Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-ozx2qZd95lKsDpqV3xDuRihRmw.roa
File: -ozx2qZd95lKsDpqV3xDuRihRmw.roa (raw, json)
Hash identifier: vuFLeOupHctCnOD/9QQsY49xatVYmM02FzkHVwJazTk=
Subject key identifier: FA:8C:F1:DA:A6:5D:F7:99:4A:B0:3A:6A:57:7C:43:B9:18:A1:46:6C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B36
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-ozx2qZd95lKsDpqV3xDuRihRmw.roa
Signing time: Sun 07 Feb 2021 13:10:50 +0000
ROA not before: Sun 07 Feb 2021 13:10:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.35.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2870 (0xb36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FA8CF1DAA65DF7994AB03A6A577C43B918A1466C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ed:37:35:6c:1f:ee:ba:7c:32:e7:97:a9:70:
a5:32:20:a0:dc:b0:7c:32:97:28:88:54:c1:8a:b4:
59:d0:23:9f:0a:d1:c2:b9:5f:d7:b8:60:d3:5b:8e:
1b:a2:12:10:43:79:e3:a4:f9:fd:b6:78:f7:cd:0b:
d3:73:b2:f6:64:9b:f2:4c:86:92:db:ea:71:cb:a4:
07:ad:f5:97:71:79:0d:3e:86:2d:b6:2f:a1:a9:83:
d7:a5:c9:b0:fb:12:8c:b4:e9:3c:21:08:2d:13:9d:
40:a0:cd:b9:25:27:ed:79:6d:d9:f4:12:e7:c9:17:
fd:cd:d5:ec:d4:ad:4b:2b:76:11:ec:7f:ff:72:12:
6d:0f:53:2e:17:a4:22:35:70:88:bc:6b:0e:0f:0b:
35:b0:d1:8c:f3:25:1d:ca:ab:73:3f:e8:18:f3:a8:
1c:bd:0c:09:db:50:60:00:0b:e7:70:bc:24:f6:86:
a2:9a:f2:8b:e2:de:70:7b:bd:14:2b:76:6b:9a:e3:
46:a8:89:0e:d8:60:0e:da:ea:2c:07:97:a9:e4:b3:
14:52:47:3d:64:84:33:6f:dc:02:a4:a1:be:7a:22:
bf:14:6e:5c:b4:7d:b2:05:3d:5a:1f:a4:08:90:59:
47:de:8f:a0:aa:71:e6:67:f1:6f:90:50:87:b3:82:
d8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:8C:F1:DA:A6:5D:F7:99:4A:B0:3A:6A:57:7C:43:B9:18:A1:46:6C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-ozx2qZd95lKsDpqV3xDuRihRmw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.35.0/24
Signature Algorithm: sha256WithRSAEncryption
70:9a:0d:29:03:74:ab:48:98:ab:b7:8f:e6:3b:19:fa:5f:47:
5e:9c:db:23:39:62:e2:7f:e3:94:da:01:8d:2a:e5:14:1e:76:
42:74:de:2c:af:eb:a7:15:39:7d:4a:1a:97:49:ea:b9:e5:77:
8f:d2:62:ac:8a:0d:f4:cd:6d:de:af:07:37:2b:5a:ce:18:f9:
93:9b:bd:0f:44:63:50:ad:c6:21:ed:75:81:45:fa:29:57:31:
a7:13:24:0a:6b:8d:e3:95:cb:f5:b1:ae:00:9d:bc:1b:64:cb:
89:83:91:d0:7e:e7:d5:49:0c:65:ee:c1:d3:76:db:bf:74:07:
44:52:61:b0:f8:15:c1:41:a3:8b:88:b8:ba:fd:a5:c0:63:b7:
0b:19:07:f6:f9:60:b4:84:10:c7:c8:26:f7:c1:aa:a0:9d:7b:
20:15:a7:5b:43:2a:69:ce:77:a4:85:27:75:30:cc:cf:2d:85:
b9:62:36:e6:87:db:f3:e4:72:c7:03:36:51:f8:02:c1:ae:1e:
3e:18:81:01:6b:a8:f0:9e:58:4b:66:25:b7:29:3a:6f:ca:2d:
ed:76:bd:3d:75:05:52:03:46:0b:6c:79:8c:24:3a:52:21:76:
de:05:68:92:eb:a0:e4:a4:89:29:f5:1a:57:60:cb:b3:b7:fa:
52:2c:3b:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org