Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YhTWpCI8kfr2bBZUXsSaZOJ8qxk.roa
File: YhTWpCI8kfr2bBZUXsSaZOJ8qxk.roa (raw, json)
Hash identifier: /aZygFQ8sZz9iKeJv9tcFIBhH/gXwyWw2wcyq8V9/+U=
Subject key identifier: 62:14:D6:A4:22:3C:91:FA:F6:6C:16:54:5E:C4:9A:64:E2:7C:AB:19
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B04
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YhTWpCI8kfr2bBZUXsSaZOJ8qxk.roa
Signing time: Sun 07 Feb 2021 13:04:36 +0000
ROA not before: Sun 07 Feb 2021 13:04:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131628
IP address blocks: 175.99.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2820 (0xb04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:04:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6214D6A4223C91FAF66C16545EC49A64E27CAB19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:88:4c:9f:36:f1:0d:40:dd:3f:af:bc:97:2c:
79:5a:e9:30:ee:69:7e:24:a2:8e:b0:4e:ab:4d:fe:
9f:6f:17:e5:16:70:ea:cd:42:fc:1e:8d:e9:57:83:
d7:48:c0:cc:19:1a:65:88:71:26:1c:fa:ec:dc:9c:
5e:d5:90:54:2c:d3:1e:52:21:bb:45:1b:dd:de:6c:
81:5c:fa:9e:71:08:ce:ca:69:a0:28:70:79:a1:50:
67:49:58:5f:fb:3d:26:c7:94:ad:35:01:21:9e:34:
dc:b4:f3:1b:65:e6:7f:c0:e6:73:d2:cf:ce:3a:56:
2f:fc:ff:d7:5b:5f:0f:f0:20:6c:e2:58:76:aa:a3:
4e:b4:04:a9:52:0d:66:69:88:06:a5:c0:db:1e:0d:
70:3d:3f:6e:50:4e:41:cc:1b:aa:5d:38:93:f8:6a:
ec:ae:45:d1:bf:de:0c:73:63:9f:69:00:61:6b:5c:
54:18:24:84:60:a7:9e:7b:22:34:61:fb:e4:3b:8e:
35:cb:40:c8:7e:69:68:15:c3:00:12:11:4f:b9:d9:
a5:52:f4:a5:6d:02:be:bf:5c:67:48:50:03:17:c7:
ee:a4:d1:d6:1d:8c:e4:4e:a0:d6:91:3d:4b:8a:91:
69:60:8f:bf:3d:54:57:66:e0:f1:54:0e:77:4b:a7:
9b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:14:D6:A4:22:3C:91:FA:F6:6C:16:54:5E:C4:9A:64:E2:7C:AB:19
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YhTWpCI8kfr2bBZUXsSaZOJ8qxk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.99.224.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:37:96:07:bc:61:ac:64:ef:88:9d:dc:87:2a:bd:84:ff:54:
b3:fb:f2:33:f2:ee:3b:ff:b6:0d:a8:de:2d:62:c3:9f:a5:29:
ab:39:91:15:a0:07:66:b4:a6:3b:98:af:52:b0:9b:ff:ff:1a:
e4:6a:f6:93:e5:80:18:11:c2:ca:ef:82:2c:a7:0e:43:33:1d:
81:83:1d:64:4a:04:43:72:ea:2c:68:57:d3:ed:27:75:22:2e:
14:cb:a4:85:10:35:83:dd:e6:69:6f:06:65:e6:df:6d:07:ff:
7e:29:b5:dc:95:c9:b1:aa:bf:f7:c9:c4:03:72:b6:81:e2:0f:
7d:56:45:a6:bd:27:91:e7:e1:5a:1b:74:3d:5c:a8:77:cd:58:
44:34:c5:b7:4f:20:c1:cf:99:b9:7e:32:9c:67:08:3e:ed:2b:
6c:24:d9:6a:7f:f7:6e:c5:fb:35:b1:95:8a:c0:c0:91:7f:eb:
e8:e4:6d:17:37:75:f3:6e:d9:b0:58:e4:a4:76:f8:34:74:9d:
9e:a1:d6:9e:3e:d8:2f:2f:20:e8:90:ec:9c:45:10:d5:3b:e6:
c9:19:dc:44:d5:7a:9e:b5:85:32:45:7b:82:ca:0a:4e:43:44:
9b:57:d9:d1:7e:e7:82:ed:46:6a:13:6f:77:28:46:80:6b:d2:
ae:e6:f6:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org