Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CzblWl74KMX2ElP-4AlYwkeZqOI.roa
File: CzblWl74KMX2ElP-4AlYwkeZqOI.roa (raw, json)
Hash identifier: R7nIJCL4PyUvokZ5BWzTf5O4TLmXMKPjpKY+y6LZXWY=
Subject key identifier: 0B:36:E5:5A:5E:F8:28:C5:F6:12:53:FE:E0:09:58:C2:47:99:A8:E2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CzblWl74KMX2ElP-4AlYwkeZqOI.roa
Signing time: Thu 15 Sep 2022 02:46:51 +0000
ROA not before: Thu 15 Sep 2022 02:46:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131634
IP address blocks: 124.108.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:46:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0B36E55A5EF828C5F61253FEE00958C24799A8E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:59:a1:38:9c:c1:51:f6:84:bc:a2:fb:56:52:
cc:56:8e:b4:63:96:3a:6a:dd:69:6d:01:2a:0b:33:
a7:88:3e:df:72:43:c7:90:2d:f5:d3:38:2a:56:22:
31:19:b6:51:a1:c9:7c:db:ea:f9:e7:54:0a:af:96:
89:5e:21:77:49:4a:50:5b:3b:a4:65:56:c1:32:cc:
51:b1:91:04:4d:a0:b1:48:f2:b0:36:b1:c8:a2:42:
59:20:bf:50:b4:7f:c4:79:2d:b1:d0:16:0c:4c:34:
da:12:c2:38:85:75:db:12:a9:cc:49:41:98:fa:44:
b1:30:0a:7c:18:04:1f:3f:2a:02:b8:33:1d:d3:71:
32:11:c7:cf:f2:d3:fe:a6:70:b4:99:b4:61:59:ae:
f1:66:9c:62:2d:9d:1b:5b:6e:b6:a1:88:c5:b1:19:
b0:6a:ca:e9:06:f7:33:e4:cc:23:0a:26:d8:48:4a:
1a:53:91:b6:f1:75:ae:16:0e:91:ca:2e:d5:18:81:
92:59:d4:68:26:86:aa:60:d7:40:97:b6:01:b4:29:
09:34:c0:f5:91:f8:73:08:35:2d:4d:59:ac:45:33:
ed:ce:36:00:a1:ba:bf:14:1f:03:00:01:ae:f8:81:
f2:f4:80:c3:7a:9c:7f:b8:2c:e1:dd:30:9c:19:a9:
13:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:36:E5:5A:5E:F8:28:C5:F6:12:53:FE:E0:09:58:C2:47:99:A8:E2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/CzblWl74KMX2ElP-4AlYwkeZqOI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.160.0/24
Signature Algorithm: sha256WithRSAEncryption
57:bc:72:be:05:dd:8d:8a:d6:f1:c9:c6:eb:a3:2d:85:e5:9f:
71:d8:a4:52:20:81:b9:48:94:53:98:91:f5:e3:bb:e2:89:73:
79:99:0c:11:2a:ff:55:93:18:5e:ff:5a:20:2c:ef:b4:4e:92:
3c:ca:49:13:26:ac:1f:ba:a7:02:97:6b:77:fd:5f:9b:41:76:
44:c2:27:0c:ea:6e:4e:5e:22:01:bd:64:e5:0b:36:95:c5:4e:
70:70:4b:f9:ca:47:2e:ff:4c:5e:19:08:15:5f:28:85:e4:7f:
15:0d:64:11:84:c6:96:e3:bb:9e:dc:1e:19:53:6e:06:89:bf:
92:db:54:7b:fc:ce:e2:f9:f1:bc:dd:25:a4:78:64:b6:3a:d8:
b4:4c:70:c7:60:05:5d:29:82:f5:78:c7:99:80:b2:a9:4a:8b:
17:ea:34:e0:3a:28:3f:4d:8e:ef:0e:5b:59:d3:96:ab:9a:88:
a2:7b:ab:92:91:cb:71:17:3c:6b:ad:fd:b8:62:85:7c:40:6f:
c6:3e:c1:a0:65:c9:10:b9:58:03:55:66:de:ef:8b:2d:c2:1d:
73:bd:77:a1:e4:ad:1c:de:ed:51:e3:3a:da:0b:93:1a:9f:57:
81:bc:71:fb:43:ae:7a:17:0e:5d:8c:9a:11:e9:bc:b3:a7:ad:
03:2b:e9:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org