Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/G6rsfQkLKPGI-KnaSV8LFJkZsQo.roa
File: G6rsfQkLKPGI-KnaSV8LFJkZsQo.roa (raw, json)
Hash identifier: ImmU+RAMpiBX/ODBnVhzl165SdqEv7WMt1bZyeR5uDA=
Subject key identifier: 1B:AA:EC:7D:09:0B:28:F1:88:F8:A9:DA:49:5F:0B:14:99:19:B1:0A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C99
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/G6rsfQkLKPGI-KnaSV8LFJkZsQo.roa
Signing time: Wed 29 Sep 2021 02:50:02 +0000
ROA not before: Wed 29 Sep 2021 02:50:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131634
IP address blocks: 124.108.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3225 (0xc99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1BAAEC7D090B28F188F8A9DA495F0B149919B10A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:09:25:04:59:cd:cf:af:c6:d5:3d:85:a8:d8:
0d:80:a9:5f:0a:e1:c3:e1:5b:10:1b:a7:2a:b6:ca:
20:76:5d:37:63:fc:2a:6f:9b:2b:24:35:cb:60:fd:
a5:a2:a1:51:8d:75:85:a0:38:c0:41:c4:87:e6:26:
54:52:aa:6e:a9:8e:dd:43:97:42:1f:ad:fe:ab:c3:
ee:b2:a3:d4:8e:cb:c5:86:c5:ff:fe:09:d7:dc:29:
06:3d:42:97:9b:da:4f:38:86:6b:d7:fe:7f:67:0a:
3f:11:1e:08:c3:9f:ea:fd:ff:01:3c:33:61:d7:43:
f6:3e:b8:9e:ac:08:97:07:04:23:b9:6f:28:ce:0b:
2f:5a:17:43:fc:1a:9b:e3:18:54:dd:34:68:fd:f8:
b0:0a:72:18:ea:e4:ee:7f:4d:39:d5:93:34:27:36:
8f:59:ca:97:99:77:2b:13:a0:c7:1b:40:a6:df:84:
f8:61:a1:87:21:2a:d3:fe:cd:d1:0e:ef:33:7d:1c:
c0:3e:a2:30:48:27:1e:ec:fc:82:aa:05:02:2a:23:
71:14:87:96:49:04:c3:19:e3:e3:9a:9d:4d:c0:ef:
af:fc:3b:25:1d:b1:36:c3:f3:64:0b:21:71:8d:0a:
07:8f:b7:c6:b6:c8:dd:87:c3:8e:d0:94:b4:1d:03:
96:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:AA:EC:7D:09:0B:28:F1:88:F8:A9:DA:49:5F:0B:14:99:19:B1:0A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/G6rsfQkLKPGI-KnaSV8LFJkZsQo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.174.0/24
Signature Algorithm: sha256WithRSAEncryption
64:50:c0:c7:8a:68:24:b4:2d:62:d0:35:42:46:f6:7a:77:97:
1c:92:41:6d:48:ce:99:8b:9b:55:6f:d3:fd:14:e0:70:58:fe:
3d:e1:dd:73:78:b2:97:61:ec:66:18:ca:3c:fd:fc:90:50:26:
0b:a4:8b:97:21:b1:d2:96:bb:0f:85:31:e9:0f:f3:27:af:2f:
1d:e9:0f:5d:ae:90:51:fc:c2:91:bf:27:a5:f0:1a:f3:f8:35:
f4:d8:a9:ce:5a:98:47:52:a4:ed:78:29:f0:30:3d:53:c8:5a:
72:76:90:0b:02:b2:3e:e0:5b:8f:5c:21:89:e4:06:43:cd:0a:
c5:91:a5:46:74:4c:d9:3c:0e:9e:ec:2f:e2:55:32:da:09:d1:
ce:de:08:1b:9d:95:47:e3:86:6e:11:2f:e1:8d:9b:5b:e5:24:
44:a7:8a:57:5b:7b:b6:b1:46:b5:28:c6:74:9f:8d:ff:42:e4:
b5:9d:3d:9c:1a:79:5a:13:b6:e0:73:97:69:df:63:c7:92:bc:
8e:49:a7:dc:1e:b1:89:58:08:b3:f5:0e:6a:7e:19:60:20:f9:
41:f0:6d:8e:95:75:d4:7b:ed:01:af:08:10:a6:bd:c1:f9:bc:
51:fc:a1:e9:3f:43:28:49:de:bd:89:9d:27:40:5c:a3:98:05:
0b:4e:61:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org