Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/O4vfOJJRIeVulNUGTpwEiDfdMQo.roa
File: O4vfOJJRIeVulNUGTpwEiDfdMQo.roa (raw, json)
Hash identifier: BIrCI5KEd4eYQQD5AyoFkRyzeWXBGm1V3cfsJZpOH+I=
Subject key identifier: 3B:8B:DF:38:92:51:21:E5:6E:94:D5:06:4E:9C:04:88:37:DD:31:0A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 09A0
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/O4vfOJJRIeVulNUGTpwEiDfdMQo.roa
Signing time: Wed 16 Dec 2020 02:41:04 +0000
ROA not before: Wed 16 Dec 2020 02:41:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.79.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2464 (0x9a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:41:04 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3B8BDF38925121E56E94D5064E9C048837DD310A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:38:22:f6:fa:c6:cf:51:08:d7:0f:b1:7a:9a:
01:80:91:23:4a:61:d1:4e:a9:79:64:fc:ed:5e:68:
05:1e:f5:36:00:4f:60:e4:95:e7:c6:7c:b3:51:65:
b1:cc:5c:ad:be:f4:54:24:85:16:80:47:b3:fa:ab:
c0:ee:2b:79:3a:ce:72:e1:3f:00:d7:68:d1:b7:4d:
1b:16:72:62:ae:b7:4f:b9:72:be:b2:d8:8d:5e:bf:
04:98:68:8b:a9:f7:cd:a2:ba:1a:a4:51:96:49:8e:
12:e8:aa:23:9f:3b:4c:0d:73:b7:8c:4f:be:56:fb:
37:3e:fb:03:81:8d:96:f2:9a:1f:e2:a5:42:23:08:
de:74:56:b6:22:c5:ad:d2:06:41:e7:8e:30:03:b1:
3c:bb:5f:53:70:70:3b:ca:8a:c9:55:d5:4f:14:77:
12:d8:7a:24:70:49:b7:c5:3c:2f:e6:e7:e0:c1:a5:
c5:b6:ce:fb:74:de:fb:81:de:b2:5a:36:20:f1:cf:
eb:ed:91:dd:b1:ca:3a:f6:65:32:47:30:f9:26:49:
b7:bd:72:05:d3:75:06:72:0b:6e:c0:9b:f7:c2:26:
34:10:93:c8:b2:36:9c:df:b2:77:5e:3a:b3:02:f5:
b6:76:bb:1d:ec:ae:d8:0d:ee:89:b0:4c:42:23:41:
97:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:8B:DF:38:92:51:21:E5:6E:94:D5:06:4E:9C:04:88:37:DD:31:0A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/O4vfOJJRIeVulNUGTpwEiDfdMQo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.79.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:9e:22:3a:42:39:48:a8:1b:b3:d2:18:a9:05:22:fc:86:eb:
a8:ec:9a:58:78:5a:db:60:2d:eb:40:dd:43:2b:5f:85:e9:46:
d4:54:05:34:01:36:11:3a:73:1c:8f:fe:a3:f8:d6:78:50:74:
bf:5c:2c:92:ad:7e:35:a2:fe:59:fe:bb:dc:05:bf:f5:57:53:
18:29:24:b0:83:61:87:b1:65:41:df:32:db:22:dd:f0:42:6a:
8b:f4:9c:bd:f2:0b:b3:f2:bc:8c:23:66:4e:89:21:70:04:2f:
0d:a1:39:f9:77:63:5d:66:c0:c0:7b:9d:e3:8d:2f:43:c1:79:
f8:f2:cc:74:ed:3b:78:ba:fa:ce:2d:e6:c1:28:24:da:f6:1b:
e0:6c:42:25:60:18:fb:1e:1d:76:c2:69:c8:be:5c:29:fa:9d:
57:49:dd:db:f8:83:aa:f2:9c:97:a6:e6:b2:37:ae:92:42:fc:
43:f4:42:13:e5:01:ba:9c:16:d6:75:b8:e3:c7:d2:fb:22:19:
b8:0a:29:1d:f6:0a:82:f2:d7:cf:2e:81:2a:d0:15:67:34:3d:
71:6c:3f:7c:35:5a:86:4d:1d:01:3b:9a:5c:b7:29:08:1a:95:
31:fe:aa:a6:6e:23:ce:09:64:59:fb:f5:fa:a3:ea:81:97:43:
24:39:e4:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org