Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/A4NlHmpfa7ht-yP2i7Y528JJv4s.roa
File: A4NlHmpfa7ht-yP2i7Y528JJv4s.roa (raw, json)
Hash identifier: ZHCAZtQKyHzoGLeHDBZc8vSUu57j1kNnvQIpjmIqKcc=
Subject key identifier: 03:83:65:1E:6A:5F:6B:B8:6D:FB:23:F6:8B:B6:39:DB:C2:49:BF:8B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AA6
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/A4NlHmpfa7ht-yP2i7Y528JJv4s.roa
Signing time: Sun 07 Feb 2021 11:36:52 +0000
ROA not before: Sun 07 Feb 2021 11:36:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.208.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2726 (0xaa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0383651E6A5F6BB86DFB23F68BB639DBC249BF8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c6:72:55:29:c8:a9:d1:6d:9e:90:34:bf:fd:
d7:2b:60:57:18:bf:03:cc:bb:86:9a:42:20:55:62:
50:d9:9f:bc:c1:e9:72:22:f9:b3:7e:96:28:82:20:
02:dd:1e:76:84:d7:da:10:d7:3f:b8:94:29:84:a6:
47:82:c2:50:4d:c9:a0:7b:51:47:5f:e2:4e:e0:94:
1a:65:f7:6d:ef:bf:65:e0:ce:e9:eb:b8:7e:a7:ed:
a4:6a:b6:18:3f:f1:00:0c:85:93:b0:96:f5:03:a9:
fd:9d:37:21:e7:ae:2f:ee:2a:fc:8b:bc:45:ba:40:
0a:f7:bb:6b:68:23:ec:59:35:1f:cf:03:64:44:41:
72:83:12:51:fa:c5:30:25:91:5a:c2:6a:0a:c2:1c:
7a:99:11:97:c4:ac:03:cc:85:45:5b:41:86:07:a0:
49:a6:ae:68:52:ab:35:a9:7c:ac:75:07:62:5f:a6:
ec:31:9c:46:05:7f:d9:bc:3f:3d:5e:ff:76:fd:c3:
7b:43:83:7e:a8:44:81:72:3c:dd:7f:44:1e:2e:16:
9c:6a:b6:aa:8b:b4:57:7c:ed:7a:8c:ce:13:94:84:
88:29:e3:dc:b0:64:0b:1a:05:e1:40:55:19:cd:29:
78:4c:69:a4:05:d8:35:5f:1d:13:78:d5:be:2a:41:
a4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:83:65:1E:6A:5F:6B:B8:6D:FB:23:F6:8B:B6:39:DB:C2:49:BF:8B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/A4NlHmpfa7ht-yP2i7Y528JJv4s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.208.192.0/18
Signature Algorithm: sha256WithRSAEncryption
89:2b:e2:32:05:38:82:66:14:ec:69:90:47:ac:07:96:57:0e:
44:c6:d2:26:19:d9:4e:ca:6e:c8:b6:e4:4f:59:3b:61:e9:00:
b4:34:f6:e0:a9:92:45:b3:98:b5:e1:ef:8a:fd:8e:44:cc:e7:
96:39:f5:26:fc:dd:3a:5c:e1:a3:10:d4:77:d6:19:94:5d:ff:
eb:5f:d7:07:32:92:5b:0b:7b:be:58:ca:06:68:7f:8b:fc:ed:
07:d8:5a:bc:5e:37:a5:8a:5b:0d:00:ca:0d:3b:91:c5:95:ac:
39:a8:8f:ac:74:bd:87:64:6d:55:cd:30:c8:a3:84:e7:3b:83:
bc:a4:71:2d:57:fd:0a:7d:41:72:2f:c0:1c:1b:d1:da:f8:c1:
69:f0:21:b5:fe:37:b7:e9:25:fb:fc:9f:2c:06:64:cf:e4:7d:
f6:e3:38:a2:49:94:3d:91:55:73:14:89:15:b1:e9:78:70:ad:
02:dd:07:28:6f:eb:24:15:1f:6a:45:21:3b:c6:f1:7a:7a:95:
8a:2f:9f:bd:a8:93:ea:7c:8d:10:7b:fa:ee:1f:22:31:70:93:
73:ed:dc:e7:b8:d4:6a:45:3d:e6:df:10:9d:ad:0d:e6:c8:96:
69:e5:de:94:1a:4c:16:ba:aa:9b:31:36:d2:4a:d8:42:75:d6:
d0:7d:e8:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:06 2025 by rpki-client