Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/R9XYmtIq7sKObSdj7eb_2d2T17A.roa
File: R9XYmtIq7sKObSdj7eb_2d2T17A.roa (raw, json)
Hash identifier: PXEw/tw5FUhfjnOl6LYCJqj3sJKfe5MLYiFiMI26ecU=
Subject key identifier: 47:D5:D8:9A:D2:2A:EE:C2:8E:6D:27:63:ED:E6:FF:D9:DD:93:D7:B0
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C90
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/R9XYmtIq7sKObSdj7eb_2d2T17A.roa
Signing time: Wed 29 Sep 2021 02:49:59 +0000
ROA not before: Wed 29 Sep 2021 02:49:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.17.76.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3216 (0xc90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=47D5D89AD22AEEC28E6D2763EDE6FFD9DD93D7B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:75:9f:3f:cc:75:6e:66:f8:1b:f9:6f:db:48:
c6:ee:26:fe:f2:1b:73:ff:e5:c5:ef:4b:1f:d1:60:
9f:09:4a:29:34:38:99:17:41:0f:9a:50:bf:27:47:
45:67:11:d6:c4:9e:fb:b6:ad:7f:1c:62:6c:9a:7a:
5a:dd:64:5b:90:e3:32:54:31:17:bd:da:ef:73:af:
a7:f2:0b:bb:58:a1:ef:8e:e0:5f:bf:0c:26:b4:c1:
97:7b:97:0b:12:54:77:e8:ea:78:ef:36:f0:ab:82:
81:1f:3f:c4:17:c2:47:d5:da:5f:18:03:b7:ff:42:
8b:c2:49:77:8d:4c:67:58:c5:6a:7e:89:96:49:ea:
52:a5:0f:bd:42:f2:e6:76:5b:b1:e2:db:2a:42:54:
fe:e7:9f:aa:17:0b:85:6f:22:a7:80:65:21:6e:0c:
5f:54:7d:f5:25:9e:cd:27:d9:dc:10:86:69:18:3e:
17:ec:ed:d6:bf:52:cc:3a:eb:e0:e7:c1:9d:eb:ac:
51:f0:c0:88:ce:3e:de:56:e0:9f:26:5e:b7:cb:8d:
7e:ca:2c:3c:5e:44:73:c6:88:30:d7:19:a6:fc:70:
e1:2e:db:c5:a3:d9:e2:15:10:dd:0c:2a:57:60:20:
c8:3f:4d:c8:48:d4:0d:8e:a6:3b:02:86:ba:7e:ac:
34:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:D5:D8:9A:D2:2A:EE:C2:8E:6D:27:63:ED:E6:FF:D9:DD:93:D7:B0
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/R9XYmtIq7sKObSdj7eb_2d2T17A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.76.0/22
Signature Algorithm: sha256WithRSAEncryption
84:a8:b3:38:05:ac:90:67:00:50:db:9a:7c:d4:e6:cc:30:20:
ae:66:50:23:27:2b:5e:c5:24:90:31:01:6e:dc:25:f6:a7:eb:
40:d9:36:8d:96:d2:98:22:da:a1:e1:da:1e:5e:15:f2:d0:9e:
4d:28:4b:09:0e:dc:6b:a9:8f:b1:29:7d:5a:3e:55:39:3c:e9:
fe:71:f3:21:22:cf:22:36:fe:1d:4a:f2:4e:b8:26:98:7f:9a:
96:ed:66:fb:d8:bb:67:53:2c:eb:b1:00:76:23:10:55:42:e2:
bf:2e:b7:3b:71:af:f7:53:f3:71:f8:ad:b0:12:de:cd:b8:8a:
cc:31:6f:86:75:f2:cd:be:b4:96:38:f8:9e:50:b5:8d:62:d5:
08:00:c3:d3:2c:47:2c:79:a7:97:15:3c:1d:5e:a0:ac:e9:d1:
f9:39:b8:c7:b7:73:59:3f:b4:d4:05:3d:9c:52:c5:c9:d5:48:
4e:41:91:38:80:45:de:55:8e:45:69:03:e0:57:3b:51:79:3e:
3d:73:4e:20:09:5f:fc:8c:b7:86:69:8c:4e:d5:be:8b:13:03:
fa:a1:6e:ae:76:78:e3:f4:01:cf:4b:76:5d:be:06:81:d6:97:
10:02:97:b9:c7:1b:b0:09:89:48:b1:08:74:e3:ce:06:cf:5a:
25:1d:2c:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org