Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/t13UrXM_B4ysh4rC-NctL6jZKdY.roa
File: t13UrXM_B4ysh4rC-NctL6jZKdY.roa (raw, json)
Hash identifier: zmWiFzntwE0HAqvvOtp7ON71LgNWQqAhv4C+Sowiq3Y=
Subject key identifier: B7:5D:D4:AD:73:3F:07:8C:AC:87:8A:C2:F8:D7:2D:2F:A8:D9:29:D6
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A6E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/t13UrXM_B4ysh4rC-NctL6jZKdY.roa
Signing time: Sun 07 Feb 2021 11:36:14 +0000
ROA not before: Sun 07 Feb 2021 11:36:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 61.57.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2670 (0xa6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:14 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B75DD4AD733F078CAC878AC2F8D72D2FA8D929D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a5:28:33:89:40:f7:0a:ff:eb:2b:b1:57:af:
88:c3:79:2d:b0:93:5f:90:74:e3:dd:99:34:79:17:
32:e4:fd:68:7c:9b:ce:51:cf:a5:20:c8:c9:bb:7d:
7d:43:04:c3:1b:d5:10:0d:94:36:bd:0c:05:86:e2:
a2:b4:ce:08:f9:b9:06:91:53:10:5e:06:99:9e:d0:
52:e3:be:fa:d9:ea:e0:98:c5:3d:a4:92:20:da:5b:
99:c0:14:fc:1f:ce:21:39:25:8c:30:d1:c9:5f:9b:
99:a2:80:5d:30:de:c5:73:7f:3c:fe:1b:24:03:a2:
8d:42:98:9b:f0:b0:b2:75:2c:33:e8:24:a3:d5:c2:
d8:b4:f1:48:cb:1f:1b:89:f5:d4:01:53:c7:4f:b7:
13:c6:dc:59:c4:30:a6:fd:6a:c6:1a:ba:12:0b:23:
67:72:be:c0:e9:2b:2a:f8:5f:9c:9f:75:99:92:a9:
62:d9:b8:fc:bf:0c:3b:03:f7:6e:e7:2d:1a:ab:a4:
19:0e:4e:18:b4:16:ef:d2:98:81:b7:14:1b:c9:e4:
b7:43:da:a2:68:4d:2c:86:4a:67:bf:a7:48:66:17:
65:29:3c:05:54:67:6f:c6:15:20:43:69:f8:76:02:
e6:1c:e4:58:3d:35:7e:2f:b8:6b:63:15:3d:e2:13:
25:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5D:D4:AD:73:3F:07:8C:AC:87:8A:C2:F8:D7:2D:2F:A8:D9:29:D6
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/t13UrXM_B4ysh4rC-NctL6jZKdY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.0.0/19
Signature Algorithm: sha256WithRSAEncryption
40:42:00:ec:1a:b4:62:77:90:f9:9b:06:33:47:04:ef:c3:d1:
58:55:d3:43:40:3e:85:3c:b4:17:c6:00:70:5d:22:1f:a2:b9:
b6:c1:92:39:2d:ba:07:ea:8a:89:04:9d:bb:ac:e8:05:03:89:
f7:c8:a7:c3:02:db:80:db:4e:82:89:1c:3e:d4:3e:00:89:eb:
f7:f7:f5:2d:7a:27:2f:9c:f3:94:13:1f:c0:dd:38:0f:87:32:
02:d2:21:15:ee:81:80:46:85:a6:28:b2:b8:12:e2:33:39:34:
40:75:46:1b:b9:7f:2d:17:91:8c:f1:c5:f1:b7:e7:1e:b8:20:
2d:1d:db:a5:ce:19:55:0e:09:7c:a9:a1:55:93:b5:6d:84:9c:
3d:fb:fe:64:a5:be:da:21:b3:f9:95:c1:5c:f3:1f:6c:67:c2:
cf:fd:2b:ac:e5:54:98:a5:13:4e:cb:4c:51:54:77:a3:b1:6b:
9f:84:67:07:11:47:a2:13:8d:c9:25:9e:33:83:dc:c0:1e:76:
e1:be:a3:d7:8c:32:3c:c5:b1:fa:44:af:0f:e5:95:58:0d:78:
a6:f2:72:f8:1c:70:ec:89:53:72:e8:63:93:f3:13:ee:c4:c8:
d7:1f:85:51:66:25:bc:31:4b:a4:c1:34:d5:5e:9d:88:10:d5:
ea:12:ca:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org