Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vpv055vcYf4tNIP3bRBzFghAQvI.roa
File: vpv055vcYf4tNIP3bRBzFghAQvI.roa (raw, json)
Hash identifier: 55I0bIE9145XpvWpzF9Tz1lD4Yv2SUILrpgGvWLIW50=
Subject key identifier: BE:9B:F4:E7:9B:DC:61:FE:2D:34:83:F7:6D:10:73:16:08:40:42:F2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vpv055vcYf4tNIP3bRBzFghAQvI.roa
Signing time: Thu 15 Sep 2022 02:47:30 +0000
ROA not before: Thu 15 Sep 2022 02:47:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 219.86.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BE9BF4E79BDC61FE2D3483F76D107316084042F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:10:eb:58:ce:b3:8d:46:8c:37:6c:c0:51:b6:
5b:9f:64:70:f8:b1:31:36:71:0b:d7:80:ab:43:43:
1d:99:03:bc:cf:70:3c:90:45:46:fd:1d:fd:53:ea:
df:9b:2e:82:20:d6:6b:54:c7:30:b2:07:38:48:61:
8b:ea:e2:16:4b:35:96:2c:da:2e:2f:f3:10:ec:d1:
19:6c:c4:ae:06:ba:63:a9:1e:8e:88:55:76:93:ff:
65:da:cc:66:5a:67:b9:e2:88:35:06:4e:b0:43:ef:
66:ef:e1:75:4e:fe:c4:8a:b7:e9:be:43:78:0c:3b:
19:8d:48:7f:28:e7:61:fd:fc:cf:47:80:13:e9:82:
ff:63:47:cc:88:bc:85:dc:32:e5:ff:81:13:75:35:
54:11:47:ec:36:c1:40:10:3a:88:ee:77:71:58:79:
0b:3c:98:d6:5e:c8:21:a7:d8:cd:27:88:9d:ae:58:
8a:62:f2:01:fd:50:bd:c6:ea:34:cc:d5:36:19:50:
1f:6c:6d:48:b2:dd:8f:3a:ff:09:3e:3f:da:7f:f0:
08:85:1f:07:e9:bb:68:52:2e:da:69:9d:a5:b4:45:
ef:5c:56:82:d8:17:1f:ed:13:d2:37:64:83:d9:20:
d2:53:ab:b3:24:69:f6:b9:d7:0a:0c:85:c9:3e:f5:
30:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:9B:F4:E7:9B:DC:61:FE:2D:34:83:F7:6D:10:73:16:08:40:42:F2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vpv055vcYf4tNIP3bRBzFghAQvI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.86.91.0/24
Signature Algorithm: sha256WithRSAEncryption
47:e6:2d:5e:a6:a5:b2:ec:05:85:ae:13:e3:54:57:ad:b9:4f:
7a:d7:44:a5:85:2d:27:03:1c:10:c2:ee:dc:b5:82:07:41:f5:
d9:e6:dc:1b:a3:ce:9c:67:b8:ce:31:85:76:76:60:fa:a1:16:
6e:47:88:99:2c:c9:f5:47:2f:10:fa:43:02:ff:76:de:3a:70:
d0:c3:1d:29:20:c4:8e:34:20:5c:7c:15:ab:6c:a0:a5:27:84:
22:3e:50:af:82:c1:b7:b0:f1:3f:9b:23:e0:90:30:b3:64:2c:
77:cd:09:67:85:4c:40:8d:7d:9a:f2:69:6b:31:94:56:31:fa:
8e:71:64:79:a2:db:5c:9b:02:cb:ad:67:1f:18:9e:db:37:6c:
77:69:48:c1:39:9f:6b:35:b7:48:04:14:0b:77:69:cc:2f:18:
6d:a3:1b:2c:68:a7:02:e7:42:45:9f:f7:55:ed:47:a8:d5:44:
c0:03:eb:7e:ca:4f:43:52:e7:95:57:69:44:58:3d:53:32:07:
6f:01:36:60:f4:b0:4b:56:f6:1b:b4:5f:67:ee:5b:2d:e0:ef:
55:2a:ea:9f:95:89:e5:f5:8f:32:2e:eb:8b:7e:84:73:5f:92:
6e:36:7b:74:ec:2c:a4:1a:7a:63:05:7c:bb:9d:15:90:16:b0:
40:62:ef:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org