Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wqzz8WtF8uBoDqh8dhXsXq_VcXA.roa
File: wqzz8WtF8uBoDqh8dhXsXq_VcXA.roa (raw, json)
Hash identifier: rkDeg7G/6tZO3kR5vxkj3AtLE0KXOb2FfuD2CzabOns=
Subject key identifier: C2:AC:F3:F1:6B:45:F2:E0:68:0E:A8:7C:76:15:EC:5E:AF:D5:71:70
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A84
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wqzz8WtF8uBoDqh8dhXsXq_VcXA.roa
Signing time: Sun 07 Feb 2021 11:36:29 +0000
ROA not before: Sun 07 Feb 2021 11:36:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 203.77.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2692 (0xa84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C2ACF3F16B45F2E0680EA87C7615EC5EAFD57170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:dc:9d:14:f4:04:43:36:dd:3a:0c:22:27:86:
a8:1e:29:b1:a3:22:ec:13:85:c1:74:96:c7:c2:81:
2a:be:c8:e0:9f:f8:d2:df:51:16:06:81:6b:52:32:
f7:b9:53:61:71:fd:30:5b:4e:05:45:72:1f:44:9a:
1d:fd:f2:d3:79:61:b4:d8:89:06:cb:f2:22:2d:26:
38:68:05:f4:e8:89:fb:9c:12:e2:78:08:4f:28:c4:
d9:6d:2d:f3:d4:48:42:e1:3d:28:2c:be:b2:5f:e4:
50:dc:13:12:d2:21:3a:4e:b3:bf:f2:fa:d0:6e:e3:
17:cf:05:d4:15:95:df:d4:ef:68:86:f5:53:c0:19:
09:70:0c:55:8a:05:fb:bf:70:de:13:43:f6:d9:dc:
e0:f7:e9:c1:55:e8:7c:84:37:04:b7:37:f8:68:02:
3d:ab:29:2d:4d:4a:c2:a3:09:40:e3:21:11:55:38:
d2:a3:21:0f:20:40:c3:95:43:4b:07:32:75:48:cd:
ab:16:2f:29:c6:f4:44:d3:2d:ed:4a:1c:7b:eb:c5:
e9:aa:8c:5f:53:9b:f6:68:6a:94:d6:79:35:88:c3:
48:63:18:b6:77:54:ec:1c:26:a6:9c:78:87:bf:39:
93:5a:14:e9:85:8c:a7:a3:c7:de:c4:47:00:37:1d:
f6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AC:F3:F1:6B:45:F2:E0:68:0E:A8:7C:76:15:EC:5E:AF:D5:71:70
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/wqzz8WtF8uBoDqh8dhXsXq_VcXA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.0.0/19
Signature Algorithm: sha256WithRSAEncryption
41:b9:4f:a2:e5:1c:ac:40:50:bc:33:96:40:41:f2:ce:fc:b8:
c6:38:a7:d6:3b:ef:de:48:85:9c:fa:0b:b1:8f:76:53:33:27:
9c:61:78:eb:41:26:58:da:5b:36:a9:3c:4f:e5:8a:3f:76:bf:
13:60:07:33:92:4b:5a:a5:f2:9f:94:63:31:b6:ee:af:e8:5d:
45:8d:42:00:f2:3e:cb:0d:7a:76:39:ef:e5:87:61:bf:dc:28:
30:b7:03:30:2c:75:67:36:bb:da:c8:60:ad:1c:26:3e:3c:11:
e9:bb:72:fa:b7:3f:4a:4c:18:b6:50:32:bc:19:1b:7c:ba:2d:
ea:73:03:9e:c8:4c:a8:67:25:15:29:af:ca:17:72:f3:50:f9:
bf:c0:8c:8c:2b:b9:a8:4a:65:61:48:f7:82:c9:8e:f9:fc:a0:
d2:24:1e:a6:19:4b:52:ad:a2:dd:88:c9:30:dc:e8:41:24:28:
78:78:83:ea:c5:36:71:24:c2:98:3f:b2:dd:32:bb:15:3f:00:
0c:5c:41:36:c0:a2:1b:c7:fb:16:a5:e9:a0:0a:42:43:15:e6:
cb:2d:3c:7a:3a:32:c5:89:f2:3f:bd:70:e9:a1:0c:39:b7:a2:
d5:5f:01:b9:53:73:c2:9f:83:e2:d9:8a:1d:01:10:c4:a4:0b:
74:2f:ff:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org