Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vcrsq2sUOhc6LjE_LeENoByzUCg.roa
File: vcrsq2sUOhc6LjE_LeENoByzUCg.roa (raw, json)
Hash identifier: /HmCkXbx+YgN6H0QlkGsprUlRUYY9zPQ9FE9swDbSH4=
Subject key identifier: BD:CA:EC:AB:6B:14:3A:17:3A:2E:31:3F:2D:E1:0D:A0:1C:B3:50:28
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C81
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vcrsq2sUOhc6LjE_LeENoByzUCg.roa
Signing time: Wed 29 Sep 2021 02:49:55 +0000
ROA not before: Wed 29 Sep 2021 02:49:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 203.65.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3201 (0xc81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BDCAECAB6B143A173A2E313F2DE10DA01CB35028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:be:36:df:ec:0d:a3:0d:3d:02:17:9e:db:e7:
72:5b:87:b0:8c:7d:33:e8:85:3c:56:39:8b:6c:e3:
9e:66:31:30:71:91:dc:62:73:2c:de:ab:c7:0a:4c:
1b:60:ca:2e:89:b2:b3:f7:22:25:89:24:b4:c0:10:
fd:46:14:63:87:6e:bf:d5:0b:ef:4e:a3:f7:6b:bf:
f4:bc:e9:e1:f0:64:0e:b2:d7:29:f4:bc:19:de:1e:
a1:de:de:21:ba:c5:4c:49:7e:e3:c8:45:27:b9:1d:
13:26:3f:51:4c:c7:fc:d7:31:08:2a:13:03:a1:a4:
4d:af:7b:4a:55:19:6a:c9:f7:ea:f5:74:10:f2:c5:
d0:83:54:eb:04:38:4b:0e:74:96:2d:26:af:c3:7a:
ad:ae:3a:16:1f:25:e1:73:04:0a:a2:68:3c:07:78:
20:8e:fc:4d:cf:71:23:d4:97:2e:4b:6a:18:cd:94:
bd:a3:4a:f9:ff:0a:6f:60:1b:74:fe:02:28:0f:80:
a7:35:9d:72:da:e8:6c:82:e1:68:2d:1d:24:de:72:
36:73:83:36:25:98:88:03:54:47:6c:5a:92:7c:98:
19:1c:38:68:7e:5e:3a:1d:02:2c:6c:c0:5e:b4:d1:
95:5e:ac:fe:4a:fd:b2:1a:7a:b4:dd:62:fa:9f:3e:
2c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:CA:EC:AB:6B:14:3A:17:3A:2E:31:3F:2D:E1:0D:A0:1C:B3:50:28
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vcrsq2sUOhc6LjE_LeENoByzUCg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.174.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:cf:d3:9f:f8:d3:3c:ea:09:01:45:2a:91:c5:d1:90:50:92:
86:cc:d5:47:af:07:f3:71:ba:f0:dd:2e:cf:83:f7:db:2e:07:
b1:ae:17:9f:e6:eb:dd:90:98:62:f9:17:50:14:52:60:c5:80:
83:30:a4:db:92:e7:02:e6:81:04:f0:e9:87:7a:b5:92:25:6d:
a5:84:9d:5a:33:87:d3:ef:3c:ec:96:bb:b5:9b:47:06:18:a9:
94:bc:ca:86:74:0d:0f:e7:4c:d3:bc:c2:4a:78:45:bc:12:12:
67:4a:fa:ce:86:35:02:12:29:18:e0:1b:06:27:e2:72:3a:a9:
09:34:9f:b1:0e:2c:95:c4:02:b1:fe:5a:04:a6:5b:47:24:04:
6b:b5:04:02:1d:af:86:40:10:4b:fa:38:b9:fa:2b:3f:c3:03:
c1:85:5c:99:05:c9:e6:49:29:04:e3:56:7c:ab:e3:57:cc:f8:
a9:e3:a1:34:6a:15:d2:ff:dd:08:0c:4a:6e:29:68:13:bf:4a:
56:54:2c:b3:f5:cc:56:6d:0c:45:d0:94:f5:95:a9:4d:57:23:
2b:b7:3e:41:38:ee:60:80:0f:85:99:98:20:66:95:c9:44:09:
9b:bf:7c:d9:e7:e0:81:49:43:b3:75:26:2f:4a:2f:14:b0:cc:
c7:a7:f4:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org