Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Jg2WA9xg3-ReiFnhQ0SMFKHrM5o.roa
File: Jg2WA9xg3-ReiFnhQ0SMFKHrM5o.roa (raw, json)
Hash identifier: h+Jf+nCSZ1fKkfrfaq81LnvBoTCNmGztF0bI3k5QJY0=
Subject key identifier: 26:0D:96:03:DC:60:DF:E4:5E:88:59:E1:43:44:8C:14:A1:EB:33:9A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FEF
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Jg2WA9xg3-ReiFnhQ0SMFKHrM5o.roa
Signing time: Fri 01 Sep 2023 09:37:32 +0000
ROA not before: Fri 01 Sep 2023 09:37:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 124.108.128.0/18 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4079 (0xfef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=260D9603DC60DFE45E8859E143448C14A1EB339A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:16:44:dc:3e:34:b5:36:d5:c5:21:c9:67:64:
ac:e2:9f:9e:6c:75:39:98:ff:43:65:ea:c5:79:7f:
cb:fe:ec:cb:99:21:03:ef:74:16:cb:de:c1:6b:ad:
19:5f:47:d7:a2:11:ab:6a:75:a7:2c:f3:25:6f:29:
99:2a:53:c5:8b:1b:21:20:ef:f1:dc:a9:82:b7:03:
49:38:fc:9b:f5:f7:1f:06:94:f2:c9:a1:7b:82:13:
99:7d:c5:18:c2:fa:53:a9:b9:5d:7f:6c:35:9d:63:
a0:02:7a:15:47:ad:77:0f:0c:58:4d:2f:5e:53:31:
fe:68:6a:13:7f:e4:a8:0d:af:1b:f9:b4:c2:d4:25:
1f:78:f3:d8:59:d7:d1:2e:8b:4a:58:3c:d3:c1:0f:
5c:94:ac:9b:ac:a4:e2:ad:73:f8:bf:a2:8f:1c:b8:
2a:04:c0:6a:31:d6:65:84:77:05:09:98:e3:75:9c:
05:ce:3a:e8:8f:e9:3e:49:0b:2f:34:0b:2d:cc:b9:
d6:4f:fe:31:fa:7e:30:f1:82:ac:59:6e:05:5f:0d:
e6:f1:e1:05:7a:3b:a3:f5:b2:7d:a5:61:6c:a8:f3:
5f:f5:fd:88:2a:a0:23:ee:da:9f:63:42:c2:1e:4f:
73:4a:9f:c0:f3:f2:5e:22:bd:3f:29:49:a4:13:00:
8f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:0D:96:03:DC:60:DF:E4:5E:88:59:E1:43:44:8C:14:A1:EB:33:9A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Jg2WA9xg3-ReiFnhQ0SMFKHrM5o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.128.0/18
Signature Algorithm: sha256WithRSAEncryption
6e:92:df:02:9c:23:90:ae:6e:40:fb:cf:e0:07:81:c0:c8:ef:
e3:e0:a6:d9:6d:13:99:7c:e0:b7:2b:6c:64:63:a7:89:87:0b:
b5:ad:73:a5:b0:a8:90:db:b9:09:3a:7f:25:be:67:a7:5c:f4:
a3:dd:a5:5f:45:be:06:ee:22:09:11:5b:0f:68:e2:36:b4:72:
93:4f:c9:a6:7d:25:2d:c7:fd:d9:55:e2:a7:7e:d5:c6:ae:18:
0d:19:73:bc:17:cf:a5:89:88:75:db:27:41:31:9a:97:5f:3d:
e6:91:74:8c:04:ba:38:3a:82:76:53:87:b0:de:96:92:d9:21:
5a:ea:ce:10:ee:84:a5:ca:8e:8e:4c:fd:12:33:9f:36:4c:c3:
2a:e2:9e:19:11:2b:7a:cf:db:c2:60:45:24:4c:d8:5e:73:26:
f3:f1:4e:fd:28:57:f1:8d:b4:23:6b:4b:c3:f8:8f:cb:4b:a0:
4b:c0:d1:da:65:7f:ec:21:80:4a:d1:d0:09:14:72:96:43:54:
48:c8:fe:4e:d1:66:79:06:21:01:fa:08:fc:d9:52:0c:af:89:
de:3b:2e:81:d9:76:e3:06:2a:0f:25:a8:e4:8d:43:be:56:7c:
ab:c8:dd:a1:e3:0b:b2:0b:bb:37:1b:76:db:e5:cc:55:5b:4b:
18:70:50:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:43 2025 by rpki-client