Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DXLT9MQCnzwi1r6paB5a699mLyw.roa
File: DXLT9MQCnzwi1r6paB5a699mLyw.roa (raw, json)
Hash identifier: ln7UbhGGcgJVJB7qfvkseoNBRbMJocOMjOFFwNtCGMo=
Subject key identifier: 0D:72:D3:F4:C4:02:9F:3C:22:D6:BE:A9:68:1E:5A:EB:DF:66:2F:2C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DXLT9MQCnzwi1r6paB5a699mLyw.roa
Signing time: Thu 15 Sep 2022 02:47:27 +0000
ROA not before: Thu 15 Sep 2022 02:47:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131628
IP address blocks: 175.99.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0D72D3F4C4029F3C22D6BEA9681E5AEBDF662F2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:18:05:fa:52:c7:b8:b0:e3:32:78:c8:7a:3d:
e2:24:46:f3:99:bd:90:25:d4:66:40:19:62:55:c8:
d6:7c:5f:40:95:da:07:4f:ae:8c:61:bf:46:73:0b:
a8:ed:23:fd:27:58:af:af:04:71:c9:58:58:9f:28:
c6:5f:da:63:6d:f8:c1:a9:dd:fc:67:13:16:96:53:
26:3a:47:4f:f0:a9:d4:66:ca:0a:38:ee:dc:a4:a1:
21:b7:08:56:63:5f:01:8e:73:a6:80:6c:63:14:53:
bd:9b:50:c5:0f:78:d1:52:3c:ed:c0:3a:8a:29:f9:
16:cc:eb:03:63:ab:16:76:d9:bc:ee:c3:18:65:af:
34:27:79:58:9b:44:29:67:c9:32:62:ad:33:40:f8:
a5:0f:36:5d:74:eb:45:42:fd:5b:77:2c:9c:ce:cb:
83:e4:38:00:d3:5e:c9:0a:43:d7:74:5a:df:a1:f7:
20:8e:34:e8:c2:18:d4:ca:76:cb:e6:94:2e:17:75:
67:89:d5:bf:83:6f:ea:b7:2d:e5:0a:f5:b1:19:59:
5b:9a:21:b1:26:eb:55:15:cc:a3:60:7f:1c:f8:79:
0f:9d:8c:d5:30:e3:81:a2:9e:fa:97:d0:09:cd:5f:
b9:a1:d0:36:3e:29:29:b0:44:07:3b:ab:7b:35:01:
a1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:72:D3:F4:C4:02:9F:3C:22:D6:BE:A9:68:1E:5A:EB:DF:66:2F:2C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DXLT9MQCnzwi1r6paB5a699mLyw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.99.192.0/19
Signature Algorithm: sha256WithRSAEncryption
34:0c:87:1f:5b:d3:65:3d:b0:d7:37:83:79:40:e6:3d:f3:1b:
94:a2:0e:fd:9e:db:11:9b:90:97:22:59:fd:2f:6e:2c:38:3a:
ac:3a:7f:b4:83:fd:3f:1c:aa:b4:a3:ef:a9:0a:e6:20:90:87:
10:34:32:a3:56:dd:f4:8f:84:e6:85:c0:47:b4:79:b2:11:ee:
d4:36:2d:6d:22:01:68:97:f6:4e:ab:2f:f1:09:8c:ee:c1:17:
e8:39:8f:00:8d:8f:2f:6f:aa:fe:ec:7b:c1:ba:bd:11:20:81:
de:99:f5:e8:6c:80:60:04:91:11:a0:9f:fb:49:f8:d7:ad:1d:
ee:57:16:f5:29:12:78:c5:b7:74:4b:e3:5c:f8:61:12:13:5f:
88:b8:22:11:ad:fb:0f:8d:a8:d9:5e:40:73:8e:f8:53:08:7b:
e6:da:ce:09:45:48:cb:83:02:33:b4:5c:03:57:a0:37:c1:c5:
e2:e0:81:21:91:28:40:82:3e:5e:a6:83:c2:19:83:66:be:25:
54:fb:8f:3f:fe:95:aa:2e:74:fb:a5:0c:c9:99:7c:97:6a:d7:
a6:6e:60:39:ef:11:db:8a:68:9d:6c:55:2f:e6:80:e2:7e:b1:
bd:40:9f:24:de:6f:aa:2d:f5:c0:29:ab:5e:f4:47:35:c3:f8:
6e:25:ec:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org