Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IceJpMxSpZi_DtZPZ-2UyWrB-HA.roa
File: IceJpMxSpZi_DtZPZ-2UyWrB-HA.roa (raw, json)
Hash identifier: Hlogq0X7vvTXY5wkzpV0e+bZuCQIYgqdrI/EjbNghaI=
Subject key identifier: 21:C7:89:A4:CC:52:A5:98:BF:0E:D6:4F:67:ED:94:C9:6A:C1:F8:70
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C43
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IceJpMxSpZi_DtZPZ-2UyWrB-HA.roa
Signing time: Wed 29 Sep 2021 02:49:37 +0000
ROA not before: Wed 29 Sep 2021 02:49:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.17.17.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3139 (0xc43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:37 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=21C789A4CC52A598BF0ED64F67ED94C96AC1F870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2e:ab:77:8d:e7:b5:ac:8c:2c:d0:36:08:93:
cf:25:52:50:7e:df:31:ec:e9:ae:55:8b:16:35:06:
47:25:d7:97:b4:a9:4a:a9:e5:1d:fe:8d:13:c5:ac:
16:6a:ff:ef:6e:4a:56:32:72:95:d4:38:c4:49:2f:
c5:96:7a:f4:31:05:99:a6:9a:53:94:fb:2f:ea:3b:
a1:e8:1a:79:b0:dc:a6:00:d7:a7:b0:36:ab:46:94:
c9:d5:cf:b6:27:bd:82:91:e3:c7:b1:2c:93:83:ff:
19:af:c9:14:d6:af:0a:a9:4c:29:0d:78:58:18:4f:
a3:05:b0:27:b5:86:f4:ab:bd:36:38:22:58:aa:a4:
3d:d0:03:5c:89:db:4f:c1:c6:f7:81:5f:6d:a5:44:
f1:e8:2b:44:39:9e:e4:20:a5:e1:4d:d0:3b:55:6e:
40:77:7c:5b:4e:94:b0:a7:8d:43:46:eb:33:a6:ea:
e2:41:3c:25:41:76:13:c5:f7:d4:da:2f:41:4a:71:
08:48:4c:dd:8a:6f:50:bc:36:c0:c3:e8:36:ce:f8:
03:18:df:9d:f3:ce:2a:2c:54:ce:45:3f:66:61:13:
6a:41:da:07:68:b3:5e:05:85:b6:13:8c:87:1f:36:
ed:77:84:63:04:61:a6:e4:d1:69:e2:37:73:75:1e:
49:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:C7:89:A4:CC:52:A5:98:BF:0E:D6:4F:67:ED:94:C9:6A:C1:F8:70
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IceJpMxSpZi_DtZPZ-2UyWrB-HA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.17.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:aa:ba:ca:bb:12:ef:c2:1a:d4:f3:c8:80:96:c7:da:38:b4:
3b:11:2c:ff:37:9b:b5:cf:4d:c1:c2:b9:e2:3d:0d:6f:7e:1c:
34:eb:6c:f7:fb:21:ff:1e:0b:60:65:fd:95:6c:bb:e5:2a:f3:
89:c5:45:36:dc:a1:a1:9e:06:a2:c1:30:44:56:17:a5:8f:87:
5c:cd:28:5e:44:39:0c:29:09:b9:6a:34:68:63:2f:ba:1d:0b:
f7:c2:c4:81:29:3b:71:b2:2c:5d:67:92:fe:11:df:2b:1f:a6:
d9:0e:59:e2:55:a2:4e:69:b5:3c:d1:98:f7:5c:0c:df:2e:7a:
b9:6a:b3:88:c3:07:0b:de:c9:53:c9:56:86:51:5a:af:76:bc:
3c:ca:21:15:cf:34:0c:9d:34:ef:ec:f2:3d:8b:47:91:0c:5b:
8e:f9:71:97:46:b1:3b:fe:74:02:42:e5:d6:b5:89:44:0b:3d:
aa:79:b0:d6:cc:29:d7:e8:32:01:e5:a0:a5:ee:56:8f:07:6b:
dd:ad:4a:4a:6e:e6:ed:57:de:c8:7d:26:4b:56:9c:37:18:de:
ba:d1:f0:40:c2:8d:9e:a9:e5:d5:c2:cf:29:58:8d:17:8e:20:
bc:42:0d:46:b0:02:bc:44:11:f1:24:8f:ce:a9:fa:1f:8f:6c:
ac:5d:fd:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org