Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rN1tn6hcQpelQ9h0eJtjqypoRw0.roa
File: rN1tn6hcQpelQ9h0eJtjqypoRw0.roa (raw, json)
Hash identifier: FsIFfwDa16OAObykPyOB5h8KziqRHje5dIoJ3wt5KTU=
Subject key identifier: AC:DD:6D:9F:A8:5C:42:97:A5:43:D8:74:78:9B:63:AB:2A:68:47:0D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AFE
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rN1tn6hcQpelQ9h0eJtjqypoRw0.roa
Signing time: Sun 07 Feb 2021 12:58:40 +0000
ROA not before: Sun 07 Feb 2021 12:58:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131611
IP address blocks: 124.9.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2814 (0xafe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 12:58:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=ACDD6D9FA85C4297A543D874789B63AB2A68470D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:9b:87:6e:b0:69:47:42:76:e5:d0:c6:b4:d5:
d9:68:06:00:62:43:df:d1:8f:a4:20:df:ff:01:a4:
84:6b:21:ec:50:51:2c:91:c5:c6:ce:b0:be:e5:61:
62:27:37:dc:4f:71:4f:4f:c7:71:a2:17:c8:06:13:
7c:f9:96:d0:5a:72:f4:1f:d5:78:8f:fc:92:c7:15:
4f:37:18:65:9f:8a:98:a0:a6:85:96:ae:14:c6:53:
4b:28:0c:26:d2:8d:8f:41:29:b7:4a:25:b3:3b:f8:
df:8b:89:d5:39:ee:c3:34:c9:80:03:3b:09:f8:27:
9c:17:c8:c8:8e:79:4d:40:f1:3d:62:12:de:60:9c:
f3:e0:08:21:d9:85:c9:7b:b6:74:71:be:7a:e7:99:
2a:8e:7d:e7:7a:fb:77:18:4c:aa:59:a6:05:af:f9:
4c:20:7b:97:91:e7:dd:76:ac:d6:71:9c:31:86:2f:
f6:8f:05:a3:89:45:7a:28:8e:7e:06:ff:c9:07:79:
18:65:57:21:0c:54:71:bd:26:4d:56:ad:31:79:eb:
f3:9e:9f:47:0f:03:ac:55:65:7d:9d:ee:4a:7a:cc:
d9:f7:8d:f3:b5:62:e5:43:be:27:7c:35:65:ad:97:
30:0c:4e:06:ce:21:55:64:3d:1e:2e:d0:e2:45:cf:
b1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:DD:6D:9F:A8:5C:42:97:A5:43:D8:74:78:9B:63:AB:2A:68:47:0D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/rN1tn6hcQpelQ9h0eJtjqypoRw0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.9.96.0/19
Signature Algorithm: sha256WithRSAEncryption
09:99:9d:9a:81:f0:b8:4b:a4:84:1a:49:f8:33:70:b0:b4:c1:
3a:b1:3a:f9:76:f6:75:b3:95:81:fa:4e:cb:88:be:aa:82:7f:
1d:1c:f1:3d:9e:81:3a:3b:7b:23:a3:c3:e1:fc:a9:e9:20:68:
58:e7:98:28:9d:b3:ef:57:c4:4d:70:6f:be:dc:b3:3c:ee:3f:
94:d6:9e:fa:2e:02:2c:35:8d:96:af:e0:58:10:af:ed:b5:1e:
6e:cf:61:77:8a:60:b5:6c:f2:f9:2c:85:c8:c9:e0:90:38:57:
63:6d:4f:de:bc:1f:a7:6e:62:7f:a8:78:dd:59:16:2e:9a:5d:
f4:8e:4c:c4:05:c9:a1:97:c1:90:dd:1c:59:04:52:19:ae:11:
e3:e0:91:46:c5:4e:03:0d:4e:8e:ef:79:03:3a:24:48:f0:e9:
b0:80:4e:58:42:b5:bc:cc:da:fd:05:7f:05:b3:fe:3e:f4:ef:
69:15:3e:10:be:23:38:84:d6:5a:be:39:ef:72:f3:9f:79:a7:
56:19:54:df:f1:f2:de:7c:87:aa:e0:83:df:e8:b1:e1:89:e3:
86:6d:9d:c4:21:df:6f:99:a1:83:f1:ee:1b:ce:c0:f2:73:47:
fd:5e:6f:76:27:b9:7c:b2:42:6e:48:31:f3:f0:2a:5b:81:7b:
de:05:47:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org