Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vj-Q_fWCUn-YmHhkUWtBaWIq3jc.roa
File: vj-Q_fWCUn-YmHhkUWtBaWIq3jc.roa (raw, json)
Hash identifier: b3crkUYxIqE8/WG71x0rB7ft7b7T2DqUIKHd6+Go2ys=
Subject key identifier: BE:3F:90:FD:F5:82:52:7F:98:98:78:64:51:6B:41:69:62:2A:DE:37
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CBA
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vj-Q_fWCUn-YmHhkUWtBaWIq3jc.roa
Signing time: Wed 29 Sep 2021 02:50:11 +0000
ROA not before: Wed 29 Sep 2021 02:50:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 175.98.200.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3258 (0xcba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BE3F90FDF582527F98987864516B4169622ADE37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:55:5b:b9:d3:bf:9b:f8:29:2d:07:dd:ed:f0:
2e:b2:4c:10:7d:4a:38:d5:f6:6d:61:4e:93:08:bc:
bc:cc:21:76:a2:cd:02:d5:4e:bc:86:28:ce:eb:82:
53:25:7c:10:3c:b2:37:5c:e5:bc:25:72:25:8f:6d:
ba:33:0f:a4:a8:4d:34:95:99:f2:2f:c3:e7:ca:30:
65:de:60:7f:ce:ff:df:64:d0:fb:40:ca:d8:2b:be:
50:bd:5d:10:06:4d:0a:f3:42:33:66:0a:40:7d:98:
66:0d:7b:15:a3:b2:44:16:97:a3:44:20:34:90:16:
86:7f:4f:94:ee:f0:16:59:aa:57:91:9d:0d:0f:11:
a8:71:c2:59:24:1e:b9:e3:0d:d2:77:c3:b9:42:94:
7e:20:fa:e8:e5:e3:e7:4e:b3:19:09:3e:48:5c:52:
d9:b1:4e:ba:75:2e:46:13:65:b3:5c:17:90:78:00:
74:98:d6:ad:60:74:55:36:36:34:8f:13:84:c4:08:
d4:f3:29:8a:b3:6f:7f:b2:09:21:a6:8d:c6:d5:dd:
0c:b8:da:48:e3:e3:28:a5:1b:1c:cc:53:a1:ee:87:
30:ea:55:29:aa:1d:8f:9f:75:5a:3c:38:f5:5b:7a:
28:51:e6:91:53:8e:c7:a7:21:fa:81:fb:57:77:a8:
de:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:3F:90:FD:F5:82:52:7F:98:98:78:64:51:6B:41:69:62:2A:DE:37
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vj-Q_fWCUn-YmHhkUWtBaWIq3jc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.98.200.0/21
Signature Algorithm: sha256WithRSAEncryption
11:45:05:3d:f5:c0:4b:6f:b0:ed:9a:2e:7e:6e:d0:09:91:5c:
69:51:a5:0c:4b:ea:5a:6d:7a:4e:a7:cf:ed:7d:36:00:33:da:
25:6f:c1:a2:0c:fa:00:cd:fe:f9:37:43:61:1e:4c:8c:af:a8:
11:aa:7d:8c:c6:33:3a:57:e1:ae:11:2b:a4:90:6f:ff:33:b0:
f2:f5:9b:6c:a2:a4:66:f1:d2:9f:74:70:a5:2f:9a:70:93:8a:
ab:38:63:6e:41:f4:85:11:aa:58:a4:92:d4:ea:83:46:33:a9:
60:f2:39:43:26:87:7b:53:e4:80:cd:8c:c9:3e:b9:ec:fc:25:
c5:aa:ec:5f:84:77:80:9a:72:fe:76:cc:24:7a:c7:71:9e:cc:
47:2a:b8:73:c6:ea:19:55:1b:ed:81:42:e5:13:7a:25:51:3c:
73:4f:45:56:d1:5d:8c:e4:99:13:6c:c1:41:f9:d2:2f:19:c3:
6d:85:f8:f1:36:c0:7b:d2:09:2b:b3:c8:49:00:7b:17:d7:e6:
6b:f1:e0:c0:d0:c0:e5:11:12:2d:d9:cd:35:8d:bf:e9:c5:7c:
3e:83:05:f0:c6:d5:a6:8c:d5:4d:f1:72:95:ca:0f:43:35:4c:
0f:4a:0e:13:74:f7:f1:02:e0:b4:1d:fe:aa:7b:06:ab:56:c4:
d9:cf:83:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org