Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Nl8-qM57866EhRrdOI56swBw9mE.roa
File: Nl8-qM57866EhRrdOI56swBw9mE.roa (raw, json)
Hash identifier: W2Wl8Y9ylV1d/BRAuYNyDT0nDzGrW34yxYVSGFn5BF8=
Subject key identifier: 36:5F:3E:A8:CE:7B:F3:AE:84:85:1A:DD:38:8E:7A:B3:00:70:F6:61
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C6F
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Nl8-qM57866EhRrdOI56swBw9mE.roa
Signing time: Wed 29 Sep 2021 02:49:50 +0000
ROA not before: Wed 29 Sep 2021 02:49:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.17.16.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=365F3EA8CE7BF3AE84851ADD388E7AB30070F661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:2c:47:b8:39:70:49:01:b7:a8:a4:66:3b:3d:
ec:1e:5f:20:83:33:b4:e2:4f:9a:02:3b:36:26:39:
3e:a5:b8:18:7b:20:04:84:a2:4d:37:08:7a:21:1c:
f4:38:0d:59:e8:d9:0b:62:68:de:08:bf:7b:dc:3b:
54:df:31:b1:aa:b9:fd:97:73:7d:bf:75:31:97:ab:
31:d3:57:e0:fb:4a:48:02:82:6b:57:67:e6:5e:3b:
19:8f:e5:1c:63:aa:98:d3:6d:af:bc:84:0b:36:06:
33:50:61:dc:0e:74:00:2a:9b:ec:a1:ab:0f:9d:42:
e7:5d:db:3b:97:6c:71:b6:18:ca:4a:a6:ab:88:bf:
6c:24:38:55:7c:6e:a8:41:15:61:3c:bb:eb:84:3c:
19:71:cc:7d:18:c0:e5:2a:3e:45:f4:c8:e8:f2:98:
c6:9b:5a:ab:dd:97:36:23:b4:8d:50:fb:a1:b2:9b:
8e:80:9d:e6:ed:17:eb:42:72:86:b8:14:13:d2:6c:
9b:84:83:55:4f:ee:fc:0f:32:ab:40:bd:20:41:9b:
16:e6:26:a7:2a:6a:3e:83:10:5a:5a:7f:ad:8a:89:
81:fd:ab:78:93:f8:e6:b6:8f:ca:bc:cf:7d:dd:b0:
c4:26:f1:a5:59:e3:c6:74:8c:2b:7b:9b:66:7f:af:
b9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:5F:3E:A8:CE:7B:F3:AE:84:85:1A:DD:38:8E:7A:B3:00:70:F6:61
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Nl8-qM57866EhRrdOI56swBw9mE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.16.0/24
Signature Algorithm: sha256WithRSAEncryption
56:7e:d7:7e:d7:be:f3:5b:28:cc:a8:65:10:4c:d9:5b:81:b2:
10:f0:b3:35:f6:1f:ef:be:bf:4d:e4:ae:b2:1f:24:a8:ff:bd:
ba:ef:cf:c3:f5:0a:fd:85:d4:20:a1:e3:67:75:3c:33:9c:d7:
9c:36:88:1c:56:81:53:79:83:24:27:32:b8:86:5e:f1:3c:b8:
ae:f1:bd:f7:50:d8:41:0e:82:3b:f9:4b:d0:bf:7a:09:45:f1:
b2:e0:3b:b8:21:f5:c0:e2:54:15:7c:29:a6:e6:2c:38:cc:8d:
cd:c0:08:c1:58:e6:17:0a:4c:36:e9:bf:34:15:6d:23:3c:72:
f4:d4:47:3e:49:b3:2e:2a:c6:ef:39:91:13:53:75:da:83:78:
fb:48:73:78:aa:15:7f:ca:2f:08:87:7f:49:ab:5d:62:64:3d:
7c:8e:f3:d9:57:ed:17:b8:8d:d7:6d:7b:d9:c1:9e:b9:e2:8d:
e7:60:e1:92:8d:7b:af:ae:39:f7:62:e6:10:21:f2:60:91:29:
59:44:b9:13:7b:69:49:8c:8a:af:28:ba:29:04:a1:d9:59:ea:
5f:68:85:49:b1:44:45:49:ae:ec:61:61:9c:dd:89:9e:74:1b:
91:24:04:1a:94:9c:f2:02:9f:96:b4:3b:c6:40:7a:c0:7a:41:
13:83:13:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org