Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wPFJMJ1uzqGX2zG-UVYoz9c-gbQ.roa
File: wPFJMJ1uzqGX2zG-UVYoz9c-gbQ.roa (raw, json)
Hash identifier: vWHqq/cf8ljRFms4q03TKQWjPguJu3e9ZZ0gCYwXmMw=
Subject key identifier: C0:F1:49:30:9D:6E:CE:A1:97:DB:31:BE:51:56:28:CF:D7:3E:81:B4
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C54
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wPFJMJ1uzqGX2zG-UVYoz9c-gbQ.roa
Signing time: Wed 29 Sep 2021 02:49:41 +0000
ROA not before: Wed 29 Sep 2021 02:49:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 202.145.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3156 (0xc54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C0F149309D6ECEA197DB31BE515628CFD73E81B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c4:6a:75:a3:74:27:81:36:2c:b9:93:91:31:
25:ca:16:e5:22:5e:5b:fc:e3:34:c5:5d:13:c6:16:
53:af:57:04:34:e0:dd:1d:c0:ca:27:74:b9:68:80:
da:8d:65:6f:03:81:53:ee:6d:8a:3c:40:b3:2b:0e:
d3:d0:c1:fa:bf:c4:d1:fa:d8:4c:e4:43:e1:aa:9b:
34:2a:58:36:36:4d:77:32:da:98:37:41:7a:32:db:
70:f6:f8:ae:4e:01:b1:60:2a:75:40:e7:e7:0f:8f:
b3:d5:97:61:83:dd:05:40:8c:bb:db:14:0f:07:90:
be:38:df:9b:c0:49:23:6f:78:08:65:b6:a9:98:d4:
81:06:cc:1b:59:38:8f:d7:52:cb:fe:9c:b7:ba:61:
49:54:c8:16:48:ae:ef:4e:1f:cb:f6:c1:9a:65:ee:
5d:b7:ae:f7:0e:b9:2d:72:73:2e:10:37:ab:64:d0:
f2:7b:4a:eb:55:d2:74:be:c5:cd:75:14:8b:ab:da:
f3:72:6e:46:80:c5:5f:da:38:19:02:37:d3:a9:24:
39:09:9e:49:7e:3d:da:0c:18:c1:87:1c:0e:87:d5:
c4:df:b7:d3:3b:12:6b:f6:86:b2:3e:34:13:9f:db:
95:b3:14:e3:f8:68:33:37:d2:de:32:e1:0c:20:9b:
2c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:F1:49:30:9D:6E:CE:A1:97:DB:31:BE:51:56:28:CF:D7:3E:81:B4
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wPFJMJ1uzqGX2zG-UVYoz9c-gbQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.145.128.0/17
Signature Algorithm: sha256WithRSAEncryption
44:2c:4e:41:a1:5f:68:da:c0:5f:04:a4:0c:89:d5:98:cb:9a:
8e:a8:67:d2:25:95:58:89:5c:0a:1d:15:bb:78:ab:a8:71:b5:
92:8d:be:1f:4b:c3:70:05:95:4c:f6:30:bd:9b:f6:3a:88:fe:
02:b8:b5:35:a1:e5:23:a6:ec:97:03:7d:f1:10:ef:2f:97:38:
68:1b:98:94:bb:63:30:c3:28:0b:df:40:d3:bf:53:d2:f8:8d:
cc:93:c5:53:63:c9:84:2a:01:e6:52:1c:b6:9b:f0:5d:01:b2:
f1:d6:d0:3d:8a:4f:68:da:08:9c:13:09:e3:1f:d2:1c:25:96:
87:79:54:4f:ed:21:72:68:8d:89:bc:2d:37:a8:07:e2:ad:af:
d6:a2:cd:4d:50:9c:a9:37:9a:52:e4:9c:f2:1c:ba:0b:35:ea:
9b:b9:9e:b3:61:29:73:7d:b7:a2:e7:8b:92:d4:7d:aa:0a:d5:
42:12:6b:04:2d:ee:76:8d:79:ff:d7:13:23:f7:d7:6c:af:f3:
37:0f:91:6b:34:09:64:89:38:41:95:b3:2d:65:5e:b4:88:bc:
c3:fe:fe:0c:df:39:b2:07:c6:69:28:63:c5:20:ea:7d:aa:06:
ef:0b:f3:37:59:4d:17:53:48:0f:1a:9f:62:33:32:d5:76:16:
27:38:90:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org