Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZzmR8skKI-GSgcxSoQ4gIUnjvSA.roa
File: ZzmR8skKI-GSgcxSoQ4gIUnjvSA.roa (raw, json)
Hash identifier: gDkNTnw1Oitr8ikqaYkSJNfo5deRebxrfiqSbh83mzg=
Subject key identifier: 67:39:91:F2:C9:0A:23:E1:92:81:CC:52:A1:0E:20:21:49:E3:BD:20
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C7A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZzmR8skKI-GSgcxSoQ4gIUnjvSA.roa
Signing time: Wed 29 Sep 2021 02:49:53 +0000
ROA not before: Wed 29 Sep 2021 02:49:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24158
IP address blocks: 175.96.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3194 (0xc7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=673991F2C90A23E19281CC52A10E202149E3BD20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:24:be:50:1c:ab:49:c8:2a:22:fe:2a:07:84:
6f:92:b4:f1:b6:6e:64:36:e0:f2:de:22:40:4b:6e:
40:05:b3:34:8e:49:22:17:c4:f2:0d:cd:42:14:53:
2f:85:9c:d7:0a:58:1a:5e:1b:e0:f5:4f:e2:de:57:
1e:f9:7d:da:09:1e:9b:ad:0d:a2:85:7b:99:c5:10:
8c:68:c3:9e:dd:8b:97:39:82:bd:00:79:8b:1b:93:
8e:ab:b4:60:9e:9b:f2:f3:90:14:dc:5d:ca:31:e3:
45:cb:64:93:c0:a6:c4:81:ae:16:db:b2:93:a4:cd:
9a:61:f7:c5:59:4d:9f:41:ac:9f:a0:2c:05:b1:c8:
8b:5f:d1:70:f4:7c:43:7d:29:a0:92:45:17:9e:02:
6c:8f:72:57:6b:cc:b6:00:62:09:59:d5:c8:7d:82:
f8:b6:bf:7e:f9:40:2b:28:86:51:ce:30:89:30:c2:
d0:90:4d:54:b2:0d:7d:68:76:83:a2:a7:4c:7c:4f:
fa:8d:37:7d:e8:99:6f:b2:57:c9:b2:5f:8b:6c:9f:
50:fb:1c:4d:ff:00:e7:6e:26:10:98:20:a5:24:0d:
2e:c9:e6:e1:b9:e6:22:85:71:74:93:b2:e0:f3:e8:
10:c9:ac:e1:54:be:d1:73:60:1f:37:ba:86:a9:e6:
68:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:39:91:F2:C9:0A:23:E1:92:81:CC:52:A1:0E:20:21:49:E3:BD:20
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ZzmR8skKI-GSgcxSoQ4gIUnjvSA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.96.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6e:e0:2d:3a:aa:47:11:06:37:9d:f1:b5:42:f0:de:80:35:30:
6a:98:a8:c0:40:3a:5b:28:82:4a:83:e5:a5:b2:d9:3f:82:41:
15:cc:6f:9f:b6:41:fd:4b:0b:d2:db:7c:af:24:55:24:74:fa:
39:76:b5:63:c5:06:d1:b5:af:e9:e7:2b:e2:f3:04:0d:35:6f:
1f:2c:07:9d:ba:bc:69:70:cb:e9:9a:f8:76:ab:8b:c9:71:66:
dd:6b:8f:b1:17:5d:cd:06:6a:4f:f2:4f:e0:e7:50:82:b5:e0:
a1:5b:03:be:26:c5:c1:04:7e:25:5f:f7:34:2c:e9:11:02:8a:
0f:76:79:24:2b:4b:80:c5:f9:06:fd:a8:bb:b1:e6:4c:46:c3:
37:5e:12:60:00:16:2a:28:e1:02:f5:97:da:1e:e9:33:81:97:
ca:e8:a1:b6:7b:b1:43:4c:33:27:13:eb:87:01:d0:b7:14:64:
95:34:e1:4b:43:15:95:54:99:2f:86:49:eb:13:db:b8:df:f2:
25:9e:17:b2:78:ff:ee:57:dd:fd:4f:b0:64:0f:47:46:47:81:
d2:41:0d:27:4a:59:15:82:0f:84:92:f5:fb:b8:e4:46:f6:fa:
fb:4b:f2:a3:7b:67:b5:76:33:69:e1:9a:c9:e1:77:2e:21:07:
61:85:75:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org