Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zoFxPD5xSdkfYdHPtasi1TyjdbU.roa
File: zoFxPD5xSdkfYdHPtasi1TyjdbU.roa (raw, json)
Hash identifier: Q/iaFSqZOtDkcxSiuj3A3aYtZmLV2jUrpfldDVNj8Pw=
Subject key identifier: CE:81:71:3C:3E:71:49:D9:1F:61:D1:CF:B5:AB:22:D5:3C:A3:75:B5
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zoFxPD5xSdkfYdHPtasi1TyjdbU.roa
Signing time: Thu 15 Sep 2022 02:47:01 +0000
ROA not before: Thu 15 Sep 2022 02:47:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.62.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CE81713C3E7149D91F61D1CFB5AB22D53CA375B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5b:20:39:98:e6:66:83:27:a0:fd:cc:08:db:
fb:dc:4e:f8:85:16:57:6a:c3:5a:e7:81:83:db:64:
df:38:94:41:38:d9:db:c4:e0:d2:b9:07:06:66:a2:
a7:c6:00:10:95:ec:06:7c:28:87:e7:39:8d:d7:61:
86:6e:df:87:17:75:6b:c6:91:7a:ed:85:69:96:35:
8d:14:f7:b4:2f:5e:24:ab:dc:33:01:60:34:1b:82:
54:3a:d0:d7:b5:bc:52:98:e7:42:8b:f0:60:0f:ce:
47:98:8a:40:58:c5:dc:f7:ae:1a:3e:76:42:c5:86:
bd:27:c0:8d:91:3a:85:45:85:60:20:26:ef:01:72:
71:7a:00:01:eb:da:2b:c2:a3:95:00:6e:92:ad:ea:
8e:57:e3:3e:2b:0c:e2:2e:17:1e:ae:8d:c5:b4:32:
fc:83:fd:ab:9e:15:7f:d0:95:ec:41:ed:3c:86:32:
2e:df:28:e1:ff:cd:2e:02:9c:73:74:ab:f8:c4:f4:
a1:7a:92:b0:6e:40:d2:93:9a:78:d1:07:3f:77:30:
f1:3e:38:fe:91:80:a1:94:49:82:1d:5f:32:75:58:
46:74:40:98:b9:98:75:7d:20:4e:de:1a:73:fe:b1:
7c:31:b1:f1:9d:3e:ca:6e:b5:de:46:24:a7:a0:08:
94:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:81:71:3C:3E:71:49:D9:1F:61:D1:CF:B5:AB:22:D5:3C:A3:75:B5
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zoFxPD5xSdkfYdHPtasi1TyjdbU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.0.0/19
Signature Algorithm: sha256WithRSAEncryption
91:91:67:ab:69:45:8f:76:ca:c5:c7:60:9d:74:85:53:39:e2:
c0:1a:60:fd:ea:c1:84:98:8b:1c:46:a9:e5:81:00:3e:48:ff:
ef:56:0a:b0:f1:a6:22:dc:19:d5:d7:60:3a:77:fc:f8:a3:b4:
48:b5:ff:0c:b5:ac:98:95:de:fd:d7:bf:07:45:30:32:87:f7:
ab:f6:6b:c4:b6:44:bd:2d:d9:73:f0:b9:12:62:3a:d4:1a:47:
1d:ff:fb:c0:3f:70:61:8f:6c:d1:d4:e3:8a:b7:62:1c:0b:bb:
01:07:09:9c:46:9e:b3:b5:4a:26:75:f2:c9:14:27:23:74:fa:
de:9c:75:42:65:8d:41:94:50:73:5f:a7:50:7f:ab:05:b5:da:
6c:4b:cc:01:2f:89:cd:33:f5:c1:4c:39:92:75:cc:63:53:87:
4a:6d:60:a1:9a:59:28:7d:0d:41:f1:a3:1b:50:da:34:de:fe:
8c:d3:f1:10:99:48:9d:69:3c:7f:f2:87:bc:05:9e:5c:bd:85:
31:08:c1:64:d6:c6:df:c7:73:83:61:78:65:28:a3:76:90:f2:
e1:1a:1e:37:c2:85:85:67:8c:2c:0a:95:1e:ea:53:3f:8d:8b:
6c:41:e4:8e:bf:7a:67:37:2c:2d:22:65:ac:0b:dc:ef:5e:b4:
85:39:f5:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org