Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1AaHlYq4IH9wF9Uby1K-YmqZdks.roa
File: 1AaHlYq4IH9wF9Uby1K-YmqZdks.roa (raw, json)
Hash identifier: CGIUocdDNmg9wtE+oUPYGEIbFeu6ICmdh7yHiP750+w=
Subject key identifier: D4:06:87:95:8A:B8:20:7F:70:17:D5:1B:CB:52:BE:62:6A:99:76:4B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A9A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1AaHlYq4IH9wF9Uby1K-YmqZdks.roa
Signing time: Sun 07 Feb 2021 11:36:43 +0000
ROA not before: Sun 07 Feb 2021 11:36:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.67.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2714 (0xa9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D40687958AB8207F7017D51BCB52BE626A99764B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:fa:68:c6:b3:fb:6e:46:c3:d6:2d:53:db:8f:
16:9a:9e:3e:09:48:7a:5a:d2:8a:bd:82:f9:6a:f7:
6c:c7:7b:ff:fc:5e:2b:01:f4:b1:06:78:f5:db:e1:
7b:73:e7:99:82:90:c6:a1:c2:73:13:ac:e1:2a:68:
7a:d1:54:06:7e:d6:1f:57:28:96:58:0f:2a:ec:7e:
41:cc:48:a2:ab:35:34:4e:96:5f:37:0d:8f:a0:70:
d5:f9:7e:f1:00:48:3c:e8:7d:2b:23:53:5b:85:33:
c9:88:f0:2c:56:a8:fe:eb:a9:e1:0d:fb:11:3e:f1:
f2:51:5c:9a:eb:b3:9c:6d:cf:38:13:ae:ef:1b:0e:
01:c9:2e:4c:50:ff:dc:f5:5c:94:2a:6b:13:5e:72:
1b:15:14:21:89:36:87:77:e4:fd:ee:ae:a5:98:05:
47:7f:47:ac:f9:79:97:45:80:37:ba:bb:6b:4d:ac:
71:79:4a:b9:21:87:96:b5:c1:1c:96:1f:b9:1c:42:
e8:f3:0c:f0:c7:38:30:a1:83:90:48:d0:08:e3:51:
8f:d1:93:4a:75:c7:12:e7:b8:de:57:3b:1c:36:c4:
37:a2:cd:50:60:95:3a:b3:a5:d9:69:6a:1b:85:22:
4d:d1:45:ab:a6:a3:5e:91:72:5a:3d:4e:e2:85:73:
9c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:06:87:95:8A:B8:20:7F:70:17:D5:1B:CB:52:BE:62:6A:99:76:4B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1AaHlYq4IH9wF9Uby1K-YmqZdks.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.160.0/19
Signature Algorithm: sha256WithRSAEncryption
3a:77:c3:00:b3:54:72:05:22:b2:a9:af:f2:27:a9:d8:af:de:
37:03:92:54:0e:cd:a2:0a:80:2c:3f:76:86:9d:2f:28:77:ae:
f5:05:8e:a9:63:8a:3e:25:23:10:01:15:d6:72:f9:54:76:ef:
12:6b:6b:dc:a7:d9:e6:3e:d5:0f:77:ef:61:ef:8e:3a:5c:5c:
08:b0:83:3d:6a:1c:4c:99:b4:a8:4e:0b:eb:8d:0b:23:6a:d8:
4a:3e:1c:41:ab:71:c2:79:65:35:6a:6d:c5:a8:65:bf:16:24:
62:4d:da:87:54:81:a9:5b:b9:c1:3f:3e:e8:f2:ac:31:2f:2d:
b5:1e:e6:92:c0:6e:e6:ed:ec:86:42:fb:d5:f7:f1:0c:c8:ad:
a6:92:68:8d:fa:9b:4b:f8:12:49:36:1e:e0:97:9f:52:c5:78:
0f:25:16:3d:c2:82:01:5b:26:a6:dc:e3:ea:33:52:ec:ea:45:
96:5f:76:49:76:bd:57:ea:de:6f:aa:19:4c:3d:ae:3d:8b:7d:
77:ef:35:6b:ea:29:c5:20:7f:a0:4f:a0:b7:20:a2:8f:ff:68:
75:69:da:8d:a8:35:84:3d:0e:16:86:c6:bf:bb:f7:e1:a0:94:
bf:a5:ad:9f:0e:f8:03:f7:24:01:e5:4b:d8:b7:99:ed:27:a5:
5f:1c:ac:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org