Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/2xV93ie-Hi7jUKHrRmJHKKwg340.roa
File: 2xV93ie-Hi7jUKHrRmJHKKwg340.roa (raw, json)
Hash identifier: sM6bOD9RvFEUmN4RXIybAlybPwQQ9gcAslj04vSWgTo=
Subject key identifier: DB:15:7D:DE:27:BE:1E:2E:E3:50:A1:EB:46:62:47:28:AC:20:DF:8D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/2xV93ie-Hi7jUKHrRmJHKKwg340.roa
Signing time: Thu 15 Sep 2022 02:47:25 +0000
ROA not before: Thu 15 Sep 2022 02:47:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.17.16.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DB157DDE27BE1E2EE350A1EB46624728AC20DF8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:66:6c:07:98:74:09:26:2c:7d:6f:f1:74:96:
6f:30:af:b7:9f:63:7a:da:eb:41:db:d4:3c:8b:3b:
14:10:02:1a:b5:25:e9:47:75:20:78:1b:d0:cc:91:
3d:96:c8:4d:a5:16:2c:7f:00:56:da:9d:7c:9c:4b:
28:52:4d:df:9b:66:26:56:d4:c7:c1:41:50:e4:28:
98:e2:57:49:9f:bc:03:b8:97:2d:55:c7:ba:f2:ae:
d6:7d:14:54:17:4d:24:43:8c:bb:5a:c6:67:67:e7:
62:c8:4d:fa:73:b5:01:80:fe:d8:31:bf:a3:58:5b:
97:a8:d7:b9:3e:30:56:1c:19:c6:82:b5:24:ee:63:
29:f7:83:8f:91:75:84:c0:1b:2f:fe:2e:45:c0:87:
1e:77:6d:1c:ba:11:e3:38:32:ac:ff:f4:af:c2:82:
aa:3d:ab:8c:bf:c2:96:20:f1:69:40:ee:8d:a1:8b:
fc:b5:22:16:43:a8:8f:4e:67:a6:ce:70:36:aa:08:
9a:5f:bb:ee:f8:d3:7c:0a:f7:bc:a0:a9:a1:53:e2:
04:91:ab:75:d0:d7:12:0b:44:6f:ae:cb:48:54:c5:
ed:fd:35:82:2a:da:5f:60:ec:b0:6e:cd:1e:73:1b:
d8:3e:28:e6:ae:67:30:1d:2f:5d:e3:df:58:2f:bb:
9c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:15:7D:DE:27:BE:1E:2E:E3:50:A1:EB:46:62:47:28:AC:20:DF:8D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/2xV93ie-Hi7jUKHrRmJHKKwg340.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.16.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:58:a5:3e:12:d4:c9:65:45:7a:60:d1:13:4b:88:6b:cf:af:
4d:69:0a:e6:3a:41:38:aa:06:b2:fa:8a:2a:9b:69:97:18:13:
0d:31:bd:6d:2e:fd:48:18:b0:6e:9c:08:39:4a:04:a7:78:0f:
48:f6:f8:c8:4d:78:a6:b8:9b:68:17:d7:bf:5d:48:d7:ff:2d:
d3:55:1c:88:37:a0:18:fd:35:73:c8:3e:d5:d3:aa:92:49:7e:
2b:c8:8b:cb:a5:50:fb:d1:fd:c6:33:1a:1c:c0:68:71:99:97:
cb:de:54:88:22:9b:11:1c:0b:a5:30:f6:70:ab:70:03:25:6e:
6a:b1:8b:60:7d:0d:fe:c0:3a:66:8e:86:ec:db:7b:ab:b5:4c:
88:53:0b:e8:32:f8:26:4f:ce:98:8e:2f:10:a0:9a:80:d3:9c:
69:f4:64:5c:17:29:f5:11:d1:67:48:97:40:a8:50:60:2a:3f:
4b:f7:dd:a9:20:a4:de:8a:18:05:96:01:95:89:ad:51:c1:57:
b4:00:1f:8a:85:19:17:d3:77:76:eb:90:33:0b:f7:a3:7c:e7:
7f:9e:7b:b1:f4:e8:26:7a:dc:5d:a2:6a:e5:76:86:b9:78:82:
09:41:05:d7:8e:70:63:fa:f6:f0:a3:57:fa:e5:03:ff:62:46:
15:84:d3:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org