Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/U1guTG5nlH-xZOg0q0D1BJ4Ucqw.roa
File: U1guTG5nlH-xZOg0q0D1BJ4Ucqw.roa (raw, json)
Hash identifier: KMGLihA73JnRbVPwiGbbcjT6G9jzsMYARDSm0K/4Fhc=
Subject key identifier: 53:58:2E:4C:6E:67:94:7F:B1:64:E8:34:AB:40:F5:04:9E:14:72:AC
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AEE
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/U1guTG5nlH-xZOg0q0D1BJ4Ucqw.roa
Signing time: Sun 07 Feb 2021 11:48:59 +0000
ROA not before: Sun 07 Feb 2021 11:48:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.67.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2798 (0xaee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:48:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=53582E4C6E67947FB164E834AB40F5049E1472AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c2:99:1b:de:9b:f6:86:1f:7f:e4:24:2a:ea:
e7:60:fb:29:38:14:68:86:19:9e:56:6f:7b:1d:b9:
97:8a:38:fe:ea:6b:f0:df:d6:37:a9:10:bd:b3:ac:
80:cb:88:9e:c8:41:66:cc:17:4a:1a:42:b0:ba:e0:
1b:db:ae:ff:d6:31:b4:a9:0a:f8:f0:e1:ba:2d:a1:
9c:07:8b:f4:10:94:f9:00:ee:96:32:24:dd:cd:df:
01:b3:7c:90:7a:35:bf:34:82:c5:f0:ca:ff:07:70:
37:5a:c2:c5:56:06:aa:84:f6:9f:30:7a:18:96:d5:
f7:94:c1:d9:9f:5e:10:f7:7c:67:20:d1:db:3c:b2:
7a:70:2c:51:52:5c:85:af:7c:fe:01:27:e0:3d:cd:
15:40:6a:09:cc:ac:c0:a2:ba:af:12:83:05:08:a6:
a9:21:5d:6a:ff:26:78:8c:28:f0:fc:1e:d5:a3:f8:
52:6c:c4:c9:e5:e8:db:f7:7e:af:ad:1e:4f:a7:bd:
ef:a5:8b:34:49:bb:3f:67:78:cd:4c:79:24:18:50:
70:54:9f:cb:ea:4f:6b:86:a8:b9:32:0e:4d:0b:7a:
e7:3f:b1:0e:f9:41:18:42:e3:f3:5f:d3:d6:90:86:
0e:33:bd:02:6d:5c:f9:38:79:1e:a8:e7:61:a8:e3:
23:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:58:2E:4C:6E:67:94:7F:B1:64:E8:34:AB:40:F5:04:9E:14:72:AC
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/U1guTG5nlH-xZOg0q0D1BJ4Ucqw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.192.0/19
Signature Algorithm: sha256WithRSAEncryption
71:b6:7b:2a:17:9e:05:ff:0b:f5:c6:00:b8:69:5a:11:57:8c:
19:8d:fa:e5:c0:40:57:8f:4d:ad:f4:e2:98:bb:3f:5b:62:06:
57:d1:82:28:b2:95:1f:dc:d2:33:9a:93:ea:08:87:34:d2:3f:
e7:18:dd:87:21:de:74:b1:cc:a0:7b:b2:5c:ca:8c:12:7d:13:
c7:20:be:77:ab:20:96:53:36:57:e3:8d:a6:cf:9a:b7:93:0f:
19:c2:14:ec:cc:8d:d4:09:68:84:aa:1b:d0:15:e8:6a:13:e9:
b4:f9:e2:ce:7c:24:14:e9:0c:d4:6c:b9:56:d5:a3:7c:f2:a5:
60:16:16:7f:70:84:7c:b4:65:4b:d3:27:d7:26:7b:07:94:61:
cc:84:e0:2a:eb:4e:16:27:5e:a8:2e:9b:78:29:96:a4:7f:74:
1a:e7:bc:73:ca:3a:b0:2c:60:cb:35:cd:30:5e:e4:b3:62:86:
18:61:db:6a:97:3a:c4:cf:fa:fd:b2:5a:1b:62:02:1d:82:c4:
43:f0:96:8a:7f:64:bd:45:3a:7d:0a:8c:93:e4:0c:d9:b9:d0:
fe:d3:71:14:6e:1b:6c:38:71:a1:4f:5c:f4:c1:01:a1:47:47:
00:d0:19:aa:4f:8d:a7:2e:d7:35:3d:fa:dc:7f:9d:22:0a:98:
73:26:00:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org