Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/k_3TuidME6gypj9MSiyAAwKdJ-8.roa
File: k_3TuidME6gypj9MSiyAAwKdJ-8.roa (raw, json)
Hash identifier: g9j7hAPAyRnla11bKIbBM/5ptuoDMvHHD9FAilKzccM=
Subject key identifier: 93:FD:D3:BA:27:4C:13:A8:32:A6:3F:4C:4A:2C:80:03:02:9D:27:EF
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CD0
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/k_3TuidME6gypj9MSiyAAwKdJ-8.roa
Signing time: Thu 30 Sep 2021 12:51:04 +0000
ROA not before: Thu 30 Sep 2021 12:51:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 103.224.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3280 (0xcd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 30 12:51:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=93FDD3BA274C13A832A63F4C4A2C8003029D27EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:80:0e:ea:7a:5f:fc:7c:05:fe:a9:59:f1:88:
51:9f:0a:dd:45:a3:9e:38:37:97:cb:24:91:9f:63:
ce:ab:e9:2f:6d:78:bb:3b:75:72:92:d0:22:bd:64:
aa:39:5f:55:77:a2:d5:2d:11:0a:ed:86:38:c8:67:
8c:81:36:a3:97:c8:1c:d4:b4:45:03:5f:ad:5d:5d:
27:38:9f:84:f3:da:90:45:ec:90:6e:1d:2d:95:a8:
fe:b4:37:16:81:38:74:b1:c3:cf:e2:66:60:cf:6a:
c4:0a:24:4a:00:10:b6:ab:d0:85:ad:12:94:bd:f9:
7a:3f:ae:36:0f:8b:2a:6f:f3:9a:9f:df:71:fc:0b:
a0:05:8b:ad:63:9e:7c:52:f0:1a:17:0b:ec:63:6f:
d2:31:b6:84:c4:bd:0c:ec:61:4a:b4:56:77:58:ed:
5c:75:af:15:36:e5:7f:d0:31:6f:46:44:1a:35:f7:
6b:80:f8:48:61:fd:fb:0c:2e:fb:e8:16:b7:8c:0e:
08:17:0f:e2:74:6c:be:9f:70:56:e2:9f:86:a5:aa:
5b:19:c1:13:50:13:b5:e4:d3:c9:34:e8:60:c1:cb:
bd:dd:8a:c9:96:ba:d5:e2:24:79:ac:3f:55:97:42:
34:68:d8:c4:c9:cc:af:87:a2:01:92:d8:a3:2a:a7:
d9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:FD:D3:BA:27:4C:13:A8:32:A6:3F:4C:4A:2C:80:03:02:9D:27:EF
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/k_3TuidME6gypj9MSiyAAwKdJ-8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.132.0/22
Signature Algorithm: sha256WithRSAEncryption
89:26:b8:e8:3a:32:3f:97:a9:9b:57:34:47:f8:21:1d:a9:15:
4b:c3:06:37:c8:2a:a2:47:93:6b:9f:49:4d:7a:7b:2c:a8:b6:
0b:8a:33:ea:aa:d6:6b:b3:03:cd:db:20:17:fb:8e:4c:07:a0:
36:70:24:d8:5d:a5:15:57:16:0a:b2:9f:79:60:0d:48:7a:26:
e1:ce:6f:7b:75:13:ec:6b:a7:21:1a:76:33:90:7d:b0:d2:50:
b4:12:99:99:1b:b4:eb:2c:2b:2f:14:cb:41:c0:8c:12:b4:12:
6e:7c:4a:13:d3:0b:c6:f3:45:04:51:49:b5:70:7c:87:ea:35:
50:0f:14:52:0d:0f:ef:77:66:31:a3:26:73:b3:a8:54:93:ac:
d6:9e:4e:44:97:b2:c9:b8:9f:6d:3d:6d:f0:5b:44:e6:0c:e8:
37:90:5f:03:2b:e5:ba:37:ac:25:e3:b0:4d:5a:1d:88:45:22:
73:91:45:6e:c1:8c:6a:24:f9:8b:80:46:a3:69:7a:6e:2a:11:
b5:8a:34:48:64:a9:98:bb:f9:51:5d:16:fe:3b:99:ba:99:2e:
fc:93:c1:31:2c:91:cd:06:6f:ae:d5:bb:c1:ac:8c:20:8a:12:
da:ed:c9:ce:ea:7d:31:3d:a8:57:ca:10:70:72:58:52:19:5a:
c7:2e:fb:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:10:36 2025 by rpki-client