Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Mr6HwlPJc8wTJ1pTTDaOa_ojMT4.roa
File: Mr6HwlPJc8wTJ1pTTDaOa_ojMT4.roa (raw, json)
Hash identifier: BkVCcQf7P1yXnKNtVNbxF48IGK76p7B92ZG01XVV8EA=
Subject key identifier: 32:BE:87:C2:53:C9:73:CC:13:27:5A:53:4C:36:8E:6B:FA:23:31:3E
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B2C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Mr6HwlPJc8wTJ1pTTDaOa_ojMT4.roa
Signing time: Sun 07 Feb 2021 13:10:39 +0000
ROA not before: Sun 07 Feb 2021 13:10:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.7.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2860 (0xb2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:39 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=32BE87C253C973CC13275A534C368E6BFA23313E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f2:76:71:6c:d5:52:c4:3d:1f:ea:b5:40:cc:
a8:6b:76:bc:2f:4e:c4:f0:70:59:ad:d6:bb:66:44:
49:09:a2:71:b8:7c:fc:69:d9:5c:10:48:89:97:a9:
ab:5b:af:63:b2:a2:06:e0:18:bb:99:34:ca:ac:db:
3f:45:95:fe:eb:d3:d2:79:e3:02:d8:44:9c:7c:a0:
03:bf:0c:11:56:f0:05:1c:aa:6b:c9:8a:e0:29:eb:
60:dd:c2:28:85:af:d7:a6:15:37:e2:44:2d:28:58:
85:8b:c0:78:68:58:15:3d:64:75:64:06:b5:1b:bb:
27:35:a3:36:14:70:e2:58:71:68:c1:40:1f:cb:57:
87:c2:ee:9c:b8:98:22:07:5d:df:22:07:01:69:4b:
a2:b6:7d:80:c8:ef:a3:35:81:3b:67:20:63:fc:92:
a8:52:91:d4:98:8e:9e:77:e6:9e:74:18:87:fa:07:
b8:6c:cb:8d:88:05:d2:d7:ef:c9:31:fb:32:2e:05:
93:1f:a3:9c:bb:ab:2c:f6:d9:53:62:19:68:80:26:
45:91:b1:77:e1:1d:3f:30:6c:12:51:4e:b1:2f:c1:
ce:71:c3:de:20:ac:ba:61:5c:1e:db:45:d0:30:9d:
4c:ca:84:1d:6a:bc:0c:8b:ab:80:12:b4:a9:68:e2:
8c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:BE:87:C2:53:C9:73:CC:13:27:5A:53:4C:36:8E:6B:FA:23:31:3E
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Mr6HwlPJc8wTJ1pTTDaOa_ojMT4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.7.0/24
Signature Algorithm: sha256WithRSAEncryption
96:91:9b:88:e0:ec:98:f6:48:c2:2b:30:a4:ca:06:21:be:5d:
40:55:4c:ae:0d:a5:45:e0:b7:fe:ab:95:ee:fd:ed:f6:eb:ac:
ee:4f:f6:73:97:6b:62:4e:83:91:86:1a:d5:93:9d:ba:56:50:
69:3e:3d:59:f0:41:54:f9:76:b8:d2:fa:90:c8:89:f2:82:80:
9d:51:e0:7e:90:1c:a6:12:75:72:9b:56:3b:47:db:34:af:5b:
58:7b:2f:03:f8:66:40:8f:b1:e6:0c:b0:c6:16:b6:5a:60:88:
5c:2b:ba:32:1c:69:ab:15:3e:6a:93:a0:41:9c:14:e3:9e:ba:
0d:ac:72:52:75:29:11:3e:16:cf:93:89:02:40:1b:e0:81:19:
3e:50:dc:da:8e:4c:08:c1:e4:70:e7:d0:66:42:d2:ca:ea:1d:
18:e4:cf:c7:84:64:b9:82:ee:83:88:52:68:d6:e7:cc:b4:50:
c9:92:12:04:4b:d9:9d:56:3e:55:94:ee:f3:af:ad:ab:f6:34:
de:0d:fa:31:50:60:d9:75:cf:3a:9f:33:9b:e8:37:ca:23:fb:
4f:ca:62:3a:73:69:53:47:9d:cc:ed:b3:27:6d:f8:e3:44:65:
c2:9d:66:18:f9:70:df:ff:d0:1c:d9:8d:8b:7c:6d:11:7b:a6:
a0:0b:cf:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org