Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/xJRZyk2kcU46TPZaGdex0bPy2tU.roa
File: xJRZyk2kcU46TPZaGdex0bPy2tU.roa (raw, json)
Hash identifier: rBbH0ojtzZVZ0KB6WEerzrqbpkM1tG6MtlSh9ZEL02o=
Subject key identifier: C4:94:59:CA:4D:A4:71:4E:3A:4C:F6:5A:19:D7:B1:D1:B3:F2:DA:D5
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C62
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/xJRZyk2kcU46TPZaGdex0bPy2tU.roa
Signing time: Wed 29 Sep 2021 02:49:46 +0000
ROA not before: Wed 29 Sep 2021 02:49:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.67.192.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3170 (0xc62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C49459CA4DA4714E3A4CF65A19D7B1D1B3F2DAD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9f:c8:b8:be:e1:eb:93:35:69:b9:20:a0:2b:
2c:85:0c:46:78:00:cb:92:c5:d5:ae:2b:6b:97:56:
38:c0:a3:fc:04:54:a7:b2:05:6e:e1:b8:0b:36:d0:
6b:61:d0:be:4c:67:0e:e3:be:39:ab:a5:15:df:43:
59:f8:b1:89:de:b1:bb:59:09:53:d3:b3:d3:08:18:
9c:8c:17:9f:48:7a:54:cc:3d:21:4e:21:8b:d5:d1:
d0:c4:41:57:f8:a7:8d:e4:56:6b:f2:a7:ca:f6:3c:
4a:0e:e9:69:cb:9e:e7:cb:9c:27:aa:8f:4a:fe:85:
c0:e0:3d:79:aa:25:b6:e4:18:04:74:f9:df:e6:0d:
1a:4d:15:98:9b:cc:bc:c5:30:29:01:ad:da:5a:da:
fe:e8:24:97:11:d0:ad:95:f9:6f:3a:c2:de:cd:ab:
e1:63:46:48:18:10:a9:4d:a3:a6:e3:29:55:83:93:
f1:2f:2c:b5:20:90:92:d2:4b:69:a8:41:25:a7:2e:
39:4a:9c:13:8f:13:1c:b9:c5:d4:64:c4:97:98:28:
41:20:0b:de:cc:d6:1b:96:62:91:f9:db:71:37:ed:
00:65:0b:df:bd:d3:7a:8f:62:30:7b:9e:9f:15:08:
04:40:24:be:e9:08:fe:27:25:bb:a9:e8:09:e7:81:
09:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:94:59:CA:4D:A4:71:4E:3A:4C:F6:5A:19:D7:B1:D1:B3:F2:DA:D5
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/xJRZyk2kcU46TPZaGdex0bPy2tU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.192.0/20
Signature Algorithm: sha256WithRSAEncryption
49:67:a6:11:d3:52:c3:86:f7:85:0b:5a:43:86:7d:32:82:4b:
b8:6d:f6:6b:a9:9d:9c:58:ad:69:01:58:1f:41:bc:37:d0:01:
9c:e9:4d:61:67:71:e2:41:c7:0a:07:0b:39:f3:06:69:3a:81:
ff:6b:09:3c:3b:4f:9f:69:da:dc:f1:75:76:ce:3e:54:f2:9f:
f9:22:05:5b:d0:1c:f3:d3:e0:b5:2d:0f:f0:5c:6d:cd:e1:d3:
30:bb:f8:95:0d:2e:45:20:df:1b:fc:75:13:49:3d:f2:60:de:
9b:1f:18:27:db:cd:e1:12:f6:ae:e1:17:81:7a:94:f5:d3:b4:
60:e2:52:d6:c1:cb:87:de:7d:c0:11:82:14:7d:dc:9d:c6:76:
2b:4b:3a:e8:02:ef:9a:62:b6:56:01:5a:18:47:20:30:17:48:
ea:ea:21:97:cf:1f:e2:79:e2:0e:3d:64:d7:c5:35:2a:4a:7d:
c6:2a:8b:d0:44:eb:6f:15:c6:54:f8:2c:b7:07:3d:b2:6c:08:
23:f7:66:04:ee:e1:3c:22:32:c5:5d:1b:3e:12:70:46:cb:ba:
50:4d:2d:50:8c:55:73:01:30:f9:30:f3:32:2d:88:5f:88:5a:
e4:41:39:48:9b:2a:10:07:4a:d1:e9:50:22:81:77:bc:27:85:
7d:7c:43:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org