Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zXrIf2MUjkrkb6F5X2qWJaSlYLQ.roa
File: zXrIf2MUjkrkb6F5X2qWJaSlYLQ.roa (raw, json)
Hash identifier: C1dE3XcJfxmefZEChBdc5clXjkfytrGdFlHsow1h/iE=
Subject key identifier: CD:7A:C8:7F:63:14:8E:4A:E4:6F:A1:79:5F:6A:96:25:A4:A5:60:B4
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0811
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zXrIf2MUjkrkb6F5X2qWJaSlYLQ.roa
Signing time: Tue 29 Sep 2020 09:57:43 +0000
ROA not before: Tue 29 Sep 2020 09:57:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 124.108.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2065 (0x811)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CD7AC87F63148E4AE46FA1795F6A9625A4A560B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9c:ed:e8:bf:81:72:82:c0:d2:6c:d0:c0:26:
35:91:8c:81:34:31:29:20:66:da:c7:fd:04:4d:43:
52:bc:56:c1:f3:41:ca:08:50:63:10:8d:df:0a:24:
d8:9e:70:e6:72:1b:c2:55:21:30:49:7d:c6:aa:f1:
23:df:f0:68:0a:0e:2d:34:af:96:ba:b4:9b:b5:93:
eb:6d:c4:12:4c:f4:21:e2:e1:89:e8:f1:ae:67:32:
1f:6b:b0:28:a9:a6:4c:aa:aa:00:67:70:a2:ef:2a:
14:c0:46:eb:d6:21:e6:29:b5:bd:f4:88:07:06:cf:
12:96:aa:8b:f9:87:15:87:49:18:09:65:38:6f:90:
05:74:f5:18:2e:34:b3:b1:02:8a:10:91:b8:21:30:
6a:5c:e1:99:01:31:88:5c:7e:fc:4f:16:44:c7:f6:
f1:36:be:6b:6a:9d:0f:c5:ad:13:05:6a:07:69:6e:
34:91:70:da:82:31:e2:5d:32:30:97:cc:6b:54:29:
a1:91:07:9d:64:fc:39:46:13:16:88:9e:75:03:e6:
fe:a0:44:39:d5:ef:35:0f:86:35:e9:64:b4:9f:fb:
fe:e3:4e:58:2d:00:47:7d:96:7d:34:11:40:36:a9:
30:60:86:f2:e8:f7:f8:59:ca:40:b6:61:84:2b:4b:
27:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:7A:C8:7F:63:14:8E:4A:E4:6F:A1:79:5F:6A:96:25:A4:A5:60:B4
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zXrIf2MUjkrkb6F5X2qWJaSlYLQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.128.0/18
Signature Algorithm: sha256WithRSAEncryption
0d:04:fc:10:f7:2b:06:57:00:d2:bd:61:25:0c:fd:ce:53:32:
c2:a7:21:4a:3e:74:ce:c6:0c:a5:67:05:19:e7:1f:29:aa:db:
4f:c2:b3:84:83:6c:07:46:55:54:7f:3d:fc:0a:c8:54:94:5a:
7a:ce:e9:07:27:2d:bf:69:c5:86:79:06:69:63:80:9a:74:ba:
77:14:9c:13:59:ab:ea:bf:a0:b3:9c:e5:c2:97:ce:73:d1:8f:
3f:8c:ff:19:42:3d:81:28:95:11:00:da:d1:75:dd:54:22:07:
3b:f4:ce:1a:83:a9:95:f4:0e:d9:51:a1:9e:a2:e2:32:74:97:
b6:fd:b4:7d:86:89:d9:8d:ea:f9:cd:1f:64:aa:34:e4:e5:fe:
90:5c:31:79:66:65:2e:b5:1a:7c:d0:ff:4c:fd:09:a1:ac:fa:
cb:11:29:f9:3c:f6:7c:7d:c4:33:7c:19:25:c3:f3:01:b9:67:
ad:bf:90:59:ac:0b:fe:eb:32:09:2c:a6:9d:b0:83:05:3e:5b:
03:12:2d:99:e1:99:a8:78:d7:e2:57:76:3d:f0:cc:19:3a:7b:
28:2c:1e:e2:c9:37:73:e5:63:9f:08:78:1e:dc:79:a2:01:46:
29:0c:bd:1d:3f:8f:43:2f:da:34:17:94:90:82:a9:07:39:ee:
c1:ae:e9:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org