Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/I9P0Bj98FoGCOrb4a8GtRD_6UGQ.roa
File: I9P0Bj98FoGCOrb4a8GtRD_6UGQ.roa (raw, json)
Hash identifier: S9JIPghqD/2+p3bcJ4+V5vJ0bC2r8zDJpLYcBxZ4KvY=
Subject key identifier: 23:D3:F4:06:3F:7C:16:81:82:3A:B6:F8:6B:C1:AD:44:3F:FA:50:64
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 09C5
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/I9P0Bj98FoGCOrb4a8GtRD_6UGQ.roa
Signing time: Wed 23 Dec 2020 06:09:16 +0000
ROA not before: Wed 23 Dec 2020 06:09:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 13335
IP address blocks: 210.17.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2501 (0x9c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 23 06:09:16 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=23D3F4063F7C1681823AB6F86BC1AD443FFA5064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:68:ed:92:59:fc:38:eb:e8:1e:60:1e:d7:d1:
0a:e2:09:7e:2e:6d:92:36:d2:4c:25:e1:50:de:25:
ec:3c:4b:ba:34:1e:73:a1:a0:7a:a8:d9:27:fe:d1:
60:7f:65:75:a4:29:9d:e5:20:25:44:37:bd:95:36:
9e:a7:90:fe:9b:e7:ee:a9:55:ad:5f:dd:3d:32:60:
7e:c3:81:64:3e:7c:9d:2d:4d:8f:78:f6:0a:03:c2:
d1:af:e6:c9:5b:89:aa:c3:a4:cf:1f:aa:2b:ec:c2:
a5:29:46:da:1d:a2:1f:b2:83:91:ea:1f:77:75:8e:
2c:a3:23:ac:db:c3:34:6b:62:10:a5:3d:76:57:2a:
5d:51:d3:7a:1f:55:81:24:ae:08:4d:06:35:91:4d:
a7:0b:a4:ea:80:05:6f:22:25:fe:6e:3d:cb:c9:8e:
17:25:bc:fb:2f:b4:f4:35:d0:1a:4f:55:52:1a:ac:
2f:06:2b:b6:e7:6b:6a:89:c1:04:8d:85:f7:e4:16:
18:0c:7a:87:85:1e:4d:d1:b8:20:f8:8f:27:98:6f:
b9:c3:8a:53:10:20:41:a3:f2:ed:81:35:11:c2:44:
05:b7:f7:b7:43:a1:48:6f:b6:75:a3:ac:3d:7b:57:
61:97:d0:0d:b2:cc:2d:2c:24:4a:99:93:ad:f5:5c:
f8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D3:F4:06:3F:7C:16:81:82:3A:B6:F8:6B:C1:AD:44:3F:FA:50:64
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/I9P0Bj98FoGCOrb4a8GtRD_6UGQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.44.0/24
Signature Algorithm: sha256WithRSAEncryption
09:4e:54:bc:3e:ce:1f:79:24:e6:3a:58:fe:76:77:67:a2:0a:
27:7f:83:24:89:18:d1:65:41:ae:ad:db:b4:97:a2:cf:98:6f:
e3:5e:f5:b8:1d:bc:06:19:44:31:27:f5:50:9e:12:b7:a5:7e:
4c:43:e5:1e:8c:e6:49:49:35:33:78:c2:c2:7e:63:10:5c:e3:
a0:60:c3:2d:24:fd:fb:16:b4:ce:4b:45:04:fb:31:fe:b2:54:
95:3b:71:a0:18:ee:41:25:30:2d:ab:a8:e7:79:8a:7c:ce:03:
b7:d3:0a:4d:d0:be:62:62:23:42:79:3a:22:5c:0f:a3:89:22:
04:dd:59:a8:6e:2b:ab:65:53:c1:ee:f2:a2:dc:a9:43:e0:cd:
f3:5c:fd:56:0c:b2:25:f4:cc:fe:81:e4:51:de:07:05:00:ba:
9b:41:67:8f:a9:52:7f:5e:bb:16:c8:f6:89:28:68:ab:46:c0:
2e:de:cb:ed:3e:77:ac:db:8f:bb:c4:51:5c:8a:f8:d1:ce:dc:
78:a5:69:59:22:94:a0:ae:f3:ff:1e:ba:83:ce:e7:6b:af:56:
8e:ef:bc:f6:e1:75:93:bf:33:f3:9c:f2:c7:f8:d3:60:62:9d:
29:ae:d2:d9:96:10:14:5b:dc:86:11:6f:86:f7:34:9c:24:96:
41:81:28:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org