Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8qNI6eMOJ6e7T3DyUFHq3mpfYiY.roa
File: 8qNI6eMOJ6e7T3DyUFHq3mpfYiY.roa (raw, json)
Hash identifier: IRJlbKJ5br5DPdl+AO0dW63KfQPXkpjW8ggJvWkzOhA=
Subject key identifier: F2:A3:48:E9:E3:0E:27:A7:BB:4F:70:F2:50:51:EA:DE:6A:5F:62:26
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 098E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8qNI6eMOJ6e7T3DyUFHq3mpfYiY.roa
Signing time: Wed 16 Dec 2020 02:26:32 +0000
ROA not before: Wed 16 Dec 2020 02:26:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.17.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2446 (0x98e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:26:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F2A348E9E30E27A7BB4F70F25051EADE6A5F6226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:41:0c:d9:f1:dc:e7:19:84:f2:b3:3d:87:86:
80:ba:00:dd:9f:d8:cf:b8:0f:ca:6a:bd:45:ec:c9:
69:bd:35:c7:76:a6:95:4a:f5:6d:a9:bc:69:b0:53:
4f:df:6e:e7:a0:73:f7:81:cc:27:85:06:1b:54:1f:
79:86:25:ce:e8:61:87:44:fa:dd:ec:e2:26:20:33:
23:fe:bd:85:8b:db:af:c3:ec:e5:19:3a:5a:24:fc:
e1:14:4f:c7:05:df:e4:25:bc:bf:1d:90:b5:83:5c:
9b:40:95:26:2d:2f:4d:2e:9f:10:b1:22:56:21:11:
41:1c:73:ce:e3:2e:a0:c2:01:2d:7a:99:85:67:87:
36:4c:dd:ab:31:48:03:82:d7:60:4c:7b:c2:c1:5a:
fd:a1:cd:eb:6e:1d:a6:3b:82:c8:f3:a9:03:2a:c1:
0f:ae:e3:ee:51:c7:e3:32:a8:a8:b3:69:2d:4d:eb:
b3:dd:fc:97:42:a7:5c:f7:78:24:37:5d:35:bf:3e:
91:a6:46:24:17:a5:55:07:08:49:4d:74:a4:b9:11:
8e:65:30:46:1b:6e:48:35:d0:ba:80:37:0e:54:86:
56:6f:7e:72:1f:82:12:56:ad:76:b3:55:91:0b:e7:
08:49:d1:fb:25:3a:94:48:5d:e3:f1:7b:9d:fa:21:
63:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A3:48:E9:E3:0E:27:A7:BB:4F:70:F2:50:51:EA:DE:6A:5F:62:26
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8qNI6eMOJ6e7T3DyUFHq3mpfYiY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.17.0/24
Signature Algorithm: sha256WithRSAEncryption
39:5f:c3:dd:60:40:3f:60:03:ce:76:b0:c1:6a:8f:f6:ab:df:
91:d5:0f:34:86:79:cb:74:b3:51:07:44:4a:98:ae:a1:4e:52:
fb:a6:39:4b:a1:7c:b5:95:4b:88:a8:77:2a:98:48:a9:5c:57:
8b:63:8f:57:87:5f:e9:01:0b:65:e8:8f:0d:00:a5:99:50:32:
58:d7:b8:93:57:f3:2e:2f:bd:c4:a5:fe:02:9b:17:6d:cd:c6:
22:cd:ee:b3:46:8f:13:e3:55:fd:2e:68:48:7f:09:39:32:b3:
02:6e:3d:a6:ff:0a:8a:82:3b:ad:00:21:e5:47:3c:75:2d:81:
34:c6:43:16:42:52:69:eb:49:31:5c:d0:bb:6f:ad:c3:fe:b5:
d1:08:91:1f:3f:db:47:18:a5:25:c5:11:5d:c9:c1:e1:14:38:
78:08:f5:b6:4e:b4:20:7b:65:0e:34:ba:f0:89:0a:f9:bb:b8:
6f:a0:e3:b6:45:da:01:c0:60:25:a8:c3:1d:c8:0b:d0:34:82:
5e:c4:5f:1d:e1:b1:57:69:76:2c:60:d5:92:6f:cc:cf:b7:50:
2a:be:cf:3d:62:66:03:58:dd:0e:91:15:f5:86:d6:92:d9:cb:
e1:0a:02:c7:ed:06:d2:73:35:4e:01:94:a9:8a:fa:7d:1d:61:
4f:16:91:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:10 2025 by rpki-client