Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KzcA19jKHz3i5MgC2pkQ-0wsiTA.roa
File: KzcA19jKHz3i5MgC2pkQ-0wsiTA.roa (raw, json)
Hash identifier: vun9v2qsTSwaR3g0WZe4GM9mQU1lutWcQgs9rGE3+Ok=
Subject key identifier: 2B:37:00:D7:D8:CA:1F:3D:E2:E4:C8:02:DA:99:10:FB:4C:2C:89:30
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A9E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KzcA19jKHz3i5MgC2pkQ-0wsiTA.roa
Signing time: Sun 07 Feb 2021 11:36:46 +0000
ROA not before: Sun 07 Feb 2021 11:36:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.67.208.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2718 (0xa9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2B3700D7D8CA1F3DE2E4C802DA9910FB4C2C8930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:93:9b:65:02:35:1a:65:53:b7:08:ce:ce:9b:
73:f3:29:d4:86:4a:f2:ca:dc:aa:b7:13:00:51:c6:
64:c6:3c:fa:92:0b:fe:b3:4b:c0:eb:1f:7a:18:8f:
64:5d:82:c0:72:41:2c:b0:91:88:af:bb:00:60:bb:
96:6c:39:2c:b3:20:2b:03:ef:a2:fd:15:0e:ca:39:
65:64:97:f4:b2:12:b8:30:0e:86:e1:95:40:64:b7:
69:da:26:f8:c4:67:52:6a:b5:58:ba:7c:62:42:77:
87:f2:4b:6a:ad:77:6a:83:7b:c6:54:e5:aa:22:89:
f9:b3:71:5d:f2:a2:1e:f3:2c:9e:da:ed:53:2f:4f:
84:74:ee:31:9b:ca:3f:75:10:0b:2e:94:d8:48:c7:
d2:5b:13:f1:3d:aa:e0:47:2f:76:32:43:1d:08:7b:
48:95:4a:cc:b0:e7:b5:8a:b3:07:8f:87:15:f5:8b:
ec:69:b9:0b:24:e7:09:54:75:a5:ac:46:cd:7c:c3:
44:ec:93:c8:6e:a6:a6:61:13:ea:32:7d:d3:8d:d3:
9a:20:d9:5f:cd:39:d4:35:bb:53:01:ef:c4:66:6c:
51:48:96:06:78:d3:4e:e1:0e:d2:e9:2f:ed:f3:9c:
94:54:5d:e3:e8:c2:73:fc:89:03:e8:bf:60:58:54:
d0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:37:00:D7:D8:CA:1F:3D:E2:E4:C8:02:DA:99:10:FB:4C:2C:89:30
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KzcA19jKHz3i5MgC2pkQ-0wsiTA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.208.0/20
Signature Algorithm: sha256WithRSAEncryption
1c:11:24:a2:b1:41:be:cb:0c:dc:e9:19:1e:30:ec:e2:f0:69:
33:eb:07:ed:28:49:90:d0:8a:12:b9:33:b0:43:a9:73:07:3e:
b6:47:8b:12:f6:91:52:fb:36:4c:42:4b:1a:c4:75:8a:65:c3:
64:28:8b:14:a4:cc:2a:72:0a:b1:88:65:39:42:1a:17:35:d4:
aa:7c:28:98:72:19:3c:ff:43:29:a9:a3:c3:f6:a9:24:bb:11:
31:f2:53:7e:89:78:68:3d:b5:fe:0e:dd:9e:30:d1:1e:2d:dd:
91:d6:c7:fe:9e:d2:f1:fb:a6:71:88:13:93:25:b1:27:cf:c6:
34:25:c7:b1:47:97:2c:ee:a4:c0:69:8f:ed:c3:42:a5:6b:fd:
7a:d0:e3:1a:d3:b7:0e:dd:c8:67:4a:76:0a:36:21:bf:40:7c:
33:1b:0c:7d:18:57:c5:86:16:e8:2e:14:56:e0:ae:c6:7c:50:
63:ef:c3:48:2d:2e:d6:6f:32:f7:0a:c9:af:55:5b:93:c6:95:
76:47:3c:0c:22:22:6d:f9:fa:c2:b4:4b:92:c3:91:85:85:5e:
f0:66:be:7c:51:e4:0b:7d:bb:77:97:8b:70:b1:ab:a3:b8:a6:
37:4f:5a:54:65:93:54:12:9d:c1:40:d6:e0:8a:28:21:4a:cf:
a7:c5:3f:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org