Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WkkrTwaqgrI8HMPcoL2P9AkVeHA.roa
File: WkkrTwaqgrI8HMPcoL2P9AkVeHA.roa (raw, json)
Hash identifier: dX5jG9iStFRXheqCwljnkWrgAst5Qh6UwtmJBb+43/g=
Subject key identifier: 5A:49:2B:4F:06:AA:82:B2:3C:1C:C3:DC:A0:BD:8F:F4:09:15:78:70
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CBF
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WkkrTwaqgrI8HMPcoL2P9AkVeHA.roa
Signing time: Wed 29 Sep 2021 02:50:13 +0000
ROA not before: Wed 29 Sep 2021 02:50:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131628
IP address blocks: 175.99.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3263 (0xcbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5A492B4F06AA82B23C1CC3DCA0BD8FF409157870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:07:f2:f7:8f:45:70:54:56:0f:2f:bd:04:cd:
81:19:64:fe:8d:61:a3:bd:0a:58:3a:b2:a4:27:09:
28:8f:42:b5:ad:b0:27:14:34:f7:41:6c:c1:21:52:
7f:73:67:79:9d:c3:16:8c:ff:e3:f3:16:18:90:08:
c9:9a:9a:16:6c:97:6d:0b:d6:e1:19:e3:df:88:cd:
3c:10:95:12:63:08:99:63:f0:17:8c:63:67:5b:f7:
f5:2b:67:e3:0b:07:05:6b:15:79:e3:5e:2c:6c:cf:
5a:27:5c:34:e7:8e:bc:65:13:7c:7f:a0:aa:c8:7f:
83:d4:4c:27:51:f0:82:58:22:e6:45:a4:03:df:b6:
9c:10:39:88:e1:b9:95:cf:27:df:95:0f:d8:05:37:
ac:91:44:e4:af:2f:58:74:0c:e3:3d:89:78:73:51:
17:07:75:30:dd:fe:57:14:d1:24:18:8b:63:14:88:
95:26:0b:15:21:6d:3e:96:06:95:05:1d:e3:cf:3e:
51:db:fe:ee:d4:08:49:43:bd:83:27:08:2d:ff:84:
6b:3f:74:c2:67:a6:43:ff:97:63:e6:ab:3d:ee:2d:
64:a5:a6:7d:9c:02:61:1b:1a:ab:99:5b:25:e2:3a:
0c:2d:82:a9:e2:b3:98:79:70:c1:92:a2:68:32:8c:
ce:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:49:2B:4F:06:AA:82:B2:3C:1C:C3:DC:A0:BD:8F:F4:09:15:78:70
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WkkrTwaqgrI8HMPcoL2P9AkVeHA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.99.226.0/24
Signature Algorithm: sha256WithRSAEncryption
32:21:59:9e:e8:74:ee:d0:32:91:64:bd:5c:62:e1:e5:39:01:
4d:82:13:57:1f:18:cc:6d:0f:a6:34:0b:e8:32:94:6c:63:c9:
cc:85:43:37:5e:42:7d:c6:63:36:61:69:88:3c:ad:89:96:0d:
77:9e:bc:b4:77:3c:f5:2f:d9:82:bb:a9:52:e2:65:04:6c:5f:
29:82:97:4c:ca:09:31:11:6a:a6:6d:6f:32:64:b2:ef:fc:28:
0a:41:8f:17:7e:00:4c:10:1e:66:87:b6:fd:4f:61:d9:74:03:
d2:84:6d:cb:c2:4a:05:02:82:16:4d:a9:b8:54:e6:38:6f:75:
ba:a4:a1:23:2c:6a:02:35:53:5d:50:55:80:93:c3:42:41:c5:
c2:ad:48:c2:aa:24:f2:d2:39:aa:8e:d5:02:f4:43:b6:f5:38:
47:23:c4:16:32:e0:99:90:45:9b:5b:85:1c:91:9a:a4:ab:35:
51:91:14:10:ac:b3:86:7b:ab:a4:cc:b9:61:ce:57:b3:7c:7a:
21:6d:ad:9b:22:90:45:ac:4f:22:ef:ef:fb:e3:a0:b0:c3:76:
39:42:8a:b9:a7:f6:92:fa:db:66:a6:e5:8a:5e:1b:0a:ff:0b:
49:9a:2f:9d:1f:7f:21:05:97:96:79:c5:53:47:28:07:90:0f:
a9:61:6c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org