Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/R267chAAqJs7eERBH4ZptByWfKM.roa
File: R267chAAqJs7eERBH4ZptByWfKM.roa (raw, json)
Hash identifier: u6PC0R9AH2/y38yblnPSrQde3HSb5dzl5wAYEaC8Lps=
Subject key identifier: 47:6E:BB:72:10:00:A8:9B:3B:78:44:41:1F:86:69:B4:1C:96:7C:A3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B50
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/R267chAAqJs7eERBH4ZptByWfKM.roa
Signing time: Sun 07 Feb 2021 13:13:11 +0000
ROA not before: Sun 07 Feb 2021 13:13:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 13335
IP address blocks: 210.17.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2896 (0xb50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:13:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=476EBB721000A89B3B7844411F8669B41C967CA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:83:b0:6d:92:e1:70:39:32:29:27:ef:0d:b0:
14:28:24:fc:4b:a7:08:5a:ea:c7:df:7e:37:a0:13:
cf:b7:db:48:3e:87:23:b4:ad:0e:df:66:b3:8c:9a:
9d:9f:88:f1:c3:50:2c:db:41:35:a7:49:77:44:59:
6c:f8:ae:b0:0e:9c:02:43:41:ea:ae:f5:62:1a:36:
13:05:d5:45:2e:07:b5:0b:49:7e:5e:22:51:79:15:
8a:de:8c:27:38:28:5d:e9:99:61:7f:46:ad:f2:d2:
3b:6f:a7:e9:4a:79:2c:d7:55:0a:64:3b:08:31:65:
71:41:67:b4:fa:f3:39:68:5a:b4:25:0a:d2:3a:77:
19:57:e2:6a:73:4b:24:5c:95:b7:11:22:ca:0a:52:
1e:ce:bb:4c:35:61:fd:94:2b:10:c9:e3:72:d9:4a:
53:74:a2:f9:a3:1c:47:69:7d:3c:70:8f:bf:48:66:
4d:b8:79:19:2f:62:aa:16:ac:5d:b1:d7:d2:4e:3a:
d9:ae:32:e7:7b:40:e6:da:db:09:55:b6:29:71:19:
41:6e:bb:fd:d9:64:e3:5c:72:0d:8c:a5:05:69:33:
4a:48:52:42:50:f0:64:11:47:31:09:86:1e:6f:6a:
71:47:63:3a:49:aa:93:27:4b:d0:fb:8e:2a:f8:e6:
00:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:6E:BB:72:10:00:A8:9B:3B:78:44:41:1F:86:69:B4:1C:96:7C:A3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/R267chAAqJs7eERBH4ZptByWfKM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.44.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:be:fb:dc:a9:44:5a:82:08:44:9d:c9:eb:ca:cc:2d:e9:36:
56:d2:a3:f6:d2:83:f7:1f:ef:6a:72:7c:9f:f7:31:7f:6f:02:
a4:9f:ef:2b:b6:b6:85:86:f2:b9:30:71:f4:14:59:b1:f4:26:
ea:96:a2:6b:c1:9e:e8:e5:74:35:c8:2b:f8:9c:af:a3:75:54:
6a:14:95:60:6f:62:3f:0c:4a:54:0a:85:2f:d1:d9:14:73:f6:
94:2c:0e:2f:dc:f3:65:49:f7:98:cd:f3:0c:e2:62:ae:a3:40:
58:63:57:22:69:57:1d:2d:91:27:a7:29:d1:ec:76:75:f0:fc:
6b:b4:9a:32:3e:1d:85:6e:99:a2:32:6c:a8:34:d4:03:61:7d:
74:2b:b2:ef:8a:93:dd:03:da:a2:b0:d3:aa:07:df:77:2a:fe:
c3:01:8d:ed:0a:43:b1:a5:81:c1:be:e6:b0:ae:d1:0a:d1:01:
7c:9d:31:36:b4:80:55:ec:08:5f:ee:e4:c9:a9:c6:56:48:51:
fb:3a:fe:09:da:c8:b5:db:59:e7:4f:00:8c:5d:0f:74:b5:0a:
b2:58:dd:3b:31:6f:71:4a:d5:c6:a6:68:95:5a:5a:cd:0b:ea:
c0:b7:cd:0f:2f:f8:dd:fd:40:ee:1b:71:15:cf:2f:d1:1e:80:
aa:db:e7:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org