Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/x7FSjA1vJcdrJ-I67MORrwuCegs.roa
File: x7FSjA1vJcdrJ-I67MORrwuCegs.roa (raw, json)
Hash identifier: T35uvUmOpytGMYZkwlNkFj7ikaZnE+FjUgKh6QUrwHk=
Subject key identifier: C7:B1:52:8C:0D:6F:25:C7:6B:27:E2:3A:EC:C3:91:AF:0B:82:7A:0B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0ABE
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/x7FSjA1vJcdrJ-I67MORrwuCegs.roa
Signing time: Sun 07 Feb 2021 11:40:16 +0000
ROA not before: Sun 07 Feb 2021 11:40:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24158
IP address blocks: 175.96.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2750 (0xabe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:40:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C7B1528C0D6F25C76B27E23AECC391AF0B827A0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ea:f1:79:fb:24:be:43:31:74:b5:4c:e5:61:
48:93:c0:e3:3e:3b:3e:90:df:c1:fc:a7:e2:e5:ed:
aa:01:86:c7:d5:4f:69:47:e9:26:5d:d0:f9:7c:3a:
d4:36:35:3a:47:c8:c7:35:17:d5:53:b3:b1:51:f2:
b7:bf:3b:5e:d0:cb:14:6a:3f:1b:68:66:41:7b:73:
00:fd:16:f7:b7:c6:6b:fe:55:9b:1e:a6:0c:bc:ec:
51:f3:b4:20:04:d0:b2:b7:6e:ee:6a:15:29:aa:6c:
ce:50:d3:ca:63:e3:42:58:a7:6f:57:54:85:23:bc:
f9:03:2f:ce:25:f4:de:94:89:b7:e9:2d:81:cc:05:
3a:43:b0:8d:19:c8:2b:0e:26:1d:a0:02:24:d9:ae:
03:6a:b7:12:83:d3:55:c7:f8:a2:ad:46:6e:94:4e:
d3:16:7f:cd:66:a0:67:2b:66:44:f9:31:ab:96:4a:
12:00:fc:45:df:89:45:3f:c4:b5:32:72:82:3d:55:
2d:f0:0f:7e:b0:8c:8a:12:6e:5c:d3:40:0f:dc:2e:
97:d2:69:32:b5:e4:d8:76:18:2f:43:83:44:cc:00:
2e:23:da:5b:f0:b1:cf:da:05:40:9a:28:d1:2d:05:
8e:7d:5e:65:a3:c6:1b:ae:22:c7:6c:53:d3:44:ad:
8e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:B1:52:8C:0D:6F:25:C7:6B:27:E2:3A:EC:C3:91:AF:0B:82:7A:0B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/x7FSjA1vJcdrJ-I67MORrwuCegs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.96.0.0/16
Signature Algorithm: sha256WithRSAEncryption
50:0e:5f:09:f6:a9:1d:e0:89:e3:34:9b:5c:0e:29:8e:ca:3e:
7c:92:cf:cb:b1:cc:a6:27:44:9a:bc:c0:12:59:7e:74:74:6c:
7e:cb:07:98:bf:42:3a:bb:3e:bb:c2:c9:65:4d:09:a7:e7:97:
32:e4:63:da:95:01:33:f6:b7:b8:6b:2a:72:62:1e:9b:10:8f:
f1:ed:ae:0d:80:ac:5c:8f:c4:a4:87:3c:5c:24:b6:69:30:eb:
9d:d6:9d:43:86:80:b4:92:b0:90:a5:1c:57:36:4e:67:f6:9d:
21:0c:f1:46:19:64:91:6a:eb:0c:38:ac:a0:38:89:d4:be:81:
cd:59:ae:82:34:5a:b6:e7:9a:31:b4:16:45:92:36:79:27:5b:
00:c1:2a:30:df:17:47:92:fa:19:be:ef:52:d5:10:03:17:17:
bf:8f:39:69:d8:0f:54:b3:78:96:82:d7:95:ad:c5:1a:fa:d2:
18:df:b5:17:1e:85:9b:6d:03:13:b4:7a:04:c9:8e:25:ad:f2:
c3:48:c9:84:ee:d2:d3:9f:98:a9:3f:45:7c:b4:46:1a:7a:24:
75:a3:b8:4c:5c:b4:f3:b2:ea:47:17:00:be:76:58:3e:dc:88:
f6:2f:24:39:8f:23:82:0b:93:3e:83:24:61:e1:02:83:0f:13:
04:e3:6b:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org