Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Wpwyzdt1LSLtg_I7-BLkZvGfdws.roa
File: Wpwyzdt1LSLtg_I7-BLkZvGfdws.roa (raw, json)
Hash identifier: mPwpxrTKho0k8kjU4TrsfrW4NecviiVY7ikQBLaEb9Y=
Subject key identifier: 5A:9C:32:CD:DB:75:2D:22:ED:83:F2:3B:F8:12:E4:66:F1:9F:77:0B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A72
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Wpwyzdt1LSLtg_I7-BLkZvGfdws.roa
Signing time: Sun 07 Feb 2021 11:36:17 +0000
ROA not before: Sun 07 Feb 2021 11:36:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 124.8.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2674 (0xa72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5A9C32CDDB752D22ED83F23BF812E466F19F770B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:84:76:dc:f9:af:92:bb:09:43:d1:60:c1:c1:
dc:fc:29:7d:0c:e1:23:5f:9d:19:95:26:22:52:dd:
3b:03:b7:e9:46:b3:f8:f9:44:9e:16:2b:88:52:6d:
97:ee:34:fe:17:eb:32:6d:d9:30:e3:28:f3:57:06:
95:74:d8:1b:a1:13:42:9d:b7:4d:f3:85:b1:de:bf:
2c:01:86:59:02:55:50:fb:40:12:06:39:a2:8c:63:
f2:61:06:c9:9b:91:d1:c6:2c:17:d7:d0:3b:18:e2:
6d:94:6b:ec:42:a7:3e:ab:ad:7c:42:62:a0:e7:2c:
58:64:11:de:30:85:c9:b4:20:d8:bc:18:ef:62:5d:
5f:de:be:3f:8a:bf:3c:c8:45:85:90:04:00:ef:49:
72:9f:22:3a:ad:47:28:2f:6f:de:b6:54:90:49:30:
6d:8a:00:41:36:c6:49:32:9b:ba:42:30:a1:1a:96:
0c:8d:08:56:a5:96:f1:a7:ab:6f:72:37:30:f2:45:
e5:46:1c:fa:5d:2b:60:74:a3:e4:f8:54:ae:4e:7b:
9d:2d:65:a4:2c:fa:84:ad:bf:5e:a8:c3:1c:c4:23:
7c:f3:b7:4e:1f:4c:95:44:13:2a:c9:61:97:e5:23:
3a:ae:d9:12:84:cb:11:00:63:a1:99:85:12:20:19:
80:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:9C:32:CD:DB:75:2D:22:ED:83:F2:3B:F8:12:E4:66:F1:9F:77:0B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Wpwyzdt1LSLtg_I7-BLkZvGfdws.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.8.0.0/14
Signature Algorithm: sha256WithRSAEncryption
4c:a3:ee:24:cb:ef:44:d5:0a:5e:fd:94:e2:30:d6:6f:8a:5d:
01:65:89:a4:67:3a:dc:18:67:ab:84:d6:09:52:df:74:95:f7:
ed:bb:3c:17:12:de:0d:4d:ef:5d:b3:a3:75:c3:f0:bc:c5:f9:
42:8a:63:55:35:22:cb:d5:10:cf:36:ee:4c:03:4e:c4:e9:52:
58:73:ff:7c:ab:19:7f:b1:fb:a6:e8:b6:61:25:5b:05:a1:b5:
a4:05:ba:a9:97:f5:78:e9:71:8c:17:f8:16:3d:9f:fb:73:c8:
44:52:1c:f4:7a:3c:ab:ca:02:67:3e:d4:fe:83:10:0a:d6:29:
61:af:8d:7a:f0:f3:c6:14:7e:34:01:5b:30:70:bd:32:c6:8f:
0b:eb:99:61:80:62:87:31:e6:0f:2c:32:c8:7a:e1:dd:b9:a4:
ec:7f:d2:f3:dc:3d:31:69:2f:ef:b8:3e:cd:45:9a:ac:c0:76:
bd:1f:36:66:c5:1e:37:8e:7b:8e:07:6e:16:aa:c9:a7:9d:2e:
49:f2:21:67:00:96:85:35:e8:45:8a:63:2c:92:f0:17:8a:fc:
3c:9a:26:35:5b:ac:d0:a2:36:01:7c:f1:ff:26:33:10:26:2e:
bf:a1:fa:8b:69:41:d8:14:50:23:33:a7:1a:02:20:c9:40:69:
b8:37:16:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:26 2025 by rpki-client