Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/X6biPKxm9FW3EFJwiyqN66k8aQg.roa
File: X6biPKxm9FW3EFJwiyqN66k8aQg.roa (raw, json)
Hash identifier: TH5dN0mHnqv4v1EcAeEmtS+Bne54GZFukaxNEciESqY=
Subject key identifier: 5F:A6:E2:3C:AC:66:F4:55:B7:10:52:70:8B:2A:8D:EB:A9:3C:69:08
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C9D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/X6biPKxm9FW3EFJwiyqN66k8aQg.roa
Signing time: Wed 29 Sep 2021 02:50:03 +0000
ROA not before: Wed 29 Sep 2021 02:50:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131634
IP address blocks: 124.108.140.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3229 (0xc9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5FA6E23CAC66F455B71052708B2A8DEBA93C6908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:19:b1:1d:14:98:4a:1e:b9:23:56:31:cc:a7:
c7:59:00:dc:03:35:00:1b:2d:6c:4f:93:ea:28:ed:
ab:30:ae:62:75:09:cb:ad:16:27:a0:08:fb:f8:a2:
49:d7:fe:69:5c:93:38:b1:bf:a0:43:70:dc:8d:b2:
60:94:90:23:11:8f:53:ca:8d:1c:3b:49:c2:04:e1:
6f:0d:0c:8e:46:b6:21:8f:80:87:b6:8b:bb:a7:f4:
c8:5e:b9:97:37:df:fc:b0:9d:28:62:00:eb:ae:08:
16:1e:32:34:69:77:ec:ad:23:b4:a9:ed:6f:a6:3b:
b7:23:9b:08:d0:53:ee:3d:79:5f:88:ec:60:02:44:
26:bc:44:1e:ae:2e:15:92:f7:48:0d:4c:12:1b:81:
98:bb:05:ab:60:b2:b4:79:7a:42:1f:d7:17:3a:0a:
06:38:22:0e:36:6c:0d:a9:35:3e:5e:78:7a:1f:5c:
cd:5c:ca:e1:bd:63:fa:e1:bd:fe:24:b3:d0:6b:f6:
ba:fc:90:98:a2:9a:39:21:a1:b6:73:80:31:3e:4b:
b2:61:7c:44:1a:ba:00:3f:b8:fb:1e:68:ca:04:6e:
c8:3e:e5:60:9b:0b:ac:d2:a7:93:f6:3a:39:62:79:
99:a8:7f:1e:75:48:2d:ec:39:1f:e6:ad:09:b9:1b:
c4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A6:E2:3C:AC:66:F4:55:B7:10:52:70:8B:2A:8D:EB:A9:3C:69:08
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/X6biPKxm9FW3EFJwiyqN66k8aQg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.140.0/23
Signature Algorithm: sha256WithRSAEncryption
99:da:7a:ed:38:cd:f0:b6:04:16:50:4b:03:2f:bf:23:93:74:
d6:b8:c1:99:fb:db:31:d1:5d:8c:66:1b:1b:e1:6e:71:46:28:
64:a0:df:47:ef:d9:1f:d9:99:25:b4:ab:f1:f2:f5:92:17:e9:
2a:25:53:97:2e:42:86:fb:6e:72:bd:9c:d0:1e:21:04:0f:e5:
6c:55:08:20:a0:0d:d6:a8:44:35:7a:37:8a:c5:91:a6:f2:ac:
d7:e8:b7:00:c3:b9:ab:e0:63:0d:74:33:a7:b4:fe:7c:7b:16:
8f:dd:b2:7b:53:91:72:9e:09:97:36:57:65:14:89:c0:4c:a0:
40:4b:32:a7:f3:1f:2f:aa:85:f7:30:07:85:38:f2:34:1e:f6:
b1:ca:d4:31:38:87:73:f0:fb:68:e4:d0:a7:5d:ea:85:32:5e:
31:4e:cf:26:d1:1e:56:3e:53:ba:a8:d3:7a:c6:d9:a4:1f:e5:
d8:b4:24:26:1e:39:e8:a9:80:d0:54:8c:6a:a6:31:7f:99:d1:
1f:37:60:be:be:d7:24:2c:2c:35:72:6f:48:cb:e5:f4:67:8a:
66:26:ff:cb:39:40:38:58:65:bc:f1:61:db:1f:7b:26:28:43:
0d:4f:0e:cb:00:9a:95:57:fa:d6:dd:27:4e:cd:ba:43:e5:e0:
84:bb:67:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org