Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/SIzvY0iF2IaskKqcTN-C-gw_6Jg.roa
File: SIzvY0iF2IaskKqcTN-C-gw_6Jg.roa (raw, json)
Hash identifier: +JdAy7VGtUPZ6vKDsVa73Mj+K8IhmHq9TZTHVkGcf0I=
Subject key identifier: 48:8C:EF:63:48:85:D8:86:AC:90:AA:9C:4C:DF:82:FA:0C:3F:E8:98
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/SIzvY0iF2IaskKqcTN-C-gw_6Jg.roa
Signing time: Thu 15 Sep 2022 02:47:14 +0000
ROA not before: Thu 15 Sep 2022 02:47:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.17.80.0/20 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=488CEF634885D886AC90AA9C4CDF82FA0C3FE898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f0:a8:13:22:98:67:e2:7d:bb:67:1d:6a:4f:
2b:45:1a:aa:26:67:1c:45:09:25:21:80:d0:26:88:
01:0a:f8:48:93:c7:fe:81:b0:06:6c:af:09:0b:b2:
7b:02:2c:4a:83:d3:4a:2d:fc:4e:16:1e:d0:c3:4c:
91:30:71:3b:cf:ae:f9:2c:24:80:7f:a1:35:d6:9d:
39:86:07:0e:f9:bf:1b:45:5b:42:d2:97:32:87:93:
6d:24:a4:a1:df:e2:3e:69:89:a0:a1:1d:b9:68:b3:
ee:9d:c6:e1:c7:9d:54:09:8c:b7:72:d9:6e:70:d1:
f8:fe:7f:ac:5c:a3:96:91:6e:2d:4c:a9:b5:f2:5c:
46:66:dd:f1:a2:7d:b7:18:e6:ff:ad:10:51:67:cb:
63:f1:45:7c:77:7c:96:a4:1b:7d:0c:13:3f:7a:e6:
07:d4:3b:17:b3:0c:80:07:b0:68:c1:7c:d0:31:df:
29:b4:57:2b:5c:b5:2c:8d:f8:5e:a3:73:3d:61:35:
2b:2f:68:dc:94:89:1d:51:ad:70:ec:79:c8:e6:0d:
18:02:7e:97:df:a1:ff:fb:c2:78:74:1b:aa:f9:83:
67:86:fc:84:30:88:75:df:e4:ba:66:1a:0c:05:67:
da:fe:7b:d0:89:cd:11:35:b3:f1:96:dc:c7:8f:1a:
e2:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8C:EF:63:48:85:D8:86:AC:90:AA:9C:4C:DF:82:FA:0C:3F:E8:98
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/SIzvY0iF2IaskKqcTN-C-gw_6Jg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.80.0/20
Signature Algorithm: sha256WithRSAEncryption
39:aa:8d:b1:ba:0b:df:98:60:d6:6e:f6:f0:96:39:dd:5f:d8:
8a:73:90:63:b1:e0:37:cf:22:b9:b1:83:fd:29:54:a7:51:ae:
06:7d:54:9a:97:47:f8:53:04:d6:12:fa:bf:53:8f:f7:ae:81:
f3:ea:03:46:ec:1f:7c:7a:6a:26:54:01:8b:6c:28:f2:34:1d:
29:10:e1:3c:72:70:62:2c:3b:ae:10:15:73:79:7d:d7:8b:63:
49:ba:db:16:16:67:7e:ee:90:6e:10:3d:a0:6f:f9:ff:16:ce:
e9:65:fc:d5:0f:bd:c2:4e:0a:49:85:97:e2:eb:af:bc:5e:20:
fe:2f:6f:93:dd:32:a1:8d:6d:88:e1:e1:34:b7:62:87:66:1f:
de:d1:fb:e8:e7:86:a0:ac:93:ca:a5:0a:56:54:f4:d3:c1:03:
c0:c9:b9:4a:9c:9d:b7:a1:49:83:14:1a:cd:b4:8f:85:3d:2d:
24:fd:49:77:b5:57:64:02:dd:65:e2:57:a5:32:e2:bf:14:9a:
16:28:fd:d2:65:0e:67:23:0e:ae:95:d8:7d:2a:5a:a5:2c:e0:
42:05:d4:2f:50:04:d0:44:b3:68:91:74:13:fc:77:7f:1c:dc:
5b:f9:17:7f:bb:c7:f2:cf:29:99:eb:9f:89:cd:df:b1:60:28:
c5:72:81:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org