Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/o2OgPgdzNj9HmVdge9g_-ZG07CE.roa
File: o2OgPgdzNj9HmVdge9g_-ZG07CE.roa (raw, json)
Hash identifier: JUFEtvhnIMMuG2cp/yrdnzHa+cxkvd9D+rius1mlbAg=
Subject key identifier: A3:63:A0:3E:07:73:36:3F:47:99:57:60:7B:D8:3F:F9:91:B4:EC:21
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/o2OgPgdzNj9HmVdge9g_-ZG07CE.roa
Signing time: Thu 15 Sep 2022 02:47:13 +0000
ROA not before: Thu 15 Sep 2022 02:47:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 175.99.72.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A363A03E0773363F479957607BD83FF991B4EC21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:79:02:21:31:9b:19:65:05:66:68:ef:cf:fc:
95:22:18:3f:3f:45:ce:a4:23:30:37:4e:5f:83:f4:
15:4c:b4:6c:34:bc:d1:74:3e:eb:ee:52:11:90:18:
d3:43:b7:c3:c4:b5:84:40:e7:09:14:6f:79:e1:ed:
2f:d7:23:9d:67:ad:36:cf:87:bb:b3:63:95:61:d3:
7b:af:5d:0e:0c:f1:9f:db:ef:9f:aa:37:2c:cc:af:
20:1a:95:72:a1:ae:a5:22:dd:bd:cd:37:e7:4a:45:
31:17:d5:be:b8:33:e1:29:0d:02:7d:f1:c4:a7:02:
ee:25:3d:c3:3b:e7:7c:06:e6:8f:b5:9b:cd:44:62:
62:b0:41:a1:25:ca:3f:a5:e7:1a:27:53:26:7e:73:
2e:7a:8a:9f:ae:74:98:ba:fc:ca:87:ee:76:1c:ac:
0d:cb:31:ce:bb:9e:19:53:5d:ba:96:95:1f:bd:0f:
f0:dd:04:7f:4d:ca:c2:31:3e:56:a9:54:48:8f:63:
1a:6a:7a:50:b4:77:34:75:e6:ad:6d:10:54:14:74:
d9:08:f0:24:9a:07:d0:30:39:85:4e:13:ab:c7:02:
29:26:1d:f9:b5:11:86:11:0b:44:e2:10:7e:9e:04:
94:d2:21:bd:69:90:0d:87:b8:19:6b:c5:b7:ca:2c:
66:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:63:A0:3E:07:73:36:3F:47:99:57:60:7B:D8:3F:F9:91:B4:EC:21
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/o2OgPgdzNj9HmVdge9g_-ZG07CE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.99.72.0/24
Signature Algorithm: sha256WithRSAEncryption
75:51:b0:89:3b:58:d7:a5:e2:ec:ba:fb:66:28:01:1c:b6:e7:
e2:62:d1:59:88:ab:e2:ed:e8:a0:f9:18:a3:a2:6b:db:26:dd:
36:db:5c:d4:f8:81:fd:df:a2:df:86:41:92:5b:f6:af:d8:a0:
03:7c:16:c6:75:76:81:f6:24:b6:09:f0:81:e9:ac:3d:d3:53:
7f:c0:6f:60:43:33:5c:50:c5:58:dc:a9:3c:d4:fe:14:4b:f7:
81:ab:16:04:f5:80:bc:1b:22:92:ff:3f:57:c9:71:5c:ae:47:
41:1f:59:65:31:55:4f:c8:8d:15:f9:a6:5c:dc:3c:40:a9:13:
4c:c0:2e:75:c4:c4:90:d7:02:a3:5e:42:0a:bc:ec:88:83:25:
cb:e1:99:7d:97:2f:58:d9:e8:f0:af:d3:29:72:1c:75:73:27:
4d:0b:f0:01:65:09:3a:10:8e:c2:c0:9e:46:d2:f2:1f:3b:38:
c2:7b:06:74:3c:d9:fb:69:5b:8f:59:bd:56:bc:ca:51:1d:d3:
5f:49:33:ab:fa:e1:7b:44:87:46:68:8d:a9:81:1c:f7:07:41:
22:6a:91:95:20:8b:4a:d0:1c:5e:12:25:c2:e7:33:5d:20:ab:
28:c0:0d:fb:ea:85:5a:5a:ff:34:f0:f9:42:66:a5:e9:a6:e9:
18:87:d9:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org