Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uqP7PY0pj57aJeofvCblkr34sms.roa
File: uqP7PY0pj57aJeofvCblkr34sms.roa (raw, json)
Hash identifier: m9mEN1BpjKfYyqXhzapl+1k6BIc3GUXWP7hktV3VBGM=
Subject key identifier: BA:A3:FB:3D:8D:29:8F:9E:DA:25:EA:1F:BC:26:E5:92:BD:F8:B2:6B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C6D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uqP7PY0pj57aJeofvCblkr34sms.roa
Signing time: Wed 29 Sep 2021 02:49:50 +0000
ROA not before: Wed 29 Sep 2021 02:49:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 219.81.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3181 (0xc6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BAA3FB3D8D298F9EDA25EA1FBC26E592BDF8B26B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:61:f3:dc:57:72:ef:4e:92:2b:26:49:79:3b:
4c:43:54:5e:98:3b:50:78:da:66:02:56:8a:aa:5e:
a1:f2:b3:b5:15:26:cf:22:b9:1a:21:a4:ff:51:13:
76:44:a7:3e:8d:3a:21:aa:f8:70:5e:d4:de:5e:29:
cf:ba:e9:23:17:98:d6:5b:89:76:1d:d5:57:0e:f6:
01:69:0d:e7:e3:cc:b7:d2:b6:cb:dc:09:3e:54:19:
8c:ba:c7:46:f5:b3:99:42:38:51:29:de:7e:b9:83:
5d:f1:ee:41:f7:30:a8:b3:13:8f:93:a6:47:df:b7:
af:94:8b:a1:2d:3c:5a:9a:dc:80:c9:ef:bb:54:89:
bb:3e:2c:4d:b0:d5:4f:d2:1e:a8:aa:85:26:25:ed:
66:55:22:d4:ca:e0:f1:c5:a7:55:b6:68:ae:42:3b:
6c:4e:1e:a7:37:d6:dd:35:e3:1f:ec:14:30:5b:db:
68:56:ef:c4:d4:cc:7a:b3:2b:27:41:da:92:fa:34:
45:3f:1b:2a:04:a7:2d:e6:94:5c:d4:9b:93:6e:c3:
42:0e:1b:3f:84:8f:f4:37:3b:19:2e:55:e0:fb:fb:
a8:7d:50:3a:85:33:94:63:f4:83:a5:2b:90:be:99:
8a:22:80:4f:7d:52:42:f9:6d:9e:f1:30:d2:51:3b:
07:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A3:FB:3D:8D:29:8F:9E:DA:25:EA:1F:BC:26:E5:92:BD:F8:B2:6B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uqP7PY0pj57aJeofvCblkr34sms.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.81.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4a:d3:f4:1b:ff:7c:59:9e:05:c9:08:9d:c5:99:61:15:7f:ad:
5d:d8:74:53:18:eb:d0:ab:29:4e:14:7d:5d:33:87:44:ac:8c:
05:c0:f6:58:73:66:47:44:26:26:d9:ef:b8:a6:e2:4c:56:68:
b7:42:a6:ed:6e:71:d9:8b:4a:30:6c:6f:82:b8:43:28:a6:50:
53:3d:95:ab:a7:ff:aa:a9:87:d8:b9:23:02:29:29:1d:5f:66:
d7:ec:d3:d8:3d:ff:e7:79:0d:7c:6b:fb:b6:b2:58:57:e9:b6:
bd:37:0b:b9:8f:18:a4:59:1c:1b:e7:6c:1b:14:b1:53:c8:69:
74:f7:35:f1:eb:cc:8b:74:39:66:99:92:e7:19:45:1c:c6:4e:
a9:e7:87:dd:99:52:17:84:49:ad:24:7d:b9:3b:b0:84:70:fb:
01:1e:7e:06:34:d0:5c:54:96:88:35:f4:be:e2:a3:d2:a4:4b:
1c:fc:77:51:cb:ec:bc:2b:5f:4c:9e:75:c9:94:b0:d8:48:97:
19:ef:0c:77:69:86:c0:f8:52:75:90:38:e6:2c:8d:ed:ac:0e:
07:cc:4c:59:af:c6:8f:fd:ff:c9:5f:69:7e:b4:87:8a:fe:77:
dc:08:17:e0:e3:07:2d:71:40:a0:c5:7b:05:fc:81:27:0d:7f:
3f:39:df:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org