Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/m4qA0zwnmLxTu46cgENQBgqTAjQ.roa
File: m4qA0zwnmLxTu46cgENQBgqTAjQ.roa (raw, json)
Hash identifier: WdyR4gE+Cqk1y965pT/svaPawM8SWofmWwePLf5cg/0=
Subject key identifier: 9B:8A:80:D3:3C:27:98:BC:53:BB:8E:9C:80:43:50:06:0A:93:02:34
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B06
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/m4qA0zwnmLxTu46cgENQBgqTAjQ.roa
Signing time: Sun 07 Feb 2021 13:04:38 +0000
ROA not before: Sun 07 Feb 2021 13:04:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131628
IP address blocks: 175.99.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2822 (0xb06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:04:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9B8A80D33C2798BC53BB8E9C804350060A930234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:cc:61:b6:00:08:82:ce:47:05:26:fe:33:cd:
ae:d8:6d:0b:e8:9b:5d:6d:d5:1b:25:fd:9c:40:24:
a0:3f:ad:b9:8a:74:29:ef:f2:8f:c8:55:62:e9:d1:
c7:1c:38:6b:9f:54:a9:49:a6:a7:22:69:32:0b:d3:
ac:6e:a1:86:e6:7b:7a:61:f2:21:bc:ef:7c:56:1d:
58:18:b8:30:37:c3:43:42:d5:1c:de:06:99:17:04:
60:24:af:b0:ab:4a:e8:d1:b8:6a:a0:97:a4:91:42:
ae:9d:c3:83:03:ac:42:c3:a9:d6:63:0e:b3:64:6f:
c4:3c:e8:a5:0a:10:f5:f0:bd:7c:09:11:72:4f:62:
c2:b8:2a:de:50:e0:a3:c4:6b:14:6d:61:a8:ab:a2:
bb:ab:c9:1f:74:7d:40:3a:54:2d:ff:7f:39:cf:32:
4c:b6:c9:f0:18:56:21:c4:2d:23:86:ff:8d:53:76:
69:5c:09:46:6d:3e:74:65:18:07:b8:c2:73:50:b8:
7c:88:fc:6a:0a:7e:17:c9:af:fa:8b:26:a8:7e:87:
c6:f1:af:e7:86:b0:b1:03:9c:7c:14:0d:34:19:4a:
a8:55:a9:cf:9a:00:dd:be:f3:f9:a3:f8:28:1f:72:
95:7d:c6:c2:ea:f2:d5:fe:82:a6:56:38:ae:63:1e:
a0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8A:80:D3:3C:27:98:BC:53:BB:8E:9C:80:43:50:06:0A:93:02:34
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/m4qA0zwnmLxTu46cgENQBgqTAjQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.99.225.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:91:76:0e:92:2b:b9:49:91:10:8d:0c:8d:5b:b4:13:31:42:
d9:84:38:a9:03:be:62:e1:77:14:50:4c:cd:10:63:63:18:a0:
82:40:47:af:a1:98:95:22:e0:8b:78:0f:0c:f1:b9:c5:2b:4c:
43:d3:fe:0f:8b:64:f9:d8:05:02:d0:aa:c7:9e:1d:c7:9c:25:
f2:54:a3:ba:c3:e5:e1:6a:38:bb:30:9e:33:0b:82:14:e3:9a:
d0:70:ae:82:4e:8d:df:c6:13:f7:2c:14:51:30:00:57:00:0e:
a8:b3:93:2b:b1:03:0d:e9:31:10:56:eb:36:e8:0e:96:c5:ba:
fa:46:26:d0:62:7f:66:c8:03:3d:fe:de:1c:fd:c4:15:38:f4:
fd:93:59:6d:5a:68:da:8d:e0:1b:eb:e8:f1:6d:c5:a2:82:18:
e4:9d:58:a8:0d:b6:1a:e9:91:d7:97:2a:b9:b2:c3:81:8a:2b:
00:93:4e:63:c4:27:b1:49:d0:a6:b5:6e:2d:b9:09:d9:04:60:
1f:37:e6:53:bb:05:8c:84:52:e9:6f:06:7c:32:a8:2a:8e:7f:
54:64:db:20:69:f0:43:12:a7:6e:14:4b:e6:85:57:57:a6:8a:
32:2c:4a:91:c2:dd:18:d4:2d:75:c8:d4:8e:17:a1:19:c4:f9:
a1:6a:97:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org