Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3SDbfcofMuzHuaNAIVzdTwkxFFU.roa
File: 3SDbfcofMuzHuaNAIVzdTwkxFFU.roa (raw, json)
Hash identifier: POIeW5Iwy8sjg8tw4TC795JlLwmka6YOv856QwkwUhE=
Subject key identifier: DD:20:DB:7D:CA:1F:32:EC:C7:B9:A3:40:21:5C:DD:4F:09:31:14:55
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 098C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3SDbfcofMuzHuaNAIVzdTwkxFFU.roa
Signing time: Wed 16 Dec 2020 02:26:08 +0000
ROA not before: Wed 16 Dec 2020 02:26:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.20.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2444 (0x98c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:26:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DD20DB7DCA1F32ECC7B9A340215CDD4F09311455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:67:97:55:50:b9:cd:1b:b6:df:65:4a:7e:af:
9c:95:04:92:d3:bc:af:59:a4:f1:e5:17:65:61:cc:
c9:e6:90:28:dc:bd:18:27:37:e2:a4:01:51:c4:40:
53:37:48:e9:d7:62:d6:76:04:bf:f7:68:df:ef:d4:
07:1c:c0:91:f3:84:2a:b9:02:83:16:1e:a2:2b:48:
08:0f:11:04:87:d9:b0:9a:71:6e:84:de:63:7a:98:
d9:5e:4c:28:c4:f2:d0:14:19:4c:07:14:3f:95:0e:
e8:58:9f:64:34:15:9e:96:66:a9:27:37:f3:21:65:
56:63:6b:42:a8:00:5c:45:ab:1c:8f:9b:3a:e3:36:
a2:4f:91:41:d5:b6:a8:b9:10:36:29:75:ae:74:22:
4a:4b:bf:72:43:0d:d7:e8:79:f7:0c:c0:be:59:12:
e9:3c:2b:f3:34:38:c6:e3:9a:53:1c:c2:69:6d:1c:
47:11:71:bc:ea:bf:a5:ac:77:07:80:05:85:90:38:
2a:5f:ac:0d:a9:50:ca:1c:5a:c4:fc:9d:01:35:b5:
41:7d:43:89:b4:7f:7e:d3:5e:6a:b9:42:41:cc:05:
7b:5d:bb:85:27:91:4a:81:05:fe:1c:3b:f8:f2:c3:
26:ad:ad:98:13:68:20:40:fb:90:1c:e6:31:75:6f:
8a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:20:DB:7D:CA:1F:32:EC:C7:B9:A3:40:21:5C:DD:4F:09:31:14:55
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3SDbfcofMuzHuaNAIVzdTwkxFFU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.20.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:1e:12:b1:9c:74:a8:03:e9:e1:33:19:4f:c9:eb:09:a3:1f:
f2:df:b3:20:91:b3:10:d3:ef:33:48:e4:55:86:ed:83:72:aa:
11:c6:70:4b:0e:8d:5c:59:2f:f6:42:0d:ca:b6:72:f6:18:a9:
34:28:b3:83:9c:2b:43:8a:e2:9c:9c:46:f7:a6:53:52:2f:a1:
97:a1:e2:bf:e9:27:3d:78:80:ee:ee:c9:d0:96:5e:db:40:99:
32:9a:80:60:ea:5f:46:a3:5a:85:9d:69:f4:a9:30:5a:9c:ea:
59:32:3e:5d:8f:2a:d6:41:be:7c:cc:d9:ab:33:a9:90:50:be:
6a:a7:cd:a6:13:a6:eb:a6:d5:df:fc:f8:14:19:3c:9b:49:6a:
c5:9a:cc:fb:59:cc:8d:a1:60:fb:fc:72:3e:0e:49:a1:af:a2:
8f:2b:e4:33:a1:2e:61:8a:2c:0f:04:aa:1d:bf:2c:ee:81:d9:
b4:64:e0:ad:8f:e0:3c:46:3c:1b:1c:f2:08:c9:67:d4:93:c8:
d9:88:81:8a:b9:9e:48:e9:68:1c:bd:60:f4:fd:0d:33:13:15:
87:05:67:45:c7:7e:dd:43:84:60:5f:9a:4c:60:f7:99:29:ec:
33:93:d9:35:3d:9e:ae:71:a2:59:08:c3:1e:ed:07:b6:dc:23:
42:9f:76:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org