Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Q2V8f9dS8A95iIQyhZutA4STL4w.roa
File: Q2V8f9dS8A95iIQyhZutA4STL4w.roa (raw, json)
Hash identifier: tbp9ax1yMrReg5+KzGGf5MDVxmZt7QU66gM0VOl6h+w=
Subject key identifier: 43:65:7C:7F:D7:52:F0:0F:79:88:84:32:85:9B:AD:03:84:93:2F:8C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CA1
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Q2V8f9dS8A95iIQyhZutA4STL4w.roa
Signing time: Wed 29 Sep 2021 02:50:04 +0000
ROA not before: Wed 29 Sep 2021 02:50:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131634
IP address blocks: 124.108.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3233 (0xca1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=43657C7FD752F00F79888432859BAD0384932F8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:90:fb:e4:3e:2e:b7:1e:47:a1:b8:bb:29:d3:
44:81:29:39:fd:73:0a:6c:90:d4:4a:ee:29:7d:31:
60:c5:a2:5b:a0:e8:e9:6e:83:85:4f:9f:ee:36:03:
6a:7b:e8:94:42:4f:f6:be:10:75:f6:de:70:eb:ec:
d9:4a:c7:ea:54:9b:32:8a:4d:dc:65:07:c3:90:07:
32:40:e1:cc:c6:7d:c1:24:0f:dc:cf:54:26:a8:60:
fb:0d:89:e3:89:97:87:59:0c:e5:0c:d6:78:0b:e4:
4e:8f:7b:96:c0:ec:e9:7d:be:24:3d:d8:43:7c:d0:
15:2e:7c:a9:c1:2c:e0:a1:b7:17:01:bd:18:43:e3:
e4:5b:65:1c:91:ff:c3:67:a1:9a:90:f6:a9:58:7a:
37:64:2c:d7:92:74:99:f5:c8:81:59:8d:4f:f0:db:
c7:86:00:64:1e:6a:8f:62:09:47:98:a3:ac:18:62:
95:48:3a:d2:b8:de:29:1c:dc:46:38:c9:71:f8:27:
7a:8e:f2:20:e4:c2:43:a3:ea:c7:ee:64:23:38:5e:
ef:88:56:5e:c1:c0:61:67:24:b3:07:a2:5e:6c:a0:
d3:4d:b1:c6:cb:03:d0:d1:e3:22:e3:6a:54:23:d1:
2b:90:a8:32:6e:71:6e:c5:6a:cd:b3:11:5c:b4:a3:
85:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:65:7C:7F:D7:52:F0:0F:79:88:84:32:85:9B:AD:03:84:93:2F:8C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Q2V8f9dS8A95iIQyhZutA4STL4w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.160.0/21
Signature Algorithm: sha256WithRSAEncryption
6b:37:a9:44:81:4d:25:48:80:e2:ea:d9:3c:5a:26:8e:50:9e:
df:da:50:a9:b2:28:6d:40:9e:ee:b5:7d:bc:cb:88:d1:44:1d:
c0:fa:41:ef:cf:4b:e4:66:dc:52:33:70:94:fa:35:1a:56:ad:
3f:cd:7c:9d:e5:f7:bd:d4:29:db:56:30:0e:9b:c6:a8:e0:74:
6a:4f:ac:80:0c:ef:c0:c6:aa:b4:cf:bc:fc:e4:12:da:46:ba:
da:ea:04:c3:18:25:83:d0:5e:ce:82:88:c1:3c:1d:fd:77:66:
b4:b2:22:a4:4f:a6:bc:86:79:21:ed:f9:b4:91:e8:04:9d:f6:
98:cd:eb:a2:0b:7d:5a:a3:f1:82:0f:3f:dc:90:0f:b2:ca:3c:
c9:92:d3:90:4a:25:9b:ad:a2:aa:ba:f6:57:50:8a:81:c2:07:
69:fc:52:4c:6b:d4:7f:62:bb:4c:7d:e0:53:d1:eb:1e:65:4e:
2e:cc:f3:ee:43:a2:5a:3b:7e:84:1b:5c:a3:18:e7:06:11:61:
00:c1:c8:12:09:78:e6:47:62:17:43:2f:94:2e:61:f8:8f:5b:
c9:d9:38:7c:6b:bf:c6:dc:b5:ef:75:b5:83:5d:6e:09:e2:f0:
9b:a7:c2:92:f1:8a:19:ec:4d:2d:ba:77:f0:66:66:6d:be:02:
d9:b8:23:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org