Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Xz3kdP6X4CtbTPCD1sN-cC21B9Q.roa
File: Xz3kdP6X4CtbTPCD1sN-cC21B9Q.roa (raw, json)
Hash identifier: DqJOd9ayxEGD1qbnYg0gX+rZbb9M3h9P0sTbLeYrhqI=
Subject key identifier: 5F:3D:E4:74:FE:97:E0:2B:5B:4C:F0:83:D6:C3:7E:70:2D:B5:07:D4
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C4F
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Xz3kdP6X4CtbTPCD1sN-cC21B9Q.roa
Signing time: Wed 29 Sep 2021 02:49:39 +0000
ROA not before: Wed 29 Sep 2021 02:49:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 124.108.128.0/18 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3151 (0xc4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5F3DE474FE97E02B5B4CF083D6C37E702DB507D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f6:11:61:0d:a5:f1:6c:2a:25:73:f1:05:73:
83:53:21:81:2e:1d:87:c8:4d:8c:1d:32:bc:ae:74:
54:61:ff:9a:e5:c2:55:ef:0f:f9:c1:85:65:c2:f3:
00:7f:b8:b1:5f:a3:18:c8:ba:69:1c:9f:54:d1:90:
05:55:53:c6:72:3e:1e:d1:23:3b:fe:21:4a:3d:7f:
f7:5d:b5:bf:5a:58:3e:ee:8c:35:58:86:83:15:15:
33:5b:4f:59:76:e8:08:02:d9:c9:c6:66:c3:28:27:
38:03:4a:df:45:ca:bd:18:a1:5e:05:c0:69:f6:cc:
f2:7d:8f:d6:fb:4f:ec:c6:f2:66:e9:fa:4e:51:9c:
25:40:1d:b9:9b:67:e1:30:e2:d7:6a:5b:4f:46:fd:
82:81:21:e3:a2:d2:dd:68:c4:f5:85:eb:ad:88:5a:
2e:b8:e6:24:9c:7f:8b:c0:17:2c:0c:fd:40:a8:fa:
6c:9d:e8:28:e6:f9:3e:53:c5:5e:2e:c2:27:b4:45:
8c:96:e6:74:39:bf:82:fe:7b:8a:b9:66:1e:36:5b:
eb:fc:fb:6c:70:5c:b2:cd:64:80:f5:3a:97:23:71:
14:0b:27:23:bc:b2:2d:39:31:ed:43:e1:b7:c0:71:
85:4b:0d:e8:25:f4:b6:cf:b5:c0:26:1d:85:0f:f2:
47:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:3D:E4:74:FE:97:E0:2B:5B:4C:F0:83:D6:C3:7E:70:2D:B5:07:D4
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Xz3kdP6X4CtbTPCD1sN-cC21B9Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.128.0/18
Signature Algorithm: sha256WithRSAEncryption
2d:2c:fd:85:92:7c:fa:57:d1:88:dd:6b:58:4e:17:33:bd:45:
36:c8:3c:7d:42:d4:60:be:3b:94:c1:5c:8c:7a:87:65:57:ad:
cf:84:96:34:e6:e3:f7:01:55:38:1e:d8:2d:0c:b7:3a:a8:f9:
c4:6a:cd:6f:39:59:b9:02:c7:73:4c:e0:f3:ae:04:bd:ba:38:
d9:d4:91:10:84:5e:7d:a4:db:4f:9c:e4:6e:fe:ea:ba:6d:03:
43:83:57:63:3f:95:53:87:b5:7a:dc:58:a6:c4:1f:82:93:47:
ac:11:86:28:20:5a:3f:97:00:e6:c6:bb:f0:c8:e3:ea:49:a8:
ff:94:16:b0:45:67:c7:fe:0c:7d:bc:6c:b3:11:57:c6:f8:1f:
4a:63:68:25:6f:44:d0:a2:2e:88:10:f5:e9:bf:1a:5f:cd:8e:
d5:0c:45:94:71:ed:eb:46:a9:48:17:9a:ce:b7:35:9c:b6:6c:
c5:57:a9:4e:a0:bc:88:f2:8f:2d:37:50:cd:e4:67:56:5b:f6:
c8:d2:7f:b7:a2:ab:e0:95:2e:67:46:7e:47:19:a2:4d:45:42:
b3:20:d0:47:cc:02:47:89:cc:a8:cf:b8:05:7b:db:4a:f0:ce:
23:b6:b7:78:c3:0a:9f:d4:93:cd:e7:06:ac:c3:84:76:30:82:
b2:3e:77:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:41:46 2025 by rpki-client