Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qLL-41w0VYQacmV-yHL2-82X7_c.roa
File: qLL-41w0VYQacmV-yHL2-82X7_c.roa (raw, json)
Hash identifier: XitMB/Iabuc/Bso1HMlZcEO5dAjAHYc3ByR9U9mcZ5k=
Subject key identifier: A8:B2:FE:E3:5C:34:55:84:1A:72:65:7E:C8:72:F6:FB:CD:97:EF:F7
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qLL-41w0VYQacmV-yHL2-82X7_c.roa
Signing time: Thu 15 Sep 2022 02:47:29 +0000
ROA not before: Thu 15 Sep 2022 02:47:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131634
IP address blocks: 124.108.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A8B2FEE35C3455841A72657EC872F6FBCD97EFF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:43:0d:4b:dc:e9:b9:20:e0:ec:44:32:00:dd:
23:dd:ae:29:e0:ba:9a:7b:b5:ab:ed:19:c6:2c:b2:
92:c4:1c:4e:49:36:14:93:a6:ea:98:0a:38:87:c4:
7a:8b:e4:da:b3:fa:c7:1b:9a:bb:f8:ba:86:01:51:
33:29:10:1d:d1:68:ef:34:89:8e:27:4d:49:d7:25:
14:ca:e6:96:15:ba:f5:1a:3a:60:6f:22:48:7a:75:
0e:ac:5b:ff:35:8c:f3:a2:88:8f:6a:4a:35:7a:e9:
4f:bb:45:56:c6:b4:5f:1e:62:8a:48:8b:b5:20:ba:
4d:d8:f2:6f:55:c7:0d:65:6c:8e:54:71:93:a4:a4:
0d:6f:d9:d5:a2:92:29:c8:2a:7e:e4:2f:36:29:8f:
9c:b7:8d:16:40:a2:30:68:d3:6d:1f:9e:1a:fc:8f:
1d:15:35:65:9e:47:da:f0:ca:9c:09:d4:a9:ae:34:
d8:54:7c:75:e8:2b:e9:79:70:bc:64:6f:20:05:69:
1a:ea:53:8a:75:51:be:71:61:23:a8:54:16:e8:9a:
68:57:6f:70:9f:2d:fb:7f:b8:21:a9:0a:33:a9:f1:
9d:13:d3:ae:ac:0c:c0:b7:a9:ca:44:d7:ac:d8:f1:
85:f3:b1:41:fe:7f:a6:7d:7e:04:f2:22:7e:ce:0f:
f9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B2:FE:E3:5C:34:55:84:1A:72:65:7E:C8:72:F6:FB:CD:97:EF:F7
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qLL-41w0VYQacmV-yHL2-82X7_c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.172.0/22
Signature Algorithm: sha256WithRSAEncryption
23:7c:65:55:15:9e:3f:5a:87:a1:b9:85:72:7d:dc:fe:54:f2:
48:64:0c:7f:c5:0e:1c:43:81:ba:c6:a6:72:2d:dd:17:39:a9:
eb:51:49:0a:d5:42:8d:34:ff:95:98:9d:60:93:16:dc:3b:6c:
10:eb:9e:f9:37:2a:c9:ed:1e:bd:43:fd:60:b8:8e:0e:e8:a3:
5e:4c:b6:3b:f0:13:6c:a0:f6:fd:1e:40:82:20:69:b1:f7:98:
4f:9f:19:ba:1a:1c:0f:55:e8:9c:96:ba:a1:06:b9:64:2c:65:
ea:dc:ea:eb:ce:f6:80:bf:d9:1a:d3:50:e5:c6:5f:2e:0b:51:
17:0d:e5:7e:84:63:3a:bb:fc:17:5a:3b:b6:f0:95:82:4c:56:
82:c8:f9:dd:01:c2:b0:5d:5e:17:c9:00:82:b6:dc:d2:ea:8f:
30:30:02:96:bf:a6:67:8f:2c:ce:6e:37:8e:5d:cd:4d:41:35:
78:71:90:af:2d:05:4f:2e:6d:a9:16:df:92:c4:85:92:8c:f3:
48:9f:8a:df:39:e4:06:e9:ab:8b:14:0d:c7:f9:92:6b:6c:b7:
4a:15:80:9b:5e:56:c0:15:07:62:08:88:a9:4b:9d:04:4e:37:
85:89:b5:6a:08:34:83:4f:63:b3:01:48:66:96:71:3b:fa:f2:
61:87:25:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org