Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jCUlrPLgus8dOVb9tuyymeCUWO0.roa
File: jCUlrPLgus8dOVb9tuyymeCUWO0.roa (raw, json)
Hash identifier: dHaHHbcfOvzvDKFEJmqmyjkXeXRKXLecDkG9PThFGRY=
Subject key identifier: 8C:25:25:AC:F2:E0:BA:CF:1D:39:56:FD:B6:EC:B2:99:E0:94:58:ED
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jCUlrPLgus8dOVb9tuyymeCUWO0.roa
Signing time: Thu 15 Sep 2022 02:47:01 +0000
ROA not before: Thu 15 Sep 2022 02:47:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131634
IP address blocks: 124.108.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8C2525ACF2E0BACF1D3956FDB6ECB299E09458ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cb:a5:33:e3:a8:60:51:7d:94:b7:db:b5:27:
8f:c9:07:33:38:0a:b5:98:8c:07:75:dc:4c:ba:2c:
e4:26:f8:0f:a3:80:ee:fc:41:97:38:3a:5d:f5:0c:
3f:61:58:06:4b:f0:4a:c8:88:90:3d:e1:6c:58:99:
5e:b1:7a:a2:ff:b1:c0:ea:71:05:97:23:b8:3b:6b:
7a:0e:fa:ac:1d:da:9b:0c:1b:a4:ec:9c:a6:02:7d:
fc:0c:6b:b8:ca:11:fa:4b:51:37:56:55:1e:d0:07:
37:fd:94:0b:69:d3:6d:9b:55:dc:9b:76:4b:1c:b4:
dc:00:4c:84:93:c4:d3:12:fa:15:ef:89:25:ee:94:
7b:57:40:81:e3:02:e7:1b:80:28:19:5d:bd:e4:c8:
11:f3:e6:91:b2:ee:e1:de:d5:79:64:bb:b8:36:e9:
44:bd:95:22:00:69:e9:9a:55:b1:f9:83:6d:33:1c:
32:25:55:9b:47:84:4a:bc:db:ca:e4:ca:f6:6b:95:
b0:f1:26:d0:f2:13:ac:b0:5e:61:38:7d:79:c8:54:
8d:23:f3:64:27:ef:d2:81:62:4b:e3:91:41:67:a0:
d1:f0:b2:09:58:7e:76:ea:1e:b6:d4:a9:94:8c:c5:
2b:f8:0b:fd:c4:f0:7f:a4:0e:23:0a:7d:8b:44:14:
2f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:25:25:AC:F2:E0:BA:CF:1D:39:56:FD:B6:EC:B2:99:E0:94:58:ED
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jCUlrPLgus8dOVb9tuyymeCUWO0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.149.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:fa:df:5e:07:94:8d:9d:7b:e3:02:99:4f:5b:c8:72:55:62:
85:a2:94:1d:f4:18:ef:92:14:8a:9d:81:d3:63:41:da:d0:a1:
78:26:48:89:ff:e0:8f:60:8e:7b:3a:ac:36:9f:d4:36:f1:b6:
46:e5:3f:ae:66:37:67:dd:86:b6:fb:87:95:ed:b6:6b:22:a9:
7c:21:12:43:ea:4c:0e:19:c2:ba:6a:1e:ba:c9:54:b2:02:72:
e1:96:9a:06:ca:f3:59:e0:da:70:6e:d7:ea:97:e4:17:67:bd:
3a:dd:b9:cc:2c:47:41:15:93:35:ff:d0:9f:70:71:40:64:bc:
b6:e9:4c:b7:83:13:18:c2:8d:05:a9:13:83:2a:35:40:97:9b:
09:f4:91:c3:d3:b8:b1:0a:0f:d2:50:f1:a2:c4:6d:53:c7:8b:
8a:6d:9a:fc:91:52:77:4f:25:89:eb:b2:f3:52:50:b2:e2:49:
43:6a:12:fe:98:4c:81:3a:02:17:f9:86:2f:6c:d8:3b:c6:cd:
03:92:52:f8:64:af:59:78:03:5c:77:cb:26:f5:f8:39:c0:06:
ec:42:d5:89:9b:84:50:4e:9e:d9:91:f4:d5:e0:c4:82:12:81:
12:e6:e8:6e:d9:2c:be:e8:70:b0:4d:04:a2:a1:9b:76:50:2a:
85:00:2b:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org