Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z51CMW5HHcVLeYx5We4ZR549M8E.roa
File: z51CMW5HHcVLeYx5We4ZR549M8E.roa (raw, json)
Hash identifier: M+cvXr12R2U1VGCIstnpsfB+6qwfwo/WtquemL+9FaU=
Subject key identifier: CF:9D:42:31:6E:47:1D:C5:4B:79:8C:79:59:EE:19:47:9E:3D:33:C1
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C83
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z51CMW5HHcVLeYx5We4ZR549M8E.roa
Signing time: Wed 29 Sep 2021 02:49:56 +0000
ROA not before: Wed 29 Sep 2021 02:49:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24164
IP address blocks: 203.77.36.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3203 (0xc83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CF9D42316E471DC54B798C7959EE19479E3D33C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e6:78:45:44:69:ee:c2:42:68:bf:7c:8c:91:
8f:59:93:86:b0:ef:63:f0:b9:ef:6e:58:96:db:5c:
bd:37:1f:64:0e:d4:65:e8:22:b8:71:7b:6b:ff:45:
48:ae:c8:99:6a:4c:cf:11:57:25:1b:82:a1:1f:1a:
69:15:98:95:99:75:45:ae:6c:db:49:c6:ee:09:5d:
e8:c0:5b:e6:00:6a:7e:36:47:fb:41:40:d6:23:db:
bb:16:02:5f:eb:99:26:03:3a:ab:63:ed:06:f6:91:
08:72:e3:f8:4d:b3:5f:97:30:8d:98:a0:3b:fb:39:
a1:99:a4:37:af:ff:5a:3b:93:e0:c4:1c:f1:49:2a:
b4:90:06:f5:47:0e:c6:d9:99:43:47:2e:bd:0f:5f:
49:ae:87:89:65:67:bf:e8:a1:a3:f4:a7:79:b3:cf:
16:dc:34:57:0e:cc:f7:17:83:38:1a:5e:91:72:eb:
84:13:0d:0f:f2:24:c3:de:01:0d:4f:dc:51:b7:59:
64:7c:67:55:ed:1e:14:4d:24:b4:33:b4:c9:bd:b3:
6d:ab:37:4d:29:b6:fe:0d:21:4c:64:73:8d:3f:4c:
16:88:a8:f5:1f:7a:fc:4d:b3:09:28:62:b7:0f:4a:
69:2e:aa:c2:de:5a:01:12:49:0b:c7:a8:89:f7:3d:
b1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:9D:42:31:6E:47:1D:C5:4B:79:8C:79:59:EE:19:47:9E:3D:33:C1
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z51CMW5HHcVLeYx5We4ZR549M8E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.36.0/23
Signature Algorithm: sha256WithRSAEncryption
32:ef:2b:ff:e8:9c:6b:ff:18:75:ca:fc:40:23:02:d6:7f:6a:
c0:ea:03:b7:aa:d5:94:90:e6:4e:5e:10:45:46:cf:8f:b1:7b:
85:d3:0f:c9:61:8b:de:20:ab:3b:40:35:27:41:d5:78:b9:81:
48:2d:be:7d:40:c8:23:1f:fc:9e:7f:f1:74:c7:ef:3d:78:2d:
88:79:41:5d:c5:dd:80:1c:b4:30:b1:65:73:46:1a:06:07:86:
78:a0:19:31:30:81:60:51:24:93:56:44:1d:4c:fc:28:43:d2:
b7:fb:62:c6:42:59:3a:b9:56:49:29:bd:ae:93:37:f7:2b:01:
df:5d:b1:e6:ef:a8:9b:db:2f:33:f3:a4:ae:5e:d8:38:90:c6:
be:21:a3:cf:d2:1c:e3:99:b0:7f:24:2c:d6:08:e2:4c:14:87:
e6:86:0e:b3:c7:06:d1:3f:e1:5f:76:54:5e:a8:59:0f:86:62:
d6:59:27:58:a5:23:3c:63:5a:de:7b:56:0d:d9:e0:fd:e3:61:
47:e3:73:14:bd:9d:ef:15:e8:36:ac:75:01:f3:0c:c1:69:5c:
de:ac:34:96:c9:d1:a0:76:a5:31:f1:ec:0c:bb:15:b8:b8:97:
fc:c6:36:8a:98:28:e5:53:f6:a9:79:7f:f4:ca:e0:45:f0:77:
1f:6e:4e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org