Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TVrekLCzJG7qOyJMatFctYnmsxQ.roa
File: TVrekLCzJG7qOyJMatFctYnmsxQ.roa (raw, json)
Hash identifier: TITsKTO5Sw1aEE3gtHhJ8h08WtGHFEGDmQ6LYuOR6Bo=
Subject key identifier: 4D:5A:DE:90:B0:B3:24:6E:EA:3B:22:4C:6A:D1:5C:B5:89:E6:B3:14
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 097C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TVrekLCzJG7qOyJMatFctYnmsxQ.roa
Signing time: Wed 16 Dec 2020 02:16:46 +0000
ROA not before: Wed 16 Dec 2020 02:16:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.73.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2428 (0x97c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:16:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4D5ADE90B0B3246EEA3B224C6AD15CB589E6B314
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e0:b7:12:01:e2:96:25:18:37:d5:a9:7e:8c:
43:15:de:6f:a1:73:ac:e0:7f:e1:1a:db:9c:0d:68:
fc:a4:70:c8:69:dd:7f:f4:97:b9:8e:95:52:c5:b9:
22:66:a1:e4:75:33:9f:82:5e:c5:0e:d3:06:52:81:
de:90:f5:e4:55:ad:d0:1a:d3:a1:eb:89:65:9f:55:
36:f3:04:65:f5:b8:eb:47:73:43:46:12:89:22:88:
4e:8f:77:9e:90:44:8c:30:8c:5a:7f:a6:af:d0:43:
56:72:8a:9a:a4:30:56:94:76:69:01:0d:7b:3d:ef:
89:27:c2:72:35:6a:8d:39:6a:c5:b2:82:f3:2c:e3:
9c:5c:99:04:7a:a3:f4:22:84:db:c2:b2:fa:4f:a2:
ac:eb:5c:df:f2:4b:2b:d9:a0:4d:c6:e7:53:8b:18:
67:c9:78:46:70:3f:44:30:55:85:cc:04:0a:cf:45:
69:b6:c5:e2:4f:82:b2:a0:a7:55:b6:10:e4:18:ae:
a7:8a:ee:4a:8c:c5:5c:cc:de:fe:da:c1:1b:3a:32:
02:bf:93:e8:a2:4c:b0:05:74:ec:97:45:fc:dc:88:
a7:4e:6a:e7:d9:43:c4:f6:56:48:ae:94:d6:9d:09:
16:f0:e9:72:90:8c:9b:4f:7a:30:60:d9:d3:3e:6c:
24:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:5A:DE:90:B0:B3:24:6E:EA:3B:22:4C:6A:D1:5C:B5:89:E6:B3:14
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TVrekLCzJG7qOyJMatFctYnmsxQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.73.0/24
Signature Algorithm: sha256WithRSAEncryption
83:e0:31:17:4b:8e:f9:7c:43:20:05:a0:4e:ba:e3:53:09:86:
b7:63:40:1d:18:fa:db:00:76:63:8f:1e:90:4b:bb:1b:61:cc:
61:27:ea:a6:1f:8a:60:eb:05:96:2c:79:0a:6b:76:ff:55:a7:
aa:ba:17:ab:39:73:70:dc:06:a7:52:a8:80:67:95:a6:e5:68:
ca:4a:54:e8:98:96:93:37:e4:da:17:91:a2:15:d0:f3:00:78:
85:3b:56:b7:95:76:25:5a:3c:5e:88:2e:49:17:b3:52:15:e0:
04:2d:56:af:bc:4f:8f:5f:cf:18:bb:d7:43:c5:9f:2f:3c:8f:
42:27:e6:65:f9:c8:23:ca:a5:58:f9:b9:78:f4:55:bb:ad:93:
37:f2:9e:d8:c5:48:f8:36:29:68:e3:95:65:71:62:bd:b1:ec:
31:19:04:6f:d3:9b:bb:fb:c0:f7:d0:95:84:d6:a1:16:6d:c4:
9e:36:4f:4d:f8:c8:bb:12:f4:b4:9a:7e:c6:b2:92:cb:01:25:
b5:28:8e:3f:12:24:e4:f5:a9:eb:d4:18:93:56:39:b2:93:f4:
9a:6e:aa:1c:71:c9:d0:bd:1e:7c:73:d6:64:51:88:fa:e8:4f:
a4:85:67:c8:26:04:08:0c:21:70:b2:24:29:06:93:a0:82:6b:
16:9b:60:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org