Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/OxoDuFpiYtb2L4on34gLFbGw_4w.roa
File: OxoDuFpiYtb2L4on34gLFbGw_4w.roa (raw, json)
Hash identifier: mnrqF/fMNDaR60puGby2/eUoIaF3AeXV/IJhF5WliDI=
Subject key identifier: 3B:1A:03:B8:5A:62:62:D6:F6:2F:8A:27:DF:88:0B:15:B1:B0:FF:8C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B40
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/OxoDuFpiYtb2L4on34gLFbGw_4w.roa
Signing time: Sun 07 Feb 2021 13:11:01 +0000
ROA not before: Sun 07 Feb 2021 13:11:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 175.99.72.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2880 (0xb40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:11:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3B1A03B85A6262D6F62F8A27DF880B15B1B0FF8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f6:fd:3e:1e:5c:da:74:b5:ac:ee:14:7f:8b:
a8:3e:73:ba:b6:6c:2f:26:3f:0e:00:65:76:34:14:
50:1c:a5:db:a3:9e:d9:51:1d:03:64:b0:92:52:33:
4f:bc:89:dc:bf:8d:c5:0a:1f:bc:5f:ed:7b:1a:be:
e5:f8:df:d2:09:a0:b6:db:60:93:41:71:64:04:89:
f5:77:8d:93:72:6c:86:d1:83:fb:c4:a8:f6:c4:74:
42:4e:bf:ca:88:f7:dc:3b:4d:6d:bf:ae:06:e8:e9:
11:62:84:37:ee:aa:61:07:ac:5d:a7:01:fa:c1:61:
d5:6d:fe:49:8c:b4:5a:19:02:d8:02:42:45:a8:90:
e1:c9:1d:fd:4a:d3:df:ab:a3:86:3b:f2:87:03:e0:
0a:50:a5:8f:db:c2:de:b4:a4:aa:77:e3:4c:f1:d7:
e7:00:01:52:e7:5e:ab:12:f6:9d:23:79:49:22:a3:
17:2e:c8:60:de:2e:8f:bc:f6:57:eb:e3:0f:69:bd:
7e:2e:25:18:81:9d:1b:e4:df:e0:b8:74:16:b3:e0:
14:c5:ee:3c:39:ad:8b:3e:59:28:df:59:a0:c1:61:
42:30:74:be:35:e5:85:b6:e3:a8:13:d6:de:af:84:
ec:7a:b5:3b:ce:ae:f4:9a:74:37:42:58:fb:3e:c2:
1c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:1A:03:B8:5A:62:62:D6:F6:2F:8A:27:DF:88:0B:15:B1:B0:FF:8C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/OxoDuFpiYtb2L4on34gLFbGw_4w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.99.72.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:00:2b:67:9e:14:db:87:72:20:54:a6:be:a0:03:b7:8d:e5:
d6:7b:a3:90:0f:7a:4b:4f:27:3d:da:e5:f4:f4:b7:ad:99:38:
3c:6c:41:c1:73:5c:7a:69:41:2a:b2:67:c1:24:db:9d:59:d6:
ce:5a:2b:6f:90:a1:20:70:36:b2:01:62:9b:47:eb:6a:ee:6a:
7c:40:d5:cd:28:0b:38:17:7e:f9:80:25:be:e7:a7:3a:f5:59:
f7:3d:bd:3e:f2:a8:52:88:34:02:48:e9:80:68:f9:fc:e6:8f:
28:b5:39:89:6e:84:4f:2f:4e:1a:43:ab:80:61:a3:99:36:38:
eb:c7:c8:cf:28:fe:7c:b5:83:7c:61:3a:1a:cf:3c:9e:6b:55:
06:b6:ea:30:d8:5e:28:4d:6e:5b:96:fb:c0:6d:74:b6:87:4b:
02:8f:96:32:f8:9c:30:53:99:70:bf:b5:ef:49:09:14:52:bd:
45:d8:cc:7a:57:b2:6b:90:b1:69:15:4c:b9:36:9f:62:cc:90:
92:6a:cc:b2:03:c8:c4:2a:38:97:3c:cc:57:df:33:09:80:70:
4e:e6:c6:6a:da:ef:46:bf:ae:e7:ee:3a:aa:68:7b:b5:15:b1:
d9:26:1b:ac:1f:dc:ac:f9:37:0d:b9:25:c2:93:41:08:a2:3e:
b7:6a:b2:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org