Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tXUg068Sk6WuKCGA2ZXw8b_dBz0.roa
File: tXUg068Sk6WuKCGA2ZXw8b_dBz0.roa (raw, json)
Hash identifier: 1OJApF7nThTgKVlIWNy7WOC9SkQv642KrFpPbBguuJk=
Subject key identifier: B5:75:20:D3:AF:12:93:A5:AE:28:21:80:D9:95:F0:F1:BF:DD:07:3D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C56
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tXUg068Sk6WuKCGA2ZXw8b_dBz0.roa
Signing time: Wed 29 Sep 2021 02:49:41 +0000
ROA not before: Wed 29 Sep 2021 02:49:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 203.77.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3158 (0xc56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B57520D3AF1293A5AE282180D995F0F1BFDD073D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f8:8f:4f:74:91:3a:d6:d0:10:68:ca:47:4d:
5c:fe:cf:53:a9:bf:6c:3f:08:4c:fc:d0:13:a9:c2:
a7:a9:1a:8f:1a:f3:91:f3:b3:e4:b3:fc:d2:dc:ba:
94:75:07:81:fa:b8:33:24:3b:3c:9a:29:cb:1b:a2:
e9:57:89:cc:d6:dc:01:30:ab:ac:d2:1d:22:0b:74:
95:47:17:10:2a:4f:e4:a1:25:01:05:9b:ed:a2:b9:
3a:af:64:94:1e:9f:8d:fe:25:1c:28:b4:39:d7:a3:
bb:ef:08:f1:95:dc:0e:bf:df:20:82:75:8c:cc:6d:
96:a8:2f:21:08:61:38:53:80:bc:a7:65:b5:31:df:
7a:dd:d9:6a:b6:86:67:d8:d4:0b:7f:57:88:78:ca:
b8:18:6a:b2:a5:34:bc:b3:52:ed:55:a5:99:ec:1d:
41:9a:c9:25:24:e5:dd:09:49:37:e3:6e:ea:28:db:
cb:96:9e:a5:6d:ad:21:d5:02:53:73:99:f1:44:32:
f0:7e:94:fe:3f:01:36:c8:44:9c:79:18:f3:6f:cd:
5a:63:72:82:eb:1e:89:89:b2:10:77:75:d8:cd:01:
9f:7a:fa:97:6e:b4:70:de:88:f7:46:4b:90:54:b2:
31:1d:ef:9a:83:12:8a:39:42:aa:6b:45:21:5a:29:
2c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:75:20:D3:AF:12:93:A5:AE:28:21:80:D9:95:F0:F1:BF:DD:07:3D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/tXUg068Sk6WuKCGA2ZXw8b_dBz0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.0.0/19
Signature Algorithm: sha256WithRSAEncryption
86:28:1f:82:30:f8:f9:ec:9b:ca:57:aa:64:26:72:69:18:dd:
64:11:8f:4b:a6:94:ed:57:b4:c9:14:ad:17:7b:6d:5d:53:20:
e5:34:9d:5d:e6:f9:c7:f0:bb:2a:a1:8a:c8:22:ff:a4:f7:e1:
d8:df:ff:a1:53:4b:70:26:9e:ec:dd:42:6d:8d:49:b5:00:53:
c4:f8:a0:89:2b:49:af:04:ae:64:f8:00:00:da:91:cc:d0:33:
bc:6a:65:c9:0f:c5:96:b2:02:3e:74:9f:c3:93:9a:e2:20:e5:
6d:50:00:4b:7b:b1:7e:9e:40:33:56:13:8a:d6:0f:d7:f3:6c:
f5:88:27:1a:f2:fe:07:e5:4e:2b:7f:62:f7:62:c4:d8:a5:82:
00:d2:da:29:bc:60:45:59:76:38:91:38:16:1d:a6:5b:0c:0c:
3c:45:b8:7d:31:b1:cd:83:a6:7f:a5:39:6b:07:1f:d2:84:3d:
ea:35:a8:5a:05:23:64:1c:05:8f:d9:cc:e0:95:c0:7e:d7:5d:
7a:f1:7c:61:f3:17:71:c6:ed:33:14:4a:93:4f:fc:a5:ea:13:
5c:f0:ca:33:23:5e:be:12:95:4f:11:6d:58:34:80:be:4a:77:
f7:e4:aa:a1:e1:a6:c8:2c:e3:0f:1d:6c:4e:66:48:83:e4:9a:
79:92:ef:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org