Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Rc7v_jKUwRYrRRoXsW9hSZZnOts.roa
File: Rc7v_jKUwRYrRRoXsW9hSZZnOts.roa (raw, json)
Hash identifier: 4GI7K5rfv0gBAF0MVVLqj8y0g6Bd5Clz9H1mW2kF49U=
Subject key identifier: 45:CE:EF:FE:32:94:C1:16:2B:45:1A:17:B1:6F:61:49:96:67:3A:DB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CB6
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Rc7v_jKUwRYrRRoXsW9hSZZnOts.roa
Signing time: Wed 29 Sep 2021 02:50:10 +0000
ROA not before: Wed 29 Sep 2021 02:50:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131611
IP address blocks: 124.9.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3254 (0xcb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=45CEEFFE3294C1162B451A17B16F614996673ADB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:15:86:1d:26:d3:77:ec:83:ab:50:ee:bd:d8:
da:6f:f7:64:49:e1:53:32:7d:03:86:b3:3a:db:34:
49:36:b0:78:81:30:e7:1e:97:2a:b5:fa:73:d4:a8:
28:0d:61:a4:e6:01:f0:d5:27:e4:f7:63:05:4e:8a:
61:31:5a:e6:20:da:83:77:13:51:0f:2b:10:e8:91:
51:a2:17:01:ad:b5:8d:43:1b:3d:72:ec:9d:a5:8f:
7a:39:82:8b:b9:11:86:75:58:53:0a:86:a4:0a:6e:
f6:2c:9c:d1:09:77:f9:bd:3e:60:45:7a:d5:af:58:
63:dc:19:65:f6:86:d3:89:32:bb:b4:fd:7b:02:61:
c3:3e:8e:5a:f4:eb:ac:8f:52:88:e3:12:df:c9:da:
06:c3:33:32:96:3a:e1:d0:e1:a0:1a:b0:19:0b:ed:
59:9a:9b:75:b8:2e:06:8d:4c:ba:2c:a9:d0:9e:3e:
62:ac:d6:52:17:cb:ca:ac:f8:29:8c:17:6d:83:b5:
cc:cb:e1:12:c6:53:0e:4e:f7:c4:9e:dd:2c:b9:f9:
74:4a:ed:37:0e:c0:c3:cd:7c:bb:31:b4:1b:4d:51:
f9:84:88:53:96:07:e3:cd:4c:3f:82:cb:b9:b7:41:
d7:fa:68:a2:92:91:d5:c3:f0:8d:e2:cd:e6:72:f9:
01:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:CE:EF:FE:32:94:C1:16:2B:45:1A:17:B1:6F:61:49:96:67:3A:DB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Rc7v_jKUwRYrRRoXsW9hSZZnOts.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.9.96.0/19
Signature Algorithm: sha256WithRSAEncryption
7f:b8:ea:60:c8:0c:29:04:96:a4:b7:cb:88:9d:c3:96:80:5c:
79:25:7d:05:af:4a:00:fb:ec:fc:e2:db:1b:a4:22:f1:58:3f:
7b:66:78:ac:44:32:f9:22:91:95:e0:86:30:cd:d9:8b:ad:ad:
b7:1e:ac:9e:44:50:90:31:40:fd:a5:77:32:d5:48:61:43:18:
48:83:b2:32:fc:86:93:77:fb:1e:ae:5f:77:79:09:c1:ac:38:
03:e7:7c:71:12:2a:02:a3:24:7f:80:6e:20:ac:9f:e1:bf:5d:
18:b4:31:24:38:a2:f8:7a:7a:bf:a3:98:b5:8c:4c:3e:f2:89:
82:5f:5e:d5:b1:30:1f:ec:46:97:72:75:3c:2c:b8:c0:ef:57:
3c:b3:32:9a:26:a8:e8:1b:eb:9d:92:c8:d6:5e:29:98:f0:cf:
be:f8:1d:df:37:25:b5:92:7f:6c:b2:a6:b8:7f:a6:cb:c6:0b:
01:d3:66:ee:1b:67:e6:80:d0:22:9b:91:7c:9e:f3:a9:2a:9f:
73:0a:ae:a0:a0:36:d7:3b:29:54:7e:1a:b7:27:78:94:ad:7b:
fa:cb:11:d7:5e:7b:f5:5e:4b:68:97:8b:a8:86:9f:98:73:cf:
63:80:73:fd:f6:8e:ab:21:c6:df:0e:dd:c0:f6:4a:77:f0:52:
a5:54:e6:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org