Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uE4J6eEKJcnNnOxbX16zDOIZChI.roa
File: uE4J6eEKJcnNnOxbX16zDOIZChI.roa (raw, json)
Hash identifier: 9bbCRBXp6kGOa65jpzWFy2vI6oNLRcU+CZmnsqFGHj8=
Subject key identifier: B8:4E:09:E9:E1:0A:25:C9:CD:9C:EC:5B:5F:5E:B3:0C:E2:19:0A:12
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AD4
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uE4J6eEKJcnNnOxbX16zDOIZChI.roa
Signing time: Sun 07 Feb 2021 11:40:35 +0000
ROA not before: Sun 07 Feb 2021 11:40:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24164
IP address blocks: 203.77.48.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2772 (0xad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:40:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B84E09E9E10A25C9CD9CEC5B5F5EB30CE2190A12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7f:9e:55:42:9c:4b:3e:e9:8b:92:90:f6:b3:
2a:56:11:12:71:aa:4f:27:6b:95:d8:1d:4c:bb:db:
3a:3f:03:7d:11:6a:38:7b:f3:a7:38:4e:73:42:64:
80:fe:65:e7:f1:c5:1b:2d:98:43:3f:e5:13:0c:95:
7b:2e:1e:8d:90:31:49:7f:76:18:e8:88:21:9d:56:
24:29:ac:2b:d2:72:d3:83:0c:e7:18:b6:15:00:51:
5d:7f:6e:cb:c4:03:92:d1:23:54:10:a8:3a:85:b8:
f0:67:91:8f:eb:72:73:19:f9:3e:55:17:8b:72:6e:
d7:61:d6:d3:54:f2:14:99:c1:87:92:6b:b1:77:6e:
a0:a8:8c:e5:8e:b1:42:c1:e6:76:28:58:a0:3a:8e:
3f:c3:9b:b9:4e:9a:40:f2:2e:6e:99:80:8d:5e:77:
30:1c:ec:3c:2f:0f:80:4d:c0:ef:63:23:ae:20:5a:
c4:18:59:9f:f9:6a:fe:98:0a:e1:49:90:5e:21:e1:
cf:22:91:b6:5b:2a:bf:74:60:17:30:75:b3:93:7d:
90:08:66:22:3d:f6:0f:9a:4e:74:9a:d0:eb:11:1c:
8b:ba:2e:89:3b:ea:b1:0c:a4:21:01:57:9d:79:2b:
6a:ac:5c:02:3e:3c:d5:58:83:c0:b8:3a:6c:b6:b3:
74:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:4E:09:E9:E1:0A:25:C9:CD:9C:EC:5B:5F:5E:B3:0C:E2:19:0A:12
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uE4J6eEKJcnNnOxbX16zDOIZChI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.48.0/23
Signature Algorithm: sha256WithRSAEncryption
48:36:da:c9:ed:a7:85:38:83:b5:e9:9c:c1:f6:e9:f0:50:b4:
fa:6a:c8:6a:8b:64:69:3b:1d:65:e7:67:03:2e:3b:07:52:3b:
f2:a9:47:71:44:18:69:cf:07:51:9e:fd:48:cb:7b:17:a4:42:
db:aa:a1:af:83:01:6b:68:55:12:78:79:c8:93:63:39:c4:5c:
bb:c1:4d:d9:ab:55:71:be:eb:23:e4:ad:99:c0:51:cf:b1:43:
86:e9:2d:54:9d:6b:ed:64:07:88:c4:95:bb:49:91:8f:8a:db:
53:91:84:1e:0d:45:41:35:05:0c:82:37:51:97:32:97:93:db:
cf:b8:b2:fc:c3:d7:65:8d:52:58:5d:80:39:b6:8b:79:74:f8:
3a:91:1f:00:e8:ff:d0:1b:9b:ee:b2:39:24:f2:6e:4c:d7:52:
21:cd:4b:a1:11:68:4c:de:b3:01:f9:7a:3b:6a:b7:74:e4:d4:
9d:55:3b:ca:0a:89:e4:95:b9:ee:be:7a:a6:ab:f1:e4:21:4c:
21:85:84:09:9e:b9:d5:a2:47:5c:de:55:d7:7f:e1:19:0e:89:
23:0f:52:c5:7b:31:f2:90:fb:90:77:b8:7a:d5:1a:2e:50:f9:
92:8b:4e:6c:aa:36:33:75:93:47:26:f4:75:2c:ec:00:d2:7d:
aa:fd:88:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org