Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0F8TlMjYdx2mlupwfRM7Y7FRn98.roa
File: 0F8TlMjYdx2mlupwfRM7Y7FRn98.roa (raw, json)
Hash identifier: n9s5VP86CbUU0i4NrPIdjPf5AJ3DeNe1bvqo/jPTXRY=
Subject key identifier: D0:5F:13:94:C8:D8:77:1D:A6:96:EA:70:7D:13:3B:63:B1:51:9F:DF
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0F8TlMjYdx2mlupwfRM7Y7FRn98.roa
Signing time: Thu 15 Sep 2022 02:47:35 +0000
ROA not before: Thu 15 Sep 2022 02:47:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.17.76.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D05F1394C8D8771DA696EA707D133B63B1519FDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e0:7c:f5:e5:65:7d:ae:0a:31:75:24:c5:d4:
c5:c1:b9:3c:60:bd:98:d5:f1:85:f1:e2:62:0c:0a:
ea:22:dd:ee:da:fe:f0:0c:d7:c8:c1:03:14:ca:89:
81:3f:46:50:bc:ef:28:ab:38:4a:27:b9:ab:b4:07:
c4:aa:d0:a1:a9:bc:7e:7d:03:00:fc:72:c5:38:01:
27:a8:c3:e7:91:5a:8b:f6:63:89:38:05:d7:d0:72:
4d:ac:33:8b:4e:7c:f0:10:9f:76:43:f6:98:c6:2c:
e6:f7:72:9c:24:53:c0:93:a4:1b:d3:17:bb:dc:c0:
b6:c4:4e:1b:08:8b:5c:cf:91:70:77:33:e4:9d:29:
9d:63:1f:12:1e:54:cd:fe:cc:a3:5a:15:c1:8a:9b:
7c:dc:3a:60:65:05:12:ca:1f:e6:4a:4e:f5:06:a3:
68:0d:95:af:c9:c7:d5:87:1c:b9:1a:2a:4e:c3:ae:
ca:05:d8:ff:37:d3:46:83:8c:34:ac:a9:3e:d6:d6:
db:41:f4:47:75:42:58:e5:ea:86:fe:9f:5d:29:3a:
62:52:69:5b:f1:e7:7e:87:67:5d:35:4b:2f:1a:81:
1d:b4:ae:af:b8:be:62:cb:d3:ed:ab:bb:5b:39:a8:
f5:6a:6c:f1:b0:24:14:16:cf:a3:60:a5:fc:15:b6:
a0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:5F:13:94:C8:D8:77:1D:A6:96:EA:70:7D:13:3B:63:B1:51:9F:DF
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0F8TlMjYdx2mlupwfRM7Y7FRn98.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.76.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:bb:08:e5:f1:7d:de:c6:4d:59:b0:2b:c4:dc:ef:e7:8f:f1:
d7:21:5c:4a:a7:ae:0a:05:c8:52:75:62:6e:4f:7d:1a:86:50:
b4:a2:d3:c4:5c:36:55:33:23:0d:73:09:4b:f2:5a:ab:fe:7e:
15:0d:a1:1b:a0:37:d8:9b:15:ca:1a:2c:e2:a3:07:05:55:c5:
5b:a0:82:83:fd:dc:cc:d8:c4:dc:d0:10:87:72:7b:5d:3a:0f:
d5:3d:84:7a:57:f2:55:d8:34:53:e2:7f:07:79:b2:d1:bd:ad:
63:92:69:64:47:01:05:93:31:4f:b1:ae:6f:04:7f:0a:ce:2c:
c7:f5:57:44:0b:fb:01:a2:c9:b1:58:32:b7:11:95:47:52:05:
79:bb:b1:c8:a8:68:4a:c1:a1:9e:b8:0e:57:fa:11:c4:fd:26:
08:5a:57:49:90:5c:29:22:22:72:0d:24:e6:d6:16:ca:da:d7:
6c:6e:b4:f6:ac:5c:8a:02:a8:6b:87:bf:d5:cd:f1:ed:c2:d3:
72:3f:3d:16:48:de:cf:10:43:9b:fb:8c:79:42:05:b7:62:50:
41:d6:11:31:da:9e:2f:01:29:e3:3a:c1:d6:6a:6e:e2:f5:e8:
75:5a:c0:d4:bd:05:e7:d8:00:10:4f:48:6c:40:74:cb:09:04:
c7:f7:31:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org