Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TcRjDmsgpq2SoBTVkHBnavXDGrs.roa
File: TcRjDmsgpq2SoBTVkHBnavXDGrs.roa (raw, json)
Hash identifier: btKpFmYrr+nVJPUoDUct/c7qYLzL4xew0Ge3/hC5hKo=
Subject key identifier: 4D:C4:63:0E:6B:20:A6:AD:92:A0:14:D5:90:70:67:6A:F5:C3:1A:BB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A8E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TcRjDmsgpq2SoBTVkHBnavXDGrs.roa
Signing time: Sun 07 Feb 2021 11:36:36 +0000
ROA not before: Sun 07 Feb 2021 11:36:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2702 (0xa8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4DC4630E6B20A6AD92A014D59070676AF5C31ABB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4d:29:0b:06:e6:59:1b:94:0d:c4:c7:38:c9:
0c:b1:90:8e:95:f2:43:0a:14:ca:f3:9e:c9:5f:d0:
70:e2:ac:6f:da:84:33:9c:ca:ff:37:49:84:7d:d7:
08:4c:11:5c:64:67:18:e9:9a:b4:9d:fa:3b:94:e0:
11:78:30:2f:a2:6c:fc:a6:e3:3b:88:f9:8a:f9:b9:
30:3d:22:25:f6:66:9f:ab:cd:41:d1:1b:a3:1e:b1:
e0:ca:22:cd:34:ac:18:14:0a:54:8e:e2:8f:d4:8c:
da:11:6a:a0:57:61:0b:3f:83:f6:68:0b:3b:3e:07:
db:41:50:e7:9b:a0:3c:9a:8b:44:49:af:6a:7e:3b:
ba:be:8d:88:4b:da:25:bf:49:cd:fd:16:a2:b3:bd:
3f:83:83:8a:0d:de:fa:87:4c:aa:18:19:40:e2:90:
40:36:8c:48:51:05:12:4c:1c:00:e9:1f:93:80:2f:
4e:64:a7:d6:43:9f:d3:aa:2d:2f:7d:22:ed:e4:6d:
25:cb:44:6d:87:3e:f4:cc:70:3d:da:c0:5c:2c:3e:
ee:e6:c8:ea:58:3e:2c:9f:08:33:d6:66:de:dd:a3:
e8:e8:d6:5d:1b:7f:bc:a5:b3:6d:d9:f2:0d:54:90:
8b:06:8f:b1:59:41:91:2a:23:d5:73:6b:45:0b:90:
97:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:C4:63:0E:6B:20:A6:AD:92:A0:14:D5:90:70:67:6A:F5:C3:1A:BB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/TcRjDmsgpq2SoBTVkHBnavXDGrs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.0.0/17
Signature Algorithm: sha256WithRSAEncryption
09:1a:5a:d9:8a:05:57:97:86:74:55:ed:6f:e2:7b:6e:55:c4:
9b:8e:e9:53:1a:f5:b3:cb:fa:cf:83:b8:a6:50:cd:f5:9c:4b:
61:cc:11:d3:b9:4c:b4:a2:da:eb:ca:e0:8b:41:8d:5e:d8:a4:
ce:3a:3e:11:dd:d1:22:0f:95:fb:01:e4:cc:3b:c3:1d:0c:70:
23:48:f5:c1:11:81:73:34:c5:13:a2:a5:77:4f:79:30:ad:1a:
77:3d:2b:c6:77:31:0c:25:41:5a:ef:75:50:18:ee:d5:e7:e6:
9a:4e:ae:37:92:36:8c:07:9f:d0:43:3c:de:34:dc:54:56:df:
44:86:f4:2e:04:e9:14:34:6f:3c:68:59:4f:f3:c9:0c:6b:dd:
b3:55:64:ea:ef:e9:76:c3:80:35:be:54:00:f1:c0:0a:48:3f:
d7:b6:38:d4:75:02:bd:49:8d:32:f9:8d:cf:c0:c7:e0:c7:a3:
87:6a:e3:76:fc:6a:48:49:bd:c1:f9:ad:81:34:42:52:57:95:
b0:b4:8a:44:f0:44:78:80:4d:60:66:45:00:a4:32:5e:46:2c:
0c:84:65:28:d7:8c:19:0f:e8:72:66:ad:8c:40:8a:d7:bc:0e:
1f:10:13:2f:d4:25:48:f9:6a:bb:76:19:8d:dc:5a:88:52:a7:
bf:10:26:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org