Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9p9IPgxjiqBefuAdFqdQc13NRn4.roa
File: 9p9IPgxjiqBefuAdFqdQc13NRn4.roa (raw, json)
Hash identifier: Za+D1NgSDjufkE15kTJ9aesk07+aFhNGoMYWf909ci8=
Subject key identifier: F6:9F:48:3E:0C:63:8A:A0:5E:7E:E0:1D:16:A7:50:73:5D:CD:46:7E
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C71
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9p9IPgxjiqBefuAdFqdQc13NRn4.roa
Signing time: Wed 29 Sep 2021 02:49:51 +0000
ROA not before: Wed 29 Sep 2021 02:49:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 175.99.72.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3185 (0xc71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F69F483E0C638AA05E7EE01D16A750735DCD467E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e2:96:4a:c0:3e:33:e8:ef:8c:44:3a:e8:b0:
3b:ed:2d:18:c0:67:7e:c5:f1:c6:7a:d5:33:d6:a4:
9b:31:ac:b1:23:13:79:25:45:3b:11:0c:fe:9a:65:
43:d6:eb:9e:02:06:6e:4c:b2:c9:7e:a6:49:20:85:
96:f0:35:d3:95:8d:1a:2f:d7:8a:c1:c1:8e:35:02:
af:08:bb:49:b0:c6:87:4f:4a:bc:1e:f5:bf:74:9a:
67:24:60:62:89:b3:e4:1f:66:d1:68:1a:06:ea:76:
62:c3:0d:cb:93:79:a2:e3:2a:94:6f:aa:1d:51:f6:
f7:aa:20:3e:fc:e2:e3:b7:76:8b:26:18:68:67:35:
bf:2f:cd:3f:02:64:e0:d5:01:c8:f2:23:d1:e8:40:
88:93:ac:ca:36:a1:8b:55:b8:f8:b1:a1:f3:62:70:
b4:9d:cf:41:1e:07:c4:91:e5:24:e9:9f:6c:76:08:
48:e4:37:2c:47:e4:ad:21:10:52:14:6a:7f:7a:81:
72:28:e4:e3:1f:01:67:ea:ae:c8:8c:16:71:68:1f:
25:39:f2:3e:e3:03:2c:4f:cd:31:fe:e6:2d:b3:a6:
52:85:f3:01:71:c1:8e:85:67:a8:60:1c:ce:45:df:
52:7a:9e:06:2c:b7:a7:19:e8:15:10:d4:4e:c8:1d:
e3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:9F:48:3E:0C:63:8A:A0:5E:7E:E0:1D:16:A7:50:73:5D:CD:46:7E
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9p9IPgxjiqBefuAdFqdQc13NRn4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.99.72.0/24
Signature Algorithm: sha256WithRSAEncryption
63:16:4b:5a:64:25:32:d5:b7:ab:ba:ab:ee:1e:8b:e5:e0:3d:
62:b7:0a:12:2d:a4:b0:98:8f:35:7a:ae:9f:bb:da:f1:98:a2:
05:13:ad:ae:bd:ef:6a:e2:13:52:75:8e:57:4b:56:1b:37:01:
8f:ca:7f:7a:5e:f6:01:b5:62:af:3b:51:78:2c:52:7e:83:3f:
71:37:78:35:de:ae:d7:77:c1:c3:d4:a9:c1:16:6c:50:a5:fb:
52:e1:6b:f4:81:df:7c:90:1b:f3:ba:7c:17:3d:f7:6e:2d:4d:
31:d8:4c:13:22:b0:33:7e:ea:f2:eb:1f:91:fc:fb:52:fb:27:
44:12:7b:9a:b6:31:99:42:76:58:3d:55:37:42:b2:86:1a:5d:
7e:98:0e:41:21:0d:8a:7c:7e:2a:8e:f5:8d:38:6b:5a:ff:3f:
70:36:c7:2b:fd:cd:78:3a:bc:c2:80:0d:80:dd:71:65:dc:e0:
7e:1a:90:69:e8:0d:1a:be:ee:8c:e7:f7:75:c3:9c:40:9a:72:
e7:8d:6b:54:e9:00:27:c5:98:3c:a2:13:86:82:a6:7e:46:76:
67:8b:7a:29:21:1b:f5:b8:5d:c3:40:fb:9c:e7:2d:c5:f7:c5:
d5:9a:55:93:d9:c6:2d:90:00:be:ea:ff:92:40:9d:c4:de:68:
8e:7a:74:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org