Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/sNEFDnYvig5usRj_g-ZKsST2vY4.roa
File: sNEFDnYvig5usRj_g-ZKsST2vY4.roa (raw, json)
Hash identifier: klX0Vi6S4YYU5Cwv86YJnf84+aqczqf+BHakWfqmwTk=
Subject key identifier: B0:D1:05:0E:76:2F:8A:0E:6E:B1:18:FF:83:E6:4A:B1:24:F6:BD:8E
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/sNEFDnYvig5usRj_g-ZKsST2vY4.roa
Signing time: Thu 15 Sep 2022 02:47:02 +0000
ROA not before: Thu 15 Sep 2022 02:47:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 219.81.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B0D1050E762F8A0E6EB118FF83E64AB124F6BD8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:52:10:7e:dc:69:55:64:36:6f:41:7c:9c:9f:
4b:14:5b:53:00:89:c9:6a:72:d0:73:57:72:ca:b0:
9a:d5:28:ba:66:5f:ba:e4:4a:fb:8f:66:06:cb:cb:
fd:4b:5d:3a:9b:65:e0:44:1b:0a:04:1c:7b:b6:fc:
51:8c:7b:d6:75:c6:2b:9f:ea:fd:14:00:47:8e:ed:
db:28:cb:cf:57:56:46:6e:a1:2a:c9:90:75:e2:59:
7d:53:f0:f5:f8:63:8e:c1:0a:0f:49:42:18:ad:19:
f9:60:44:2b:e6:d4:be:19:78:42:03:e6:8e:f4:3c:
47:b6:5a:13:d4:1d:1b:1f:64:88:7e:b5:2a:a6:21:
c8:c1:b5:49:74:26:be:fb:19:2c:f9:d2:1c:5e:d8:
3f:bf:74:8a:62:8c:1c:42:90:d5:15:97:85:fa:6e:
8a:6b:21:20:98:5c:f3:5d:2b:11:ff:8a:18:9a:ef:
e9:67:de:7b:ca:3c:ac:e0:f9:e6:b5:b6:dc:21:0e:
26:01:a7:5e:57:a9:80:cb:69:c9:d6:9a:32:8d:4f:
fa:4f:2c:83:8f:3b:e5:f6:04:d9:a9:2b:9f:58:15:
75:b4:b1:03:c6:16:63:83:d6:11:e4:19:e6:8a:8b:
23:4e:9a:62:86:6f:af:a7:f8:82:40:31:37:08:2f:
37:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D1:05:0E:76:2F:8A:0E:6E:B1:18:FF:83:E6:4A:B1:24:F6:BD:8E
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/sNEFDnYvig5usRj_g-ZKsST2vY4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.81.0.0/16
Signature Algorithm: sha256WithRSAEncryption
84:ba:c7:f6:53:98:16:5b:23:13:8d:ce:48:03:f1:9e:af:50:
46:d4:06:1c:fd:bc:30:d5:8f:a8:8f:ca:9c:3b:96:33:23:86:
fc:33:d1:b1:6f:02:1a:cc:96:eb:b8:20:7c:82:1e:cf:db:c0:
d5:2b:26:4b:7d:84:57:ed:ff:39:4b:6c:9d:b7:e6:8f:f4:9c:
8c:a2:83:9e:65:73:c3:5b:be:af:bc:8b:8a:15:8c:27:85:0e:
c0:bf:45:24:5a:51:83:bf:2d:c5:11:6e:8b:5e:7e:62:87:46:
84:a9:c5:08:8a:a6:f4:f5:b0:61:e6:4b:e9:45:14:53:d9:a8:
44:10:41:27:dc:c5:1f:e7:d5:49:48:79:b9:1c:cb:28:c2:1a:
c2:fc:eb:63:2a:eb:7b:d6:9c:cc:ad:94:4d:26:a2:8f:be:cb:
2c:1a:65:57:86:e5:65:1f:bf:58:cf:aa:88:1c:2d:94:1c:aa:
15:28:b1:af:c8:3a:95:0d:a5:bd:38:5b:02:94:c5:37:72:8e:
fb:21:4c:36:ef:6f:c2:3d:b0:84:aa:c2:c5:5e:b2:9a:57:74:
fc:af:af:53:16:b6:08:7e:b0:1f:16:8b:54:29:62:70:9b:b0:
b3:ed:8e:38:b3:9b:33:3f:b9:b4:ba:55:b8:9a:64:ef:32:5e:
fa:1f:63:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org