Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rfM1vsNzvK48tzbIPddwxGvx5vo.roa
File: rfM1vsNzvK48tzbIPddwxGvx5vo.roa (raw, json)
Hash identifier: 0coDOG1WbLK87qqw+IgyMYhuAuwYGZjsk1ceSjv91Iw=
Subject key identifier: AD:F3:35:BE:C3:73:BC:AE:3C:B7:36:C8:3D:D7:70:C4:6B:F1:E6:FA
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FE6
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rfM1vsNzvK48tzbIPddwxGvx5vo.roa
Signing time: Fri 01 Sep 2023 09:37:29 +0000
ROA not before: Fri 01 Sep 2023 09:37:29 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24164
IP address blocks: 203.77.54.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4070 (0xfe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:29 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ADF335BEC373BCAE3CB736C83DD770C46BF1E6FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:82:e4:d1:e5:1f:79:bb:b9:a5:bb:cf:20:b7:
c7:43:97:09:e0:20:25:d9:80:27:4f:b4:67:4f:b9:
a9:85:09:fb:c7:d9:0c:f0:53:32:fd:30:63:f4:7a:
31:81:d7:d9:91:bf:21:6e:ea:fa:c6:f6:b1:e5:60:
9a:36:07:83:c3:f3:70:0c:b3:7c:10:57:6c:47:22:
3b:6a:13:29:ae:0c:77:cd:91:ed:c1:66:c6:fc:1e:
df:19:86:ec:d1:22:79:7c:e4:d5:b5:2d:14:50:52:
7e:08:10:04:be:44:50:04:60:48:5b:9f:06:59:b0:
94:d5:81:40:38:e6:83:cd:07:cc:19:9f:44:6e:6a:
ec:b9:20:49:51:96:69:3c:5b:b8:0e:df:f4:9a:be:
31:6a:0c:1d:0a:eb:75:f3:a6:7b:61:e7:3a:c8:89:
cc:e3:ff:9e:4f:d3:fa:ef:8b:09:2d:86:96:52:a8:
e2:29:4c:23:63:a9:f9:bc:73:8f:25:73:91:33:7b:
1d:ee:43:81:a3:8f:af:5e:b9:4c:29:a3:eb:61:fe:
c8:56:13:e8:61:c9:70:1e:f9:a6:1f:7e:db:7e:4a:
cd:8d:8d:5a:75:c2:3b:44:0d:36:f4:fd:50:7b:15:
fb:d1:d4:d9:14:31:d3:8e:81:e6:df:6e:1f:66:d9:
f8:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F3:35:BE:C3:73:BC:AE:3C:B7:36:C8:3D:D7:70:C4:6B:F1:E6:FA
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rfM1vsNzvK48tzbIPddwxGvx5vo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.54.0/23
Signature Algorithm: sha256WithRSAEncryption
14:30:66:35:aa:93:d5:62:cc:f2:0f:05:9c:ad:bd:8b:56:34:
15:04:71:b2:f2:68:e5:6b:03:b2:85:94:cd:6e:0b:79:a2:5e:
4c:d4:84:a9:bb:2d:66:ba:4d:38:fe:16:1c:fc:8c:e7:96:ed:
6c:11:59:38:f6:e2:c6:2a:cf:33:8e:2e:70:4d:53:e8:68:16:
57:6a:33:94:1f:68:d7:a3:2e:62:ee:e9:7f:5d:e8:c6:e6:a6:
6b:55:40:1e:ac:30:b8:d4:f4:3e:9f:1c:ec:fa:a9:87:2c:b1:
59:14:6d:7c:28:de:67:59:da:d8:53:7e:ca:91:5f:7a:07:a1:
9b:a8:0a:71:73:c0:1c:6f:b1:de:cc:11:4f:f8:c3:a3:3e:9e:
4d:79:4d:13:34:de:3c:cc:dc:ea:80:1a:60:9d:c8:af:af:c1:
ae:cc:39:97:b3:75:09:cf:ac:8f:21:54:f2:e0:32:00:ea:c4:
a4:4a:d6:46:05:c9:43:8f:52:a9:47:dc:81:06:db:a7:fd:7c:
c0:ea:33:aa:1e:33:c3:47:7d:63:c3:f9:e6:de:48:90:e0:5e:
af:a7:1f:76:ae:80:03:49:97:7a:ad:e4:f4:91:97:67:f7:a7:
0e:02:88:4f:be:06:ce:a5:f5:2d:a0:5f:45:82:95:c9:bd:0b:
80:fe:c2:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:54 2025 by rpki-client