Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/S7i_wdUEnWqgewanI1QD58DC9lo.roa
File: S7i_wdUEnWqgewanI1QD58DC9lo.roa (raw, json)
Hash identifier: 2OVrRvuAgzwyJSCaQQjJJss5tGA0Ew8bBqKpl3SUHus=
Subject key identifier: 4B:B8:BF:C1:D5:04:9D:6A:A0:7B:06:A7:23:54:03:E7:C0:C2:F6:5A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/S7i_wdUEnWqgewanI1QD58DC9lo.roa
Signing time: Thu 15 Sep 2022 02:47:28 +0000
ROA not before: Thu 15 Sep 2022 02:47:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131634
IP address blocks: 124.108.152.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4BB8BFC1D5049D6AA07B06A7235403E7C0C2F65A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:25:ca:31:31:b9:56:cc:32:d3:d6:51:5f:82:
72:7a:42:6c:63:aa:b5:8f:2a:49:33:4f:ff:b1:84:
29:71:56:e5:e5:ae:51:cc:18:37:61:4d:a6:ff:f3:
12:6b:81:c1:f6:49:aa:63:13:a5:91:01:ed:ab:ce:
d2:87:9c:00:9a:35:af:84:21:3a:81:66:9f:a2:d2:
32:b2:00:20:8d:e8:2e:5b:72:6c:b6:8b:23:55:49:
6f:db:56:2c:bb:cd:30:34:12:45:8c:2b:67:0b:38:
c1:a9:ec:01:b0:28:68:cb:2b:53:5c:7e:b9:5f:7c:
e4:e3:93:95:02:ce:2b:17:96:d7:7b:e3:d8:c0:55:
62:fa:6f:c1:f4:f6:32:c9:f4:50:c7:5e:05:2d:6d:
19:d9:2f:4a:c5:50:62:e1:78:e2:90:2d:a2:4f:85:
35:f5:44:45:c7:67:24:69:24:b8:f0:57:81:95:e2:
e5:6f:ff:a9:8d:5f:b2:f5:70:e4:43:90:20:c2:b7:
55:72:10:64:53:f7:44:e6:b5:df:99:c9:7c:ba:b4:
90:f9:04:e0:38:a1:4f:96:b8:1a:1c:66:68:e7:dc:
5a:bc:67:79:bc:24:fa:7f:7c:de:6b:02:37:25:bb:
0f:4a:36:24:31:b4:19:bc:6a:94:72:f0:12:04:03:
3c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B8:BF:C1:D5:04:9D:6A:A0:7B:06:A7:23:54:03:E7:C0:C2:F6:5A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/S7i_wdUEnWqgewanI1QD58DC9lo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.152.0/21
Signature Algorithm: sha256WithRSAEncryption
0b:14:42:5d:21:6e:5b:95:1c:31:78:a6:09:0c:e7:e8:d1:1f:
c6:7d:2c:3b:c3:c6:a7:9b:ea:75:4a:0c:dd:b5:c9:ab:e8:55:
10:22:39:2c:06:42:d6:4d:e4:14:47:26:e8:19:d7:c8:71:25:
fa:5b:8d:3e:09:71:da:0d:d3:45:44:e6:52:0c:94:29:05:a8:
41:4e:3d:6e:80:fd:b5:75:df:61:e0:f0:0b:2f:83:87:1b:cc:
da:84:59:a7:9a:35:a0:09:b1:e2:3e:3d:00:5d:54:e3:46:8f:
ea:b3:02:76:7d:68:fa:05:d9:50:52:61:e2:8c:cd:6b:ff:6d:
64:83:4a:a8:7a:a8:cd:2c:d3:30:c4:d0:68:70:d3:dc:30:0d:
dd:11:0e:cd:ce:55:67:68:db:ad:fe:7e:7a:82:16:28:0b:44:
73:00:1c:24:c0:9e:a5:e1:69:d8:53:e5:79:a3:98:04:4c:c7:
fe:1e:f9:fd:63:e9:ae:bf:ae:54:58:86:f7:92:8c:65:9c:eb:
47:5d:a3:eb:e1:e1:6d:9d:bd:34:cc:1b:e8:74:38:d1:20:f3:
83:ec:4b:0f:f1:41:e9:38:61:59:3c:17:a6:e1:ca:e7:41:8f:
77:96:87:94:12:99:3e:32:a6:a1:db:91:dc:df:16:d2:54:3f:
66:8e:49:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:08 2025 by rpki-client