Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zssOF9eXvni2e8P_LavELoZYuT8.roa
File: zssOF9eXvni2e8P_LavELoZYuT8.roa (raw, json)
Hash identifier: 9Y+Sv0566h64jpnGvcLxNb1L1KuWwbtlg2eLljomMa4=
Subject key identifier: CE:CB:0E:17:D7:97:BE:78:B6:7B:C3:FF:2D:AB:C4:2E:86:58:B9:3F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AFC
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zssOF9eXvni2e8P_LavELoZYuT8.roa
Signing time: Sun 07 Feb 2021 12:58:38 +0000
ROA not before: Sun 07 Feb 2021 12:58:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131611
IP address blocks: 124.9.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2812 (0xafc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 12:58:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CECB0E17D797BE78B67BC3FF2DABC42E8658B93F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:63:1d:01:0b:89:d4:d3:27:ec:8e:b8:85:2c:
89:63:7f:66:5e:8c:3f:9c:00:2b:51:93:6a:0d:d7:
a8:00:06:81:9d:d6:d5:3b:b2:bb:49:b1:32:6f:63:
3b:d4:56:f3:0d:69:2b:7f:94:4f:c2:47:89:2b:40:
8c:af:46:5d:df:d0:2b:5e:3c:51:fe:a1:55:ef:3d:
5e:a9:c0:bd:16:be:ad:e5:69:c0:b7:c2:4a:fb:a2:
9f:e2:ac:72:fc:9b:68:ca:6c:99:79:77:40:97:4c:
3f:d9:9a:ce:80:29:ab:46:b8:83:a3:2e:78:f1:0e:
26:b8:21:54:69:3e:ca:5e:db:6a:62:8e:67:70:41:
9f:73:9e:78:d2:fe:ef:35:9a:4d:12:ba:fe:2f:ed:
4e:4c:c7:80:d6:4a:84:5d:26:f5:87:62:c6:3a:6e:
eb:fb:6e:70:a8:a3:c0:b2:c8:41:95:97:b2:35:30:
71:0b:2f:ec:17:97:03:53:90:b2:9e:02:92:06:8f:
f9:6b:88:1d:c8:4c:8a:6b:fc:ed:79:27:39:7a:63:
25:48:f3:d9:2d:a8:65:3a:2e:04:e5:74:39:27:1e:
0a:67:27:ff:a0:23:76:25:ce:d0:cc:a7:ad:4f:b4:
80:d8:d2:7f:e5:03:41:57:a6:89:4e:22:df:a4:22:
aa:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:CB:0E:17:D7:97:BE:78:B6:7B:C3:FF:2D:AB:C4:2E:86:58:B9:3F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/zssOF9eXvni2e8P_LavELoZYuT8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.9.64.0/19
Signature Algorithm: sha256WithRSAEncryption
36:88:c6:2f:bf:3f:37:e8:5e:0d:86:ab:53:de:6d:90:a5:b6:
bc:dd:bb:a8:43:a6:b4:02:91:c8:9a:f4:5e:31:2f:ac:45:b6:
05:2e:c4:16:ef:7a:d3:06:87:6e:d9:72:1a:f9:13:5b:52:df:
7f:4c:fb:30:63:b7:f0:3f:fd:f0:b0:f3:36:a7:f4:cc:77:ba:
03:c8:b0:9a:4e:ff:97:a6:eb:52:c0:6a:24:00:7e:6d:2f:2c:
fe:41:67:fc:4f:f9:75:a8:75:5f:ad:20:e3:ac:39:08:47:42:
89:f6:f7:28:85:1e:5a:53:cc:2c:bc:a3:03:0b:17:4a:27:fc:
b2:8b:1d:f6:a5:f2:24:b3:ef:f5:5a:99:16:b8:e0:33:54:e9:
c3:37:45:1b:2a:c0:77:b3:8a:d7:ec:40:37:eb:18:8a:8e:79:
fb:62:13:97:0f:1c:0c:33:7d:f6:50:25:b4:75:c6:70:06:5e:
8a:83:41:6e:58:f0:39:0a:1f:92:dd:df:ec:61:a0:a3:37:cb:
89:58:23:08:cb:6d:fa:59:5d:59:d8:78:de:f6:cc:28:fc:2a:
5e:67:87:51:d6:bc:a8:0a:0c:96:a6:ab:05:42:3b:95:7d:6c:
c8:b0:09:21:ec:1b:67:29:6a:60:5e:bc:1d:d4:c3:a7:a4:ce:
d6:fa:ae:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org