Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KijvESuNlvtG4bwRos3rrIe5dF4.roa
File: KijvESuNlvtG4bwRos3rrIe5dF4.roa (raw, json)
Hash identifier: RnxmFc9EW9imtGMn2MznT1NMXpyhvdJsWrv0HpkJK28=
Subject key identifier: 2A:28:EF:11:2B:8D:96:FB:46:E1:BC:11:A2:CD:EB:AC:87:B9:74:5E
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 099E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KijvESuNlvtG4bwRos3rrIe5dF4.roa
Signing time: Wed 16 Dec 2020 02:38:17 +0000
ROA not before: Wed 16 Dec 2020 02:38:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.78.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2462 (0x99e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:38:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2A28EF112B8D96FB46E1BC11A2CDEBAC87B9745E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:54:97:da:9a:65:5e:38:1c:cc:df:88:2c:9d:
07:85:b3:98:61:a4:72:55:31:79:4d:66:52:39:55:
79:bc:da:1e:2b:b3:8e:4e:a9:48:6d:54:43:c8:7b:
38:da:61:2f:ca:2c:a1:3f:3e:5a:96:0b:e5:13:a6:
8f:bc:41:1c:19:12:79:60:32:6e:35:b2:c8:c2:c0:
f7:85:4b:a7:d3:b5:ec:74:fa:52:cd:da:6c:52:17:
a7:e4:a0:58:bf:28:3d:83:dd:53:99:29:7a:cd:67:
34:24:ba:4d:5e:29:5f:17:86:bf:90:e9:07:29:c0:
16:89:98:0d:43:d7:6e:ec:81:c1:ea:aa:a2:99:12:
0e:24:c6:6b:96:df:ec:37:a4:ed:c4:8a:d0:3a:24:
95:7d:c8:6a:ee:27:f8:39:39:69:01:53:42:3b:98:
36:f0:90:7f:0d:f9:38:e3:08:71:20:04:59:0e:0b:
7b:d6:5b:7b:4a:d2:fd:0c:4a:13:da:04:76:62:62:
24:58:34:a1:90:f2:0a:27:a6:9e:9e:39:a2:81:c1:
53:7c:91:60:8b:9f:66:35:1d:5f:7e:cc:34:d3:3c:
27:2a:49:8f:3a:7f:ae:89:c3:77:0c:40:95:98:bb:
a0:a6:07:4c:42:6c:9b:da:59:6c:0e:4b:a0:60:0a:
06:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:28:EF:11:2B:8D:96:FB:46:E1:BC:11:A2:CD:EB:AC:87:B9:74:5E
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KijvESuNlvtG4bwRos3rrIe5dF4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.78.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:36:dc:c0:17:ae:b0:e9:1e:f8:df:6a:27:a3:59:f1:69:07:
8f:87:3a:00:a8:35:6f:86:d6:d3:2d:b0:ee:57:ce:c0:81:7e:
92:ff:da:08:0d:5e:58:0a:12:f1:dc:72:8e:5a:89:5c:60:95:
3e:87:3c:4f:fc:e1:54:92:33:e1:0a:66:37:d9:b1:fc:95:73:
19:21:6e:1d:df:50:db:c4:b4:a6:b7:3a:65:d3:b7:f7:80:c3:
58:17:4c:37:c2:ba:5f:7f:d9:96:75:0b:71:db:1a:6f:eb:96:
c9:af:7c:10:ff:79:5a:eb:03:39:68:f4:3e:3b:72:2f:93:a5:
75:ad:f8:20:ed:09:fb:5b:ac:3b:6e:78:a6:96:65:f9:91:16:
cf:04:3d:dd:f5:eb:93:72:83:ab:c1:9b:d0:4d:46:73:f0:db:
1c:01:54:64:78:57:08:b9:7e:e0:28:57:55:8d:fe:83:34:e5:
f5:ef:a8:34:3f:41:51:88:9b:a9:eb:5d:02:cb:ff:6c:f4:cb:
c2:08:6c:71:99:e9:d1:84:a0:0b:d0:ec:d8:92:93:f0:e9:b5:
27:7b:49:ac:59:f5:cd:a9:97:07:e4:56:db:8a:97:ee:4a:9b:
ff:22:85:8f:fc:49:0c:51:93:18:78:d3:17:e6:15:62:95:0f:
a0:70:15:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org