Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QqzkPRvYcFNO8N4C6qMTzYiuMhg.roa
File: QqzkPRvYcFNO8N4C6qMTzYiuMhg.roa (raw, json)
Hash identifier: ggFj+IUTOtOm71X0K3zV8pADklWW2j9AjQiQkIz64w0=
Subject key identifier: 42:AC:E4:3D:1B:D8:70:53:4E:F0:DE:02:EA:A3:13:CD:88:AE:32:18
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B38
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QqzkPRvYcFNO8N4C6qMTzYiuMhg.roa
Signing time: Sun 07 Feb 2021 13:10:52 +0000
ROA not before: Sun 07 Feb 2021 13:10:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.20.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2872 (0xb38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=42ACE43D1BD870534EF0DE02EAA313CD88AE3218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a8:92:88:6d:05:01:c8:ee:04:4e:13:ba:f3:
2a:49:a2:e9:06:32:c0:cc:40:89:4d:65:82:32:d9:
2c:d9:1d:f7:b8:cb:2d:50:4d:4f:b5:36:34:d1:5a:
9b:a2:1e:61:4a:bd:0c:a9:e4:e6:af:c7:e4:d6:5a:
d8:e9:fd:84:5b:ba:6b:b9:bc:dc:ba:6d:1a:c1:21:
df:63:f6:49:30:63:9c:be:79:59:93:90:a5:b9:3b:
b0:b5:fc:e3:fc:b7:f6:44:ff:86:f6:5f:86:2d:80:
ce:1b:94:63:0a:a7:ae:f4:e3:83:17:9f:04:09:bf:
8f:c4:35:23:d8:05:a0:c9:2a:55:3d:ad:fb:02:15:
9e:2c:67:11:2a:f9:ea:72:b3:c7:eb:db:a3:d3:6c:
93:8f:ff:fe:fa:7c:8b:70:0c:7b:b2:49:5f:9f:60:
b5:65:c4:37:6d:49:a6:5a:de:6e:cb:03:34:6f:0a:
15:7a:a0:08:85:21:bd:71:79:fc:60:0c:fc:01:d1:
9d:76:1b:cc:dd:79:9b:91:79:5e:ea:b0:9c:a0:5d:
37:c7:e2:f0:c5:9d:6b:05:76:3e:fe:b4:9c:b5:07:
35:b5:c0:06:96:84:94:22:66:55:9f:4c:c7:f2:b7:
70:eb:43:51:8d:00:a0:6a:6b:46:ba:1e:fe:20:75:
c9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:AC:E4:3D:1B:D8:70:53:4E:F0:DE:02:EA:A3:13:CD:88:AE:32:18
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/QqzkPRvYcFNO8N4C6qMTzYiuMhg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.20.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:6f:97:84:11:a5:ff:5c:c5:7f:b1:ea:14:44:11:0c:e0:0a:
9c:02:d0:3d:f2:02:31:c9:59:69:3a:23:d9:7b:78:c6:48:90:
c6:84:bf:43:4f:9b:e0:8a:45:8e:5a:1e:36:db:7f:35:88:71:
2b:c0:84:cc:92:c1:ae:3b:fa:b9:eb:c1:30:0a:5c:1c:36:4a:
ba:06:ea:e2:79:69:46:00:3d:eb:e0:bf:0f:76:80:3d:ff:34:
1c:76:ae:42:33:f8:16:f0:b2:24:f6:e5:6b:79:32:bb:73:80:
fc:26:e4:04:f0:0a:72:4e:79:33:96:71:93:d6:2f:75:34:d7:
46:1a:39:f0:fc:7f:92:60:55:f3:53:15:dc:91:96:dd:2a:29:
1b:7d:0f:a9:15:c6:53:6b:1b:e7:1d:6a:25:28:eb:f3:18:e1:
96:ca:8f:c2:e0:24:f5:46:19:53:40:c6:d1:a3:a9:88:d7:ce:
00:e7:c2:c5:e3:5a:b8:e1:b7:4f:f3:f9:f3:df:63:bb:ac:2f:
ef:b0:1f:7e:e2:59:cf:4f:d2:b7:4f:a5:b5:25:0c:db:22:31:
8d:80:a3:e4:cf:97:0c:54:90:22:9f:d4:ae:0c:8c:84:d8:46:
b1:d9:18:2b:86:c8:de:c9:db:60:b5:a5:76:2c:e8:2d:79:43:
a8:31:42:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org