Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5dSoQrHrWLNjvxXXCwIxv_wct2o.roa
File: 5dSoQrHrWLNjvxXXCwIxv_wct2o.roa (raw, json)
Hash identifier: okOjO6/Aspp0WJVFISulzThVtG4XQ6igugI4zgOjVSg=
Subject key identifier: E5:D4:A8:42:B1:EB:58:B3:63:BF:15:D7:0B:02:31:BF:FC:1C:B7:6A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5dSoQrHrWLNjvxXXCwIxv_wct2o.roa
Signing time: Thu 15 Sep 2022 02:47:17 +0000
ROA not before: Thu 15 Sep 2022 02:47:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.17.72.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E5D4A842B1EB58B363BF15D70B0231BFFC1CB76A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b7:bb:aa:7a:b6:e8:62:c6:36:f7:33:77:33:
f3:bd:0b:02:28:29:3b:6f:8e:87:5b:97:d1:fb:8c:
91:1d:89:dc:e7:9c:3f:d0:44:1e:12:48:0e:72:08:
5c:67:8c:28:55:28:63:9a:0f:a8:8d:07:dd:78:f6:
a4:9f:ee:f1:e0:68:1a:fd:06:a8:04:5c:71:27:41:
9e:19:99:5e:ce:df:62:8e:61:26:95:ff:b0:2b:99:
29:88:73:ca:02:05:7c:ff:e5:9b:85:cc:6d:a6:66:
57:a3:a7:3b:18:3a:c3:09:c0:49:7d:3b:92:0d:f1:
42:de:59:ff:0b:1c:19:ee:44:cc:54:96:66:f1:5b:
4c:b1:d8:56:7f:9d:94:02:5c:35:37:16:77:ad:6a:
7b:24:b3:44:c5:72:53:9b:1c:ec:8d:ae:6c:98:b9:
00:80:bb:d0:f9:43:07:80:7c:71:84:cf:7b:89:3f:
0a:33:61:42:a9:22:9b:c1:26:44:6e:48:59:92:fe:
87:2d:b8:15:d8:1a:6a:fe:f9:4b:e2:d9:4b:cf:4c:
3d:10:4e:f1:2c:70:ec:cf:6e:de:09:f8:40:03:b6:
8e:0b:4c:23:c7:46:20:3a:c5:a5:fe:b5:14:02:2e:
7e:59:df:96:56:ba:74:da:f9:a3:73:20:3f:f5:43:
81:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:D4:A8:42:B1:EB:58:B3:63:BF:15:D7:0B:02:31:BF:FC:1C:B7:6A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5dSoQrHrWLNjvxXXCwIxv_wct2o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.72.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:38:cc:3a:5d:ee:5c:0e:79:7e:e0:84:ad:20:d2:3c:1f:81:
2c:f8:31:61:10:d4:99:a3:24:93:c6:09:da:10:90:da:93:b1:
3b:fa:8c:31:b7:aa:28:09:18:9d:98:1d:35:75:cd:ff:2b:0b:
82:6c:ff:39:72:8e:06:36:27:04:1c:ff:2c:3c:28:fe:42:28:
61:68:ee:37:7d:cb:45:5d:3b:af:99:c5:cd:28:c1:e7:37:8a:
02:ef:86:17:ad:64:1e:68:75:1f:e2:77:25:fb:75:38:6c:be:
c7:4f:68:8c:4c:de:d4:4c:08:7e:c1:7d:4b:c2:d0:b6:24:26:
88:d3:60:35:28:ab:1b:01:26:a4:b0:55:25:7e:61:d3:8d:68:
73:84:b1:78:4f:8f:f7:42:07:71:fd:c6:9b:08:6c:30:13:e0:
56:de:be:7f:9f:8c:4a:e2:f3:bc:7c:23:82:1f:9b:ec:41:2d:
f4:1c:37:34:01:07:6c:82:10:4e:97:9b:99:58:31:93:21:52:
0d:ef:c1:a2:71:d3:bf:46:58:64:3f:fe:65:ae:53:28:d2:f9:
fb:e8:3d:19:43:c2:ff:05:83:c4:62:86:27:d2:a4:b7:03:68:
11:e4:f6:43:50:07:a3:7c:ce:3f:e1:1e:59:5d:e6:51:fe:95:
ee:a7:da:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org