:5f:79:b0:9f:db:da:7f:3f:2d:
c3:19:c4:bb:04:20:5b:84:3b:05:d8:dd:29:59:14:
f3:90:f8:38:32:da:1a:76:d5:b2:71:5f:0c:1d:d9:
40:bb:ed:19:3b:c1:89:9a:e0:e7:11:48:c3:70:32:
5e:fb:bb:18:16:bb:bb:5d:a9:34:fb:f1:c4:73:cc:
51:50:98:c3:5c:bd:46:bc:06:9c:83:12:25:01:8d:
58:bc:ac:34:0f:8d:fe:8e:fb:f0:be:4d:58:8a:f0:
a4:62:e7:67:65:eb:2a:05:30:04:7d:5e:a5:65:49:
ed:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:AA:A5:69:21:B5:C0:E0:6F:20:CA:C4:37:EE:D6:D9:95:B0:04:E2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pqqlaSG1wOBvIMrEN-7W2ZWwBOI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.145.32.0/19
Signature Algorithm: sha256WithRSAEncryption
29:90:e9:29:c6:c5:fa:14:12:7d:44:a7:3b:2b:09:1f:f5:47:
2e:28:9e:a0:0b:25:3d:94:8a:2d:b8:e6:e2:c4:70:23:a3:e0:
9d:21:5b:52:01:c9:39:3e:b1:66:fe:68:a9:e6:be:fe:64:1b:
31:97:e8:a8:ca:23:e1:01:7c:08:9e:1e:d9:f0:65:89:2c:60:
c1:77:e7:46:ca:92:86:be:81:6f:a3:1f:1b:a9:27:8d:da:4e:
06:f8:e6:fa:93:0d:23:d5:5e:cd:7b:a8:d1:8f:03:1d:b6:96:
d1:09:03:d3:4c:b6:f7:13:7e:4c:f9:27:d0:09:fe:42:3e:86:
bd:37:2f:fb:de:69:09:68:6d:6c:6e:17:e6:f9:79:4a:b5:db:
c8:56:6b:77:c4:c8:26:8c:d2:8a:e3:cd:12:43:17:7a:ec:d6:
eb:e1:c7:1b:b4:7b:4d:a9:6a:ca:31:7b:90:6d:84:10:16:a1:
d5:56:ee:7c:92:04:93:80:d7:f6:31:17:3e:b1:ea:e9:10:dc:
07:0b:dc:87:8b:4a:1e:55:f5:a3:1b:67:ef:6d:e0:b9:dd:e8:
50:36:1b:e2:6b:87:7c:8a:86:d1:94:fe:bc:eb:5d:ca:3e:e1:
26:c3:4f:e3:98:19:c4:e6:9f:62:de:e2:ec:bd:53:f5:f0:07:
79:30:ea:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org