Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1p6S-U-dbL-ddeEw9l19c3eiaIU.roa
File: 1p6S-U-dbL-ddeEw9l19c3eiaIU.roa (raw, json)
Hash identifier: G+g8FOmmRD+PIO4wuSDVJZa6MeS4WHEBsgQQ7htOhUE=
Subject key identifier: D6:9E:92:F9:4F:9D:6C:BF:9D:75:E1:30:F6:5D:7D:73:77:A2:68:85
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C42
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1p6S-U-dbL-ddeEw9l19c3eiaIU.roa
Signing time: Wed 29 Sep 2021 02:49:36 +0000
ROA not before: Wed 29 Sep 2021 02:49:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.17.20.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3138 (0xc42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D69E92F94F9D6CBF9D75E130F65D7D7377A26885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:26:74:67:e3:2e:94:20:78:14:94:46:72:5d:
de:2d:78:46:78:92:03:11:f8:ba:58:ba:63:9a:3b:
ac:1d:4a:b0:12:70:ae:5c:74:e9:e3:00:f9:69:80:
a7:db:be:d2:de:f7:12:bf:1d:a7:e4:da:f2:c2:ed:
62:1f:82:1a:57:b6:af:f9:6d:c8:f9:00:6c:2e:31:
07:62:27:13:85:95:38:51:d9:a5:4b:c9:58:6d:35:
e5:13:1d:34:68:d7:17:cc:c8:bb:cd:23:76:cc:16:
c1:d3:95:a4:0d:75:a1:f4:d3:cf:2d:14:24:35:00:
07:ec:76:fc:42:0c:e6:d7:b6:64:80:8e:5a:03:5d:
d4:74:2d:f7:61:3b:05:d9:1f:b4:52:fe:78:5f:93:
16:b6:56:a0:02:79:0d:11:49:16:7e:17:8e:74:d3:
44:17:5b:ed:ef:80:c1:9a:f4:fc:fe:b5:28:83:8c:
e2:62:84:30:8c:16:fb:48:51:41:ba:c4:01:0c:48:
fe:10:60:43:18:d9:48:ff:bc:bb:62:dc:41:b0:8a:
e3:60:91:1c:d0:77:3e:34:ed:7e:f6:7d:d1:6e:91:
2b:df:f2:4c:e8:e2:02:63:00:c9:e0:27:c6:e3:3d:
4b:a2:de:ba:6e:c9:71:f8:18:3d:11:f5:cb:45:82:
20:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:9E:92:F9:4F:9D:6C:BF:9D:75:E1:30:F6:5D:7D:73:77:A2:68:85
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1p6S-U-dbL-ddeEw9l19c3eiaIU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.20.0/24
Signature Algorithm: sha256WithRSAEncryption
13:62:8e:d7:d2:43:e7:c1:a3:a9:37:ea:94:d7:42:b2:58:ae:
a8:f7:89:4a:04:cb:a2:44:22:fb:f4:df:99:6d:2b:29:c0:42:
fb:18:cd:53:8a:15:ed:d8:73:f6:18:7d:00:c2:26:72:15:5f:
c4:4b:08:4d:1b:ae:b6:8d:e6:f7:ef:4d:89:ef:ea:62:a9:f7:
d3:1c:b9:2b:31:e9:c6:68:69:c1:22:c1:fb:b8:62:2e:f4:0c:
44:1e:4d:8e:18:bf:9f:84:1a:45:bd:0e:40:78:03:70:3a:4f:
e9:6a:5d:b4:c2:5c:4d:66:b5:f5:e5:26:54:89:11:6c:a2:d4:
3a:0d:39:e5:6d:0d:52:e0:25:87:68:25:f5:ed:23:4e:f4:3c:
99:c7:d7:62:62:3c:b0:02:b5:11:80:eb:19:0a:fe:a6:30:6b:
bd:9d:eb:a8:ba:3f:a0:28:33:7d:19:60:2d:c9:f0:6c:b9:fb:
21:39:67:88:ec:0e:fd:82:90:f7:46:dd:7c:a1:af:62:e9:71:
a6:a9:90:50:c0:1b:3b:0d:cd:7f:f2:20:b7:b7:34:ff:fc:b0:
d6:ba:53:9c:dd:18:25:0a:9f:09:2e:49:3d:05:3c:32:3f:53:
5f:8c:ad:07:ba:3b:dc:a7:cf:f5:0d:6d:c7:31:a3:9c:6f:43:
c2:95:6c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:32 2025 by rpki-client