Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z0c302IVx8Od2knN1eoRVcc2Od8.roa
File: z0c302IVx8Od2knN1eoRVcc2Od8.roa (raw, json)
Hash identifier: pMMQfjUO17tjhIgvgHdxTecAPnAh0x4Kzb1cqa+ZOCA=
Subject key identifier: CF:47:37:D3:62:15:C7:C3:9D:DA:49:CD:D5:EA:11:55:C7:36:39:DF
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AF0
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z0c302IVx8Od2knN1eoRVcc2Od8.roa
Signing time: Sun 07 Feb 2021 11:49:01 +0000
ROA not before: Sun 07 Feb 2021 11:49:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 219.80.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2800 (0xaf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:49:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CF4737D36215C7C39DDA49CDD5EA1155C73639DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0d:5e:1c:11:ad:d0:57:0c:81:59:b7:85:f3:
0a:ee:c2:dc:ed:c2:d8:63:d5:2e:9d:e3:3b:9a:e0:
65:3b:e5:35:a3:b9:5c:8b:44:01:26:20:9d:32:e0:
15:bb:59:fe:0c:cb:f6:25:30:d2:88:c4:14:2b:78:
94:c0:05:8a:86:db:ae:c9:5c:29:7a:40:fb:81:71:
b3:f4:38:c3:30:1f:e2:38:29:de:6c:62:ec:c5:c7:
31:dc:5d:b0:7e:15:76:28:0d:66:02:ab:50:da:82:
c9:a9:5a:50:51:bf:d4:51:f2:2d:d3:73:ea:01:4c:
35:e1:d0:88:1f:e8:5d:4b:14:8c:9f:47:be:65:9c:
7e:78:d7:4c:93:03:3e:1b:5a:bc:85:9b:b5:24:39:
ca:2d:4a:fb:bf:3c:73:82:7f:56:9b:c8:38:12:47:
b3:7e:73:93:4c:40:61:68:b8:58:c9:53:5d:41:b1:
db:6f:eb:d5:d9:c6:82:9d:fa:2a:48:21:4f:45:ac:
6d:ab:4c:b9:7e:9f:26:ce:6a:17:47:b7:da:96:63:
6b:02:bc:06:3b:7d:a3:d8:bc:db:6f:63:07:ac:c5:
c8:2a:ef:ea:0f:d2:2e:43:b9:f6:a2:12:2d:f3:ad:
96:9e:07:f7:4c:7d:7e:40:85:3e:84:f3:c9:26:99:
63:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:47:37:D3:62:15:C7:C3:9D:DA:49:CD:D5:EA:11:55:C7:36:39:DF
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z0c302IVx8Od2knN1eoRVcc2Od8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.80.0.0/15
Signature Algorithm: sha256WithRSAEncryption
23:42:7b:3b:95:82:5e:1a:33:c3:2e:be:1f:c4:0e:59:94:30:
e7:29:3f:78:e4:dc:d4:47:1e:68:5c:54:ca:1d:1e:4d:89:c9:
a5:c8:a9:f1:4f:b9:64:cb:39:cc:07:90:fd:1e:51:53:44:b7:
c1:ff:3e:8a:d5:55:ab:c6:e2:2c:0d:d4:e5:1d:62:fc:14:07:
db:05:24:6e:56:d4:cb:54:43:cf:8d:c1:0d:1e:81:5a:cc:56:
eb:a7:52:b9:56:b0:10:be:4c:7e:16:a2:ad:49:22:66:68:f0:
4a:86:b9:45:44:56:b8:22:06:8f:c5:e4:1a:8f:b8:f6:c6:c6:
0b:81:67:d5:c7:cf:d6:48:10:fe:a2:6e:dc:dd:a4:73:3b:2d:
9e:46:94:61:eb:c0:85:b6:3b:43:49:8a:f8:f0:0c:e9:ae:4e:
de:40:d3:9d:10:71:fe:65:68:27:ee:b5:d7:3f:0d:ea:9f:27:
e4:d4:a0:13:5d:23:92:3f:c9:f5:f9:25:fb:16:be:03:50:a0:
9a:6a:2e:da:a5:52:e6:30:fd:34:c8:95:5b:a8:01:08:1c:78:
f4:93:2c:a2:f0:ed:d1:7c:2f:49:8e:57:e1:96:f4:9e:c2:ac:
1a:81:40:ad:14:d4:6f:b4:48:f6:b1:f4:18:2f:c7:4b:3e:bd:
c0:97:6e:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org