Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/s9_NDnYQp0mLBZk0Nz0lobaZ84U.roa
File: s9_NDnYQp0mLBZk0Nz0lobaZ84U.roa (raw, json)
Hash identifier: s5dO8KTfhPtlA2Hwdjh7sJBnKLHE0bumZ+kMvzUbJWo=
Subject key identifier: B3:DF:CD:0E:76:10:A7:49:8B:05:99:34:37:3D:25:A1:B6:99:F3:85
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/s9_NDnYQp0mLBZk0Nz0lobaZ84U.roa
Signing time: Thu 15 Sep 2022 02:46:54 +0000
ROA not before: Thu 15 Sep 2022 02:46:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 203.77.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:46:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B3DFCD0E7610A7498B059934373D25A1B699F385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f0:23:cb:6c:d3:20:03:47:8a:e2:31:28:77:
73:01:c7:01:55:c1:4c:12:62:b5:5d:33:0d:d8:94:
1c:0b:67:31:57:d1:55:cc:ca:21:2a:2b:6e:fb:f9:
5b:da:fd:b4:67:da:eb:a2:63:79:33:7a:9f:82:ae:
ed:4b:f5:2a:b8:2a:ca:ed:6a:4b:f1:b6:1f:11:0c:
d4:4d:d7:01:08:02:a2:17:59:65:19:69:18:ef:10:
9e:9a:7d:08:88:a1:26:55:94:a2:4f:97:8d:ce:a6:
13:c1:7a:ae:eb:f8:3b:a2:63:d4:f2:e1:3c:85:4f:
55:8f:f4:d1:8c:5b:73:46:8b:31:b4:65:76:59:8b:
4c:bc:0a:7f:b9:01:d7:21:61:87:9c:e9:c5:37:09:
b4:ca:fa:be:a8:a1:43:2e:22:c2:55:30:01:78:8d:
ea:f6:e5:18:2c:9d:98:81:66:d2:b7:4a:c0:60:f6:
0b:2d:3f:da:87:a4:07:0c:29:3d:fe:cc:b8:f5:72:
2d:9a:4f:75:14:0b:0d:c9:94:09:fa:10:9b:e5:0d:
f4:b1:1c:2e:60:a4:63:43:0f:ca:65:48:b0:f6:23:
14:99:9a:a4:be:15:6d:fd:59:41:b9:4f:07:69:16:
b3:67:25:af:a1:4a:ac:eb:3a:ea:c3:6c:88:8d:f7:
92:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:DF:CD:0E:76:10:A7:49:8B:05:99:34:37:3D:25:A1:B6:99:F3:85
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/s9_NDnYQp0mLBZk0Nz0lobaZ84U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.56.0/21
Signature Algorithm: sha256WithRSAEncryption
83:98:58:b0:36:b3:60:20:93:46:ee:e6:71:58:db:7a:9d:a1:
a6:63:fa:b8:f7:c1:a2:46:cd:a4:3e:ec:e9:2d:9f:20:4f:09:
54:38:21:98:9a:e9:f6:da:6e:c0:1e:68:e2:55:61:36:55:f6:
f2:cc:4a:e9:b5:81:dc:d1:f7:8d:39:13:5a:b3:0c:49:73:1c:
8b:2b:43:2b:03:a4:35:2a:30:87:d7:cd:ad:e3:ab:8d:84:90:
8a:52:9d:9a:1d:e3:4a:ea:a5:96:55:2d:40:93:3d:7e:7c:0b:
c2:5c:e5:40:7c:cc:74:ed:ba:e0:c3:7f:35:37:a2:9f:7c:d1:
07:4a:44:cd:c0:8a:87:cc:a9:ae:04:61:b7:be:ba:65:9d:1b:
0e:74:ce:5a:8a:12:96:45:1e:ce:cc:5b:d3:73:78:fe:f3:9b:
2a:dc:cd:c3:ad:ee:b2:25:d4:cf:49:f2:96:08:ab:04:0a:7b:
e0:ae:f8:68:bc:fa:07:3a:67:34:79:91:ab:a5:82:9b:9c:62:
31:77:df:d8:82:88:b5:ce:e2:d8:bb:ba:05:dc:a5:dd:cd:43:
5d:19:bc:bf:d2:f3:9e:c4:2e:d3:82:53:b6:d3:40:8b:72:52:
fa:db:b2:f1:41:a5:bf:b4:14:4e:41:04:6a:2a:4e:41:14:7d:
e8:f3:b4:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org