Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zdYkMvOfI2M06pTwWgcBxABBf3I.roa
File: zdYkMvOfI2M06pTwWgcBxABBf3I.roa (raw, json)
Hash identifier: M0MmShScMZaeulTQHefNH5uWgeggX7OQUauSMnmkSe8=
Subject key identifier: CD:D6:24:32:F3:9F:23:63:34:EA:94:F0:5A:07:01:C4:00:41:7F:72
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zdYkMvOfI2M06pTwWgcBxABBf3I.roa
Signing time: Thu 15 Sep 2022 02:47:23 +0000
ROA not before: Thu 15 Sep 2022 02:47:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 175.96.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CDD62432F39F236334EA94F05A0701C400417F72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2c:78:df:3d:ca:7d:45:29:90:2c:0a:7a:ad:
9b:c0:00:c1:72:cb:16:a8:bd:cc:9d:21:a9:2d:f5:
b3:ff:49:f5:2f:88:1a:07:54:20:af:27:f3:f5:da:
cb:89:51:84:49:5b:a3:e5:aa:09:f6:61:49:e9:24:
f4:41:9a:f0:10:25:8c:17:b3:48:50:93:c4:8b:ee:
67:3a:f4:21:43:68:c7:49:c2:87:0d:ed:87:39:71:
7f:4b:bf:ed:20:d8:6d:26:15:4d:8a:7b:19:35:55:
00:8a:80:b0:38:aa:4b:4a:46:ed:65:7e:e6:33:58:
1c:cc:cf:1e:07:86:28:e0:c9:d1:ea:05:a3:21:ba:
8b:eb:eb:8c:9c:f6:f4:22:2f:cc:ba:e1:d6:9e:4f:
a0:b3:18:54:9f:62:69:a9:d4:b8:c0:ea:29:8d:62:
14:9d:5c:d1:fa:94:ab:98:3a:0f:00:26:dc:ec:6d:
60:98:e9:91:7c:b3:90:78:10:e3:7c:dc:15:f4:35:
0d:0c:a6:71:0d:81:26:56:a1:98:f3:dc:e5:ae:84:
a5:66:52:d7:2f:45:27:51:06:0e:bd:6c:b6:d1:14:
c1:69:ae:9e:9b:f6:ea:a4:ef:08:ac:77:5d:ac:30:
e7:78:9e:7e:27:cb:72:5e:d7:75:51:30:71:93:08:
ed:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:D6:24:32:F3:9F:23:63:34:EA:94:F0:5A:07:01:C4:00:41:7F:72
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zdYkMvOfI2M06pTwWgcBxABBf3I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.96.0.0/14
Signature Algorithm: sha256WithRSAEncryption
75:a7:86:d5:f3:34:df:46:01:44:47:30:9d:fe:80:9a:97:68:
3a:c8:85:65:74:1a:f5:48:52:e8:58:c2:42:ca:0b:59:85:98:
8b:53:31:48:6b:da:8c:5a:19:4c:59:e9:9e:f0:56:ca:db:da:
7a:66:28:c9:bb:cd:b9:cd:37:84:c8:94:bc:a3:ad:76:a7:64:
c2:d2:dc:31:9b:a8:10:4a:ce:93:64:21:b9:7e:56:1c:ed:ec:
0e:f6:19:ee:95:ac:0e:c2:69:78:83:1b:70:de:c2:0f:4f:84:
37:78:f8:72:14:f1:2e:fb:53:d8:3a:19:7e:49:6c:3a:b2:0a:
e9:75:ee:17:4a:67:d7:29:10:2d:8c:67:0f:f1:9b:eb:9a:82:
ae:68:f8:3c:19:c7:25:74:fd:3a:61:f4:38:3b:1e:d1:f5:4f:
a5:55:d8:21:9c:20:0c:d4:af:f1:27:18:b5:1a:58:1c:06:51:
ab:2d:7f:f7:0e:87:a4:01:22:82:ca:5a:34:b1:2e:b5:10:81:
e3:17:86:a6:6d:57:26:28:02:41:5d:ca:45:ec:ec:15:97:b7:
5c:38:e7:3e:10:50:a2:55:85:06:3c:15:70:ce:5e:fb:2a:4d:
4c:0a:56:8e:48:e9:99:fe:2d:29:c9:89:db:e1:32:be:cb:26:
1d:af:b5:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org