Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ptXNLbqyDtfiLTXTAu31v0iTKaU.roa
File: ptXNLbqyDtfiLTXTAu31v0iTKaU.roa (raw, json)
Hash identifier: +FzT+LTIy3kDfwXwae5+F0kV61Y/aY5wUGfU1zFoZvY=
Subject key identifier: A6:D5:CD:2D:BA:B2:0E:D7:E2:2D:35:D3:02:ED:F5:BF:48:93:29:A5
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CB1
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ptXNLbqyDtfiLTXTAu31v0iTKaU.roa
Signing time: Wed 29 Sep 2021 02:50:09 +0000
ROA not before: Wed 29 Sep 2021 02:50:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 219.86.52.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3249 (0xcb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A6D5CD2DBAB20ED7E22D35D302EDF5BF489329A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bd:61:c9:23:3a:07:50:f5:9b:02:e0:ce:35:
5b:ca:8e:36:de:18:1f:d4:0a:8e:4a:02:9a:61:78:
fe:e7:21:01:2f:30:fb:87:72:fe:72:5b:f7:c3:10:
3d:e1:d2:04:25:fd:6a:95:e9:59:c8:ad:9d:d6:b3:
06:af:4f:0a:8b:89:e4:3c:c7:48:71:cf:1b:79:b0:
74:da:59:ab:ae:59:a1:ed:da:f1:82:33:9b:7c:cf:
dd:f6:28:33:56:29:b3:20:03:37:1a:b2:a4:40:f5:
ab:7c:26:34:cc:ef:07:69:62:14:cd:11:ca:d3:b7:
1e:41:d3:cd:2a:6e:b6:88:17:4a:54:83:d3:35:ea:
9b:52:df:2c:de:35:b4:77:26:3e:0b:00:d2:a8:bf:
4e:65:19:19:5e:8f:23:11:20:e3:6b:28:6b:e8:62:
0b:2b:e8:29:de:6d:6d:9a:cc:35:72:a9:6b:17:b0:
dc:b4:62:8e:94:c9:38:22:7d:02:a6:d6:65:29:a7:
e0:bf:1e:69:9e:66:1b:fe:28:9d:d7:2f:71:fb:b2:
37:b2:62:cd:b8:a3:02:a5:a4:10:02:fe:5a:bc:d2:
b7:ca:5b:61:a5:0f:02:f8:86:88:69:24:72:b3:ff:
b5:11:b1:e3:e2:82:ea:42:71:36:22:3e:6a:b7:78:
23:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:D5:CD:2D:BA:B2:0E:D7:E2:2D:35:D3:02:ED:F5:BF:48:93:29:A5
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ptXNLbqyDtfiLTXTAu31v0iTKaU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.86.52.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:2f:26:f0:fd:06:49:d0:4c:33:3b:93:84:1e:77:16:77:e0:
80:2b:c1:20:fa:9e:f2:d7:67:15:bb:d9:cc:92:0d:d2:88:b8:
31:e0:79:4a:77:8b:15:04:b7:7e:7e:6d:53:72:75:3f:e0:64:
36:98:e6:6d:1b:75:ec:51:59:06:bf:e8:94:45:1c:5c:02:09:
b3:29:8a:fd:e1:03:b3:fb:7d:30:51:4d:e1:aa:53:0e:cf:2d:
10:88:f0:4a:74:21:3c:1b:88:df:01:96:95:fb:20:db:b7:66:
c9:6a:b4:69:b8:ec:2f:4a:66:70:f5:ad:7a:a0:4e:9b:5c:74:
df:a5:79:8b:06:81:a7:78:13:d7:1f:f4:e0:fc:15:fc:cf:aa:
08:d0:39:0e:02:ea:41:14:36:7c:c4:54:11:d8:8d:c3:32:ed:
1f:d9:6c:d5:8e:15:40:00:52:a9:7d:f5:43:e9:6b:08:97:d2:
b8:df:7c:64:09:89:eb:4e:8e:eb:36:f4:bf:bd:ff:8b:20:2d:
62:6d:fb:fb:c2:bb:8f:cf:77:ee:24:34:b1:83:a4:41:af:ce:
a3:fd:1c:88:95:41:af:c3:9b:42:3f:fb:ad:62:34:cb:19:7d:
7e:1c:7e:5e:55:10:fe:32:56:6d:8d:a5:8f:49:2d:c9:3e:2f:
b8:28:d4:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org