Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/RoRi7veZ2TC0i6f-3dy3U-NIkKk.roa
File: RoRi7veZ2TC0i6f-3dy3U-NIkKk.roa (raw, json)
Hash identifier: Y2ZNMafD2X0WWhVayStQCW6m6wk+kYBoS7hrmcDfMHQ=
Subject key identifier: 46:84:62:EE:F7:99:D9:30:B4:8B:A7:FE:DD:DC:B7:53:E3:48:90:A9
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AEC
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/RoRi7veZ2TC0i6f-3dy3U-NIkKk.roa
Signing time: Sun 07 Feb 2021 11:48:57 +0000
ROA not before: Sun 07 Feb 2021 11:48:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4662
IP address blocks: 210.62.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2796 (0xaec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:48:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=468462EEF799D930B48BA7FEDDDCB753E34890A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:eb:9a:ce:1f:74:b4:cd:88:0a:39:a5:20:5e:
3e:ef:54:84:90:8e:22:e9:0d:c3:bf:08:7b:54:7c:
ff:d9:37:7d:f1:b1:91:6b:36:5b:cc:9b:eb:b6:e9:
75:7d:0e:fd:52:0f:1a:3e:7b:d3:f0:c3:42:39:a1:
2d:c6:ed:36:03:ce:ff:ca:b8:da:16:2b:e9:9e:aa:
7e:e4:d3:57:f5:5d:f3:33:0d:5e:42:b3:f2:aa:42:
bb:a0:ef:06:11:c4:87:57:ad:ba:86:86:72:87:8d:
9d:c2:a4:ab:76:21:aa:20:a4:17:73:ee:42:8c:17:
5b:d1:d3:4c:25:4b:ed:2b:22:44:9e:d7:0e:3f:c6:
9c:f7:91:68:8a:69:96:f5:5b:73:8a:e0:69:a1:60:
a5:ed:77:c4:3e:0e:9a:2a:9f:6a:9d:d0:ed:54:f0:
76:a4:dc:e2:bf:65:c0:2f:7a:d4:b6:d4:0b:13:f0:
c4:71:bb:cf:3d:85:84:bc:c4:c6:69:37:b3:2f:81:
49:ef:e7:93:8e:9a:f0:d3:73:c5:db:ef:ce:dc:b9:
34:e3:91:7d:9d:ff:f8:ae:5f:5c:cb:a8:70:3d:3b:
ad:2f:d9:d1:fd:56:92:3a:13:6b:1f:72:e2:3b:8e:
e7:58:f2:89:f7:d3:48:15:78:60:03:df:fd:46:4a:
39:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:84:62:EE:F7:99:D9:30:B4:8B:A7:FE:DD:DC:B7:53:E3:48:90:A9
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/RoRi7veZ2TC0i6f-3dy3U-NIkKk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.0.0/18
Signature Algorithm: sha256WithRSAEncryption
6f:cf:d5:f2:17:92:1d:b9:cd:22:bd:26:d1:9e:41:7f:46:59:
af:0d:d9:e4:f7:53:63:a5:df:71:bd:27:83:f1:bf:0b:7d:e6:
a4:aa:81:79:00:f3:ff:fd:7c:82:c9:71:3f:02:a8:cb:b8:14:
43:85:c4:5e:ab:c6:0c:0e:2f:0a:bc:3e:80:10:6f:fb:88:84:
c9:51:19:59:79:8a:39:dc:42:ef:6d:f3:e8:fb:36:e2:f0:b9:
be:ef:41:a9:be:ef:43:9f:b1:83:ca:11:29:20:c9:62:c2:11:
68:ce:9e:bb:0b:e1:b7:df:26:75:96:50:74:64:35:41:cd:73:
5e:a5:a5:0f:9f:5a:73:27:08:28:5e:db:9d:58:b7:88:05:9d:
51:69:88:78:23:9c:87:13:23:9c:af:60:02:6a:96:43:af:f5:
ea:65:26:f7:bc:14:96:d5:70:a2:99:16:11:d8:f6:c4:97:25:
12:2b:ba:ef:52:f9:04:38:32:ba:0d:9f:00:68:d7:e6:4f:d1:
e4:bf:be:3e:51:d4:8f:7c:5f:6a:05:e1:82:33:89:2a:18:78:
df:d7:7f:51:99:30:2e:e8:ba:0e:68:95:6a:a2:2a:92:96:26:
c0:6d:d2:21:ca:a4:12:da:62:99:4b:4b:a3:36:e4:30:92:38:
7c:c9:9f:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org