Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Yt3mPWgeWpaL7pf2CZhXnBO9S8c.roa
File: Yt3mPWgeWpaL7pf2CZhXnBO9S8c.roa (raw, json)
Hash identifier: rF9Q7/KTF1LP4ZM2wAqn87eyVTJa18jBKRneys4ih4k=
Subject key identifier: 62:DD:E6:3D:68:1E:5A:96:8B:EE:97:F6:09:98:57:9C:13:BD:4B:C7
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A78
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Yt3mPWgeWpaL7pf2CZhXnBO9S8c.roa
Signing time: Sun 07 Feb 2021 11:36:21 +0000
ROA not before: Sun 07 Feb 2021 11:36:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 175.96.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2680 (0xa78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:21 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=62DDE63D681E5A968BEE97F60998579C13BD4BC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c8:5b:d8:8a:af:f8:af:f0:b8:b5:4c:4c:95:
17:66:4a:f2:9a:4f:4a:3f:a0:58:11:c2:81:43:9c:
da:c7:9f:9d:a6:6a:78:6d:6e:06:fa:e3:1d:e7:5a:
2b:f2:dd:2b:7e:3f:79:1c:51:5d:bf:6e:e9:97:36:
3f:d0:32:a1:d6:27:60:cc:81:7e:0a:cb:cf:2e:68:
1c:58:70:eb:16:23:ab:34:fa:fa:ec:e5:a0:1f:09:
8b:23:12:35:c1:7b:6d:b8:e5:08:0c:47:f3:1d:e0:
b1:e5:d0:a4:73:3c:5d:60:a8:27:94:d7:63:ef:f4:
e5:19:36:31:1b:dc:1c:19:3c:60:97:c1:00:23:0a:
e2:df:97:72:0a:e9:27:d8:45:7b:87:77:a6:6b:cd:
dc:52:dc:78:6d:1b:a9:89:e4:9a:1e:80:0f:5c:e0:
75:9c:fe:b0:b0:db:36:c0:c6:f4:54:57:89:6f:49:
4b:fc:2a:7a:da:40:ed:6f:be:cc:92:68:ae:ea:dd:
27:31:56:33:b1:e7:34:e1:b7:04:24:16:05:9a:00:
fc:cc:81:6b:26:f2:35:cb:a8:6f:6b:96:62:1d:d4:
cb:49:cc:01:87:2d:b4:1c:98:64:9c:60:d1:21:4e:
ab:b3:56:2c:b3:a9:cc:e4:68:5b:34:b9:de:35:5d:
e8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DD:E6:3D:68:1E:5A:96:8B:EE:97:F6:09:98:57:9C:13:BD:4B:C7
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Yt3mPWgeWpaL7pf2CZhXnBO9S8c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.96.0.0/14
Signature Algorithm: sha256WithRSAEncryption
14:a6:7d:a8:e7:94:e2:3d:ca:07:1e:55:57:bf:b3:b1:70:1f:
69:8c:a6:93:86:f8:69:1f:aa:aa:95:18:5b:b9:9d:01:dc:72:
88:de:e4:fb:0e:6c:c7:d9:c3:a1:43:09:31:f9:ce:64:0f:b5:
15:70:31:af:ec:3b:8b:6f:9b:38:df:0e:8e:46:a4:26:29:f8:
61:04:41:e6:01:0d:6c:e6:50:6e:5a:42:fc:92:01:55:95:97:
05:b2:8b:a3:c4:68:e8:16:60:d2:13:2d:c8:16:18:fe:8e:10:
5d:39:1b:64:6c:88:dd:be:9d:c8:b0:d9:c8:84:12:66:ad:95:
0f:1c:10:52:e5:60:4e:fa:08:43:8e:ad:db:e5:1c:57:ff:e7:
8d:8f:55:d7:42:55:89:72:7c:9e:4b:88:64:c3:37:d7:8a:27:
fd:39:4e:9f:33:0b:65:e0:79:1b:8d:36:90:72:b2:6f:fe:41:
fb:3d:07:8d:1d:9f:bf:54:1b:bb:59:d0:43:a3:ea:c6:7c:1e:
46:54:83:e2:b0:78:1f:b1:44:94:53:0b:83:f1:72:20:d3:0e:
97:1e:ce:9a:a1:3f:4c:5e:d1:f7:66:a5:dc:f5:e1:05:2e:e3:
69:38:94:14:51:99:7a:79:13:fc:4b:05:46:5b:a3:19:1b:4d:
ce:a0:0e:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:31 2025 by rpki-client