Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IaxOVi6Fks0TWwsoAl8MstBk_lU.roa
File: IaxOVi6Fks0TWwsoAl8MstBk_lU.roa (raw, json)
Hash identifier: lzfY0mAMhA1M6cy3t/NvxzeE5YNNAckq748vL3b91ng=
Subject key identifier: 21:AC:4E:56:2E:85:92:CD:13:5B:0B:28:02:5F:0C:B2:D0:64:FE:55
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IaxOVi6Fks0TWwsoAl8MstBk_lU.roa
Signing time: Thu 15 Sep 2022 02:47:26 +0000
ROA not before: Thu 15 Sep 2022 02:47:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 202.145.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=21AC4E562E8592CD135B0B28025F0CB2D064FE55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fa:88:c6:20:a2:d5:d9:4d:4f:c8:a2:77:e2:
ff:af:5c:9f:95:78:e0:47:5d:de:60:24:9e:66:85:
d6:b8:8b:0c:7b:57:76:62:3a:8f:8d:3e:1a:2f:fe:
80:88:22:2a:33:64:e4:b2:24:2a:74:75:b8:e7:13:
4e:db:97:98:a2:0a:20:8c:e3:47:95:2e:2e:c3:0d:
17:d4:ce:04:60:10:cf:14:67:59:b7:b5:31:85:eb:
7b:16:63:41:73:fd:fc:fc:76:21:8b:ff:e7:16:d5:
f9:b1:3d:7f:66:5a:1b:01:ba:84:af:0f:35:50:e3:
a8:c0:47:d0:b4:7a:d6:ba:ee:98:b3:0d:ca:99:61:
da:66:e9:76:eb:f6:00:a3:7a:c5:d4:a5:e1:03:68:
ef:74:39:33:f7:f0:31:77:48:90:cd:91:81:ac:b8:
bc:e6:2b:ef:9d:18:96:82:60:46:ce:d2:d5:f6:35:
02:58:00:d0:13:04:b1:21:1a:a5:23:c8:ae:9c:8e:
1b:04:04:e9:a9:85:df:65:e7:fb:40:90:da:a6:86:
ba:be:23:ca:9d:d4:39:53:86:d8:61:df:bf:39:20:
60:5f:9f:d5:b2:7f:1b:39:da:dd:01:a0:a8:76:ee:
93:f1:23:4b:2c:87:de:7c:d7:a8:84:60:fb:2d:88:
f6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:AC:4E:56:2E:85:92:CD:13:5B:0B:28:02:5F:0C:B2:D0:64:FE:55
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IaxOVi6Fks0TWwsoAl8MstBk_lU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.145.32.0/19
Signature Algorithm: sha256WithRSAEncryption
1d:d6:66:8d:a3:9b:ca:33:05:72:50:48:26:c1:92:db:2b:d9:
be:c5:99:33:21:89:58:fa:ac:b2:74:49:63:76:1f:65:12:76:
8c:56:f9:13:4e:34:51:20:2d:19:d0:e3:e1:67:60:5d:47:24:
8e:cd:8c:f8:24:48:03:8f:17:4e:2f:00:38:96:ef:a4:93:76:
31:68:bf:c9:5d:2e:d5:a9:84:f4:2e:35:e5:1c:8b:6e:ac:16:
22:81:86:c1:d3:8a:42:95:e5:81:c2:04:d9:d5:fd:7e:a2:9f:
3f:ca:eb:aa:2e:a3:2b:20:94:e3:1c:a3:ef:08:bc:46:08:bb:
44:51:30:cb:6f:eb:5f:e9:31:85:de:95:8d:e8:30:32:f3:75:
c1:13:14:9b:29:db:6b:68:c8:cd:76:5a:c5:bb:ed:b8:5c:62:
31:34:36:06:f8:5f:e1:13:4a:c3:ec:40:b4:28:ae:3f:95:56:
f4:dc:dc:88:be:4a:77:cd:9d:db:51:ed:8a:d4:6d:3e:aa:62:
36:b6:c1:17:7b:77:31:a7:98:2e:2b:96:c2:ba:60:3b:5a:da:
38:fa:ed:66:80:9b:60:4a:3a:7a:d7:14:7d:67:e3:5f:fa:ab:
08:c4:5c:27:43:14:ba:73:81:64:ab:83:8c:e2:9b:03:c9:fd:
bf:fb:d2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:32 2025 by rpki-client