Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/LldAJBxNwS3zKmwwp8f1gW1MW0g.roa
File: LldAJBxNwS3zKmwwp8f1gW1MW0g.roa (raw, json)
Hash identifier: jg+ukKyVfMpXKP1RZESxl12hfkvCYxRBymV5jdTAh+I=
Subject key identifier: 2E:57:40:24:1C:4D:C1:2D:F3:2A:6C:30:A7:C7:F5:81:6D:4C:5B:48
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/LldAJBxNwS3zKmwwp8f1gW1MW0g.roa
Signing time: Thu 15 Sep 2022 02:47:05 +0000
ROA not before: Thu 15 Sep 2022 02:47:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.17.17.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:05 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2E5740241C4DC12DF32A6C30A7C7F5816D4C5B48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fd:26:8a:6d:52:bc:6c:6d:ac:bd:c1:60:64:
b2:12:55:b9:98:e8:eb:1a:e9:8c:bb:4b:a3:ef:46:
8d:21:7b:90:18:77:f0:91:f2:69:a5:e6:60:8c:44:
21:53:72:bc:51:0c:7e:53:bc:a2:4b:0f:d8:ea:d6:
73:f8:90:25:e4:63:75:72:cb:cc:a9:ec:38:70:db:
75:8a:cc:93:f5:6b:b6:b9:61:78:ba:ee:28:6e:b1:
e9:7d:60:bc:95:18:f1:57:c6:f5:b1:8b:a0:f0:f2:
be:64:99:85:af:a4:f3:cf:42:4e:95:47:ce:a2:85:
a5:69:60:0f:da:96:40:ea:ac:cc:af:01:4c:4a:9a:
7f:d2:a0:4f:d1:a8:8d:5b:aa:53:9d:84:40:10:f5:
71:f1:e2:44:82:0b:0a:a6:7d:ef:7c:bf:42:2e:92:
0d:5e:74:67:08:63:10:ee:c2:ee:c0:52:31:43:f5:
e3:3f:83:b4:33:f8:a0:4d:55:ed:ab:83:08:e2:0e:
c7:ef:e5:7d:75:da:a3:00:9e:02:9e:4f:ae:59:f4:
c9:c2:a0:40:52:b1:d6:b9:50:b5:e7:f4:0e:ad:41:
4c:e5:5e:04:c2:29:7a:02:f2:f4:ec:e3:a9:e9:6a:
7c:ef:a6:15:d7:71:c7:b7:b3:58:13:49:b0:cd:03:
57:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:57:40:24:1C:4D:C1:2D:F3:2A:6C:30:A7:C7:F5:81:6D:4C:5B:48
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/LldAJBxNwS3zKmwwp8f1gW1MW0g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.17.0/24
Signature Algorithm: sha256WithRSAEncryption
62:3b:0a:b2:ad:0e:fc:96:54:ed:b4:eb:a5:dc:e3:7d:e3:45:
d2:90:ea:01:90:5d:25:03:8a:6f:4f:8b:0f:ae:ec:ce:83:03:
0f:d1:7a:25:86:61:aa:b7:e6:99:9f:48:b8:a2:10:69:7a:be:
1c:44:dd:95:d4:f4:0b:1f:70:2d:8d:7d:30:41:78:47:28:8d:
90:6c:e2:6a:9f:66:09:bb:6c:49:56:2c:91:ba:d1:fa:d6:0d:
ce:d8:8a:47:15:a0:24:3e:99:79:0f:1e:19:d2:d0:c1:a6:13:
8f:51:75:0f:fc:d5:ad:17:0a:e8:01:d1:2a:20:41:d8:08:06:
27:e4:81:7b:93:4f:5a:58:6f:2a:9f:0b:5b:19:c4:74:47:f0:
65:fb:c1:e4:3b:83:c3:c3:92:41:4b:88:73:86:b0:d6:61:66:
ac:ef:2a:35:0f:33:67:c9:7e:f7:01:1a:bb:49:1c:ea:6a:3a:
60:05:22:4e:4a:70:9c:76:7a:0f:5b:34:3f:f3:d5:c4:8e:82:
f9:d8:ec:0b:d3:71:53:34:4a:8c:77:4f:38:a1:eb:2e:12:55:
e9:cf:e2:f4:f1:42:f9:03:19:e7:5e:ff:d8:a1:ae:fa:4e:90:
ba:71:26:07:07:29:d2:d1:1d:e9:65:e8:4f:d4:f0:ad:bc:66:
5d:87:2c:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:01 2025 by rpki-client