Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tMD_Dnj20E5ORN9rQ390RDSgc4U.roa
File: tMD_Dnj20E5ORN9rQ390RDSgc4U.roa (raw, json)
Hash identifier: UVkaVjuH0TjIVFjunh9gSryYd+5AsGWfUeeIPWw9O0M=
Subject key identifier: B4:C0:FF:0E:78:F6:D0:4E:4E:44:DF:6B:43:7F:74:44:34:A0:73:85
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0800
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tMD_Dnj20E5ORN9rQ390RDSgc4U.roa
Signing time: Tue 29 Sep 2020 09:57:38 +0000
ROA not before: Tue 29 Sep 2020 09:57:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 203.77.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2048 (0x800)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B4C0FF0E78F6D04E4E44DF6B437F744434A07385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:95:60:5b:e4:44:fd:35:fc:8b:72:9c:43:37:
8c:1b:2a:d2:fc:f0:91:e8:d8:97:ea:e9:46:66:1d:
61:de:2c:c7:2b:d9:b4:7f:9d:59:cc:20:6f:e4:3b:
49:46:ce:23:b9:99:b6:5f:f2:3c:4d:2f:f9:08:f6:
85:b6:29:5a:5a:d2:04:11:8e:b9:f1:f2:07:32:da:
e2:0d:06:42:78:a3:fc:77:34:5a:63:81:34:85:48:
e6:09:4c:86:b5:1a:e6:18:77:d6:65:60:43:d2:0f:
64:aa:58:f4:15:22:6a:e5:0c:05:9b:ba:d7:04:df:
99:0f:61:48:fc:c0:b8:db:26:28:96:66:1a:51:48:
e4:8b:e6:74:d0:b6:ca:38:7e:2f:5c:a2:fd:b3:db:
64:46:16:a8:e8:c5:70:7d:5f:94:d4:80:d7:72:0d:
f4:c8:c7:48:6b:3d:e4:ee:5a:d7:ce:44:0d:07:67:
ab:17:d6:30:fb:4f:2f:53:56:7f:75:f3:76:0c:59:
3d:9d:65:37:2a:77:12:fc:bd:63:ae:3f:56:08:0d:
18:d4:e5:69:e0:84:f4:48:97:17:ab:10:d2:fe:c2:
50:eb:c8:13:35:70:f8:b4:7f:98:7a:2f:00:b5:01:
36:02:1b:18:3f:5a:ba:80:36:c9:82:e4:10:23:e9:
f2:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C0:FF:0E:78:F6:D0:4E:4E:44:DF:6B:43:7F:74:44:34:A0:73:85
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tMD_Dnj20E5ORN9rQ390RDSgc4U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.64.0/18
Signature Algorithm: sha256WithRSAEncryption
1f:c9:ad:41:35:e0:0c:94:c3:4a:84:ea:9a:4a:7f:d5:b3:2c:
2e:6a:28:ce:49:db:e4:c8:f0:42:83:ce:4e:f4:5f:3c:51:dc:
de:ab:53:34:f5:8f:15:ec:52:e4:80:32:71:a6:e5:b1:6a:c0:
eb:47:78:52:13:e5:c0:4c:d3:3f:66:e5:5b:73:d7:8d:c9:f6:
f6:ed:51:44:0b:c7:a5:35:4d:db:51:b1:c1:17:af:8b:c0:3c:
22:82:c7:51:df:0d:2a:db:28:bb:58:98:1c:fc:27:f8:69:a2:
ef:a4:87:94:04:f6:4c:24:20:e5:24:c8:b2:77:d0:76:58:d6:
52:18:a6:ff:ab:d9:a5:df:4f:c5:20:d6:86:33:1b:00:66:c4:
8c:8b:50:0d:f5:c4:fd:72:da:ba:29:ab:46:ca:6b:8d:ab:57:
93:8d:4a:f1:33:44:d6:aa:d4:fe:35:31:ca:ed:9c:c7:e6:0e:
50:d8:a4:e2:a4:ea:49:91:de:55:7f:ba:7e:55:43:d9:52:9c:
52:2f:57:42:06:30:c2:07:03:cf:1e:28:09:1d:f1:0a:1d:2b:
6d:fe:42:af:34:63:d6:1f:98:5a:b2:c5:6f:d6:0d:42:3e:de:
82:57:10:d1:aa:08:31:13:b0:1a:d9:65:ec:3f:ec:56:dc:41:
5d:81:62:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org