Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gROLZDnJZkakj19lXOsK943Th1k.roa
File: gROLZDnJZkakj19lXOsK943Th1k.roa (raw, json)
Hash identifier: +CJSK6TP9+gBuSeShcv5+9ZErLoSxvNwoglTkxDdDY0=
Subject key identifier: 81:13:8B:64:39:C9:66:46:A4:8F:5F:65:5C:EB:0A:F7:8D:D3:87:59
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CA2
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gROLZDnJZkakj19lXOsK943Th1k.roa
Signing time: Wed 29 Sep 2021 02:50:04 +0000
ROA not before: Wed 29 Sep 2021 02:50:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131634
IP address blocks: 124.108.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3234 (0xca2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=81138B6439C96646A48F5F655CEB0AF78DD38759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:70:20:9f:3e:55:70:ce:a0:75:8b:bb:a6:52:
ca:f9:71:3a:14:00:1f:10:cc:8f:fc:92:12:be:38:
72:a8:9d:ee:1b:f3:62:87:4b:61:58:d9:ee:26:7e:
b8:fe:e0:80:44:52:cd:1b:da:ce:ba:24:23:64:39:
fa:cc:b1:93:9c:24:60:b1:70:39:eb:06:65:ea:fe:
a8:33:9f:97:ae:57:1c:27:d0:3e:d8:cc:ff:07:ca:
db:0c:fc:2d:f8:4e:15:3a:e1:81:cc:00:88:c5:d8:
86:c0:8d:32:56:75:aa:ca:fa:5c:06:00:0d:ce:d7:
87:2d:4d:b8:77:28:53:46:ec:2d:16:35:a9:4f:22:
72:5f:d5:de:d0:db:3c:41:d5:66:e6:5c:dd:d4:44:
b8:8e:04:d9:d3:4b:66:43:d8:29:e0:66:0e:cf:62:
82:3d:61:41:b8:bb:7a:a1:c4:5f:79:0c:57:2d:d0:
58:ad:eb:d7:c7:5a:87:0f:b7:c5:2f:86:99:a8:22:
9d:ae:b1:78:e4:76:3e:9b:a4:c9:38:c0:79:8d:bc:
71:74:35:2c:bc:37:fe:88:92:63:90:60:e9:64:86:
9b:6e:15:94:43:5d:12:8a:98:e6:7b:aa:f8:5f:55:
c2:db:f3:91:27:65:e4:c2:ff:62:d3:7e:0c:55:d7:
cf:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:13:8B:64:39:C9:66:46:A4:8F:5F:65:5C:EB:0A:F7:8D:D3:87:59
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/gROLZDnJZkakj19lXOsK943Th1k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.172.0/22
Signature Algorithm: sha256WithRSAEncryption
66:3f:cf:4f:ee:0f:98:28:9b:d9:ed:85:7d:15:3b:79:02:82:
1f:3d:55:e9:e8:83:9f:8f:b6:96:f9:94:3f:8b:0e:5a:dc:cc:
0e:33:66:20:f2:5f:62:0e:ab:34:6a:44:3a:3f:43:ef:1f:c6:
74:44:7a:13:1e:e6:9c:ad:ea:de:3e:01:9d:be:4f:53:d1:5a:
17:02:ab:9c:96:89:21:5e:08:72:58:f2:50:ee:1b:b4:56:b8:
f1:93:bd:7b:01:21:f1:be:e6:b9:c1:0c:c4:de:19:96:f5:21:
d8:7c:a7:1c:9f:e9:f1:4e:63:47:3d:c7:f6:a1:95:6e:c8:c2:
21:66:33:f6:18:f0:79:1e:b5:88:48:c3:eb:12:22:a9:78:24:
d7:38:c1:70:d6:ff:c8:da:e0:f1:9d:9e:c7:df:ad:c4:7d:41:
dc:58:5d:0e:78:2a:70:bf:11:0e:63:b8:e4:9c:5a:b0:90:34:
39:02:c8:4a:a7:b2:d1:c9:9c:e5:d7:47:41:ab:66:7c:da:3e:
62:b0:dd:a8:55:37:4b:d5:80:f0:52:24:43:62:0d:9f:b6:d0:
22:32:cc:ec:65:6b:21:f4:a6:58:ba:62:e8:56:fa:48:bb:64:
79:50:48:66:80:47:c1:7c:21:a3:7b:e0:00:47:d2:63:57:78:
97:e2:db:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org