Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rUNdBAgLWr39Vqmke0WOJy-D5-s.roa
File: rUNdBAgLWr39Vqmke0WOJy-D5-s.roa (raw, json)
Hash identifier: bwFNNQTMOqOJv+Cxm0eK2txxoz8HfgWZEnx7z/tncVs=
Subject key identifier: AD:43:5D:04:08:0B:5A:BD:FD:56:A9:A4:7B:45:8E:27:2F:83:E7:EB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A86
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rUNdBAgLWr39Vqmke0WOJy-D5-s.roa
Signing time: Sun 07 Feb 2021 11:36:30 +0000
ROA not before: Sun 07 Feb 2021 11:36:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 203.77.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2694 (0xa86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AD435D04080B5ABDFD56A9A47B458E272F83E7EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b6:84:26:89:0e:97:2a:d8:c3:71:60:38:e6:
2c:84:5e:aa:51:09:cb:15:68:56:b2:0a:70:0a:b9:
40:45:f9:04:9e:8e:35:c6:36:07:ab:fc:f7:25:2a:
f4:14:32:31:75:73:fe:32:37:48:31:df:e0:eb:49:
3f:d7:f2:65:34:36:d1:7a:1c:9f:32:44:e5:3d:ca:
f4:28:e6:de:f0:11:6f:f7:f8:a5:ad:08:6b:c8:54:
10:09:a2:53:d3:42:95:0d:78:6f:81:a0:df:a6:24:
14:5e:e1:02:f1:dc:67:08:41:40:8f:71:69:67:d1:
4d:d3:8d:81:03:3a:98:04:f2:77:12:20:6f:3d:d5:
d2:15:0e:ef:0e:21:1d:a5:09:58:b9:ef:7c:0f:29:
88:1a:03:cf:da:b3:cd:0d:38:4d:68:81:dc:18:0f:
79:3d:cc:d9:2d:2c:e1:d9:09:b7:99:8e:66:47:78:
20:eb:aa:ca:36:95:d5:ca:12:1f:7f:f8:13:c4:1a:
03:11:df:4c:fc:5c:fe:38:47:7a:2a:79:6a:7b:3b:
00:ba:25:af:34:0a:9e:27:ac:52:ac:67:d5:60:dd:
f6:16:20:32:89:9b:64:76:2a:44:6f:4f:78:2c:20:
8f:de:05:97:5d:fb:8c:6e:9d:5b:95:dc:8c:d2:56:
69:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:43:5D:04:08:0B:5A:BD:FD:56:A9:A4:7B:45:8E:27:2F:83:E7:EB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rUNdBAgLWr39Vqmke0WOJy-D5-s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.32.0/19
Signature Algorithm: sha256WithRSAEncryption
93:d9:51:f0:fb:db:e3:79:a9:a1:6b:07:ce:ad:f9:e9:e6:58:
bd:96:3a:23:8a:a4:e3:72:64:cd:f9:eb:ce:e3:17:96:a8:f2:
6c:c9:b3:0c:23:77:66:ae:6f:ce:52:36:0a:e4:db:ae:52:ec:
d1:31:44:e2:ca:3e:79:26:a6:67:fb:9b:6d:d3:a1:2f:92:fc:
e3:f4:ef:01:5e:31:14:cf:f5:ac:d9:1d:4a:39:d8:70:9b:d2:
19:b4:1d:3b:68:8f:59:2c:dc:9f:7f:c6:cf:66:67:c2:d1:2d:
8c:8b:3b:bd:d2:17:eb:c8:7a:8d:05:54:cb:70:b8:7d:4c:29:
f1:26:46:fc:31:a6:1c:58:f2:52:84:60:29:43:7d:17:10:f0:
c6:37:0f:35:1c:69:e2:e8:90:9c:f4:92:a1:04:aa:d9:76:70:
47:f5:d3:49:c7:40:79:ec:38:f9:b0:54:21:b3:07:6a:b2:43:
2f:6b:ec:bd:f8:af:06:2d:b2:d6:d2:f0:b3:69:db:21:a4:a0:
23:b9:c8:dc:39:2d:21:aa:35:48:01:9d:6e:93:82:6a:65:e3:
83:08:b2:c0:a0:86:d1:cf:a6:d4:ed:9d:12:a1:30:2f:6b:dc:
a3:b0:50:aa:bb:ce:8d:0d:4c:ec:95:46:47:a7:a5:f9:d6:49:
bb:6c:22:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org