Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AqAH4PI3iv2w_4i_gtuXGAwYURs.roa
File: AqAH4PI3iv2w_4i_gtuXGAwYURs.roa (raw, json)
Hash identifier: GpTM6hTJem77uILZQPVYUt6i1csC0jn08NZUj5g13kU=
Subject key identifier: 02:A0:07:E0:F2:37:8A:FD:B0:FF:88:BF:82:DB:97:18:0C:18:51:1B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 082E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AqAH4PI3iv2w_4i_gtuXGAwYURs.roa
Signing time: Tue 29 Sep 2020 09:57:51 +0000
ROA not before: Tue 29 Sep 2020 09:57:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 19551
IP address blocks: 124.108.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2094 (0x82e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=02A007E0F2378AFDB0FF88BF82DB97180C18511B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fd:fe:38:0b:e0:ef:a0:d9:08:92:c3:d2:8c:
8f:5f:fb:96:9f:79:61:80:34:5f:99:14:c4:dd:5f:
6d:19:95:40:6b:8d:40:45:44:ed:93:98:f2:9e:4a:
bb:e6:37:6e:14:d9:fb:aa:f0:c3:e5:a9:bc:16:ec:
7a:84:65:ed:76:9d:b3:eb:89:0b:74:33:21:70:89:
44:f7:5b:4c:cf:fe:36:e3:50:a6:1d:a0:57:77:80:
b0:20:8f:36:49:b3:d4:8a:dc:c4:1a:7b:74:47:38:
b3:84:db:ec:dc:c4:c0:71:0e:97:fd:13:43:7d:7a:
b3:8a:4b:8f:1a:ca:07:9c:6f:59:8d:90:6d:f7:ed:
53:55:34:88:8e:7b:b2:8d:b0:29:f6:35:72:8d:64:
e7:f0:18:a5:b4:32:93:d6:dd:40:6f:d1:dc:ec:c4:
a8:c0:08:a1:af:ca:10:3c:69:cf:c5:bc:48:67:e0:
bf:0f:b2:9c:ce:50:7a:0c:36:8d:2e:70:fe:d9:cb:
d4:a0:93:3e:b0:51:df:4b:2a:72:f9:9c:ad:77:50:
33:b6:ca:d2:cf:63:15:44:7a:1e:69:af:43:f5:b0:
60:6d:42:00:54:d6:44:67:f3:77:be:67:b5:21:52:
4d:85:69:41:45:35:8a:70:2d:39:4f:3b:d3:a8:c3:
98:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A0:07:E0:F2:37:8A:FD:B0:FF:88:BF:82:DB:97:18:0C:18:51:1B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AqAH4PI3iv2w_4i_gtuXGAwYURs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.160.0/24
Signature Algorithm: sha256WithRSAEncryption
92:28:5c:5f:3c:83:27:f0:54:85:31:17:e2:a4:63:a5:51:da:
ba:05:2c:ad:e1:84:61:3d:47:74:f6:ca:23:7c:f2:10:07:d5:
e2:e2:e2:79:9f:ba:f5:34:c4:b2:30:ab:d7:04:51:30:4b:52:
85:97:5c:dd:94:c8:44:7e:68:db:0e:19:0f:2e:39:70:3c:11:
27:bc:a7:78:40:50:45:77:8f:2a:3d:3f:e9:d2:f3:ac:ad:1c:
d4:5b:a1:61:dc:12:8c:d1:9c:dc:59:b5:8a:63:63:d4:7e:a1:
76:e3:db:40:c0:8c:ac:c8:bb:83:3a:60:2c:7c:ba:67:a7:5a:
b7:cd:ab:17:ba:42:d1:3f:c0:cf:8f:03:7c:2d:3b:39:6b:ab:
39:94:9a:3b:78:74:32:de:ba:d3:63:a5:d8:08:24:62:16:65:
5e:33:a8:af:8b:fa:e8:10:c8:8d:4f:31:37:63:13:2e:92:ec:
bb:27:3e:79:45:f8:22:d5:b8:8f:b8:1a:73:a7:f6:5e:35:28:
ae:41:08:ed:9d:7b:25:2f:8f:46:0f:b2:8f:f0:78:88:6e:93:
de:8b:12:b0:db:10:a8:8a:f9:e8:49:2a:1b:7f:8c:82:79:d7:
65:cc:b0:1a:ce:87:94:fe:89:3d:33:ba:a2:e6:6f:ac:ee:3c:
f6:3b:68:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:29 2025 by rpki-client