Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UFTa-YxOVj3MngoQ7JE7gwwy_Ic.roa
File: UFTa-YxOVj3MngoQ7JE7gwwy_Ic.roa (raw, json)
Hash identifier: ovEvYRhKWPOVnJ8Eg8DfcPvwBXAa6MHUFfoZquf2swg=
Subject key identifier: 50:54:DA:F9:8C:4E:56:3D:CC:9E:0A:10:EC:91:3B:83:0C:32:FC:87
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A98
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UFTa-YxOVj3MngoQ7JE7gwwy_Ic.roa
Signing time: Sun 07 Feb 2021 11:36:42 +0000
ROA not before: Sun 07 Feb 2021 11:36:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.63.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2712 (0xa98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5054DAF98C4E563DCC9E0A10EC913B830C32FC87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ee:f6:84:f0:85:cf:98:2c:62:b1:d6:cc:4a:
83:23:37:44:44:c3:80:1f:1d:00:84:06:d2:f9:df:
a9:e1:e7:52:d0:5e:c7:98:09:5e:3c:66:55:66:6a:
64:d9:36:22:77:d1:7f:3d:08:31:87:ea:50:bc:a0:
97:c8:8e:8b:94:64:b5:50:54:ba:48:0c:7c:b1:4b:
e5:0a:e4:a8:ac:0b:c9:06:61:a2:b6:b0:00:38:0c:
83:74:23:3b:2b:df:d1:d1:e2:32:8a:0a:46:87:e3:
47:55:cf:3b:35:ee:ed:5d:92:15:e2:97:8f:3d:81:
65:fd:4f:f6:76:5d:fb:e6:6e:c8:72:38:29:25:b0:
f1:b6:a4:2d:a6:a9:76:06:d9:c7:62:76:7b:5f:1c:
4a:d1:34:f4:a0:a3:46:66:3a:29:89:e1:b7:42:2c:
5b:4d:7b:64:68:5c:93:34:09:3f:bd:3f:3e:54:22:
99:e4:65:b7:a0:62:28:bb:f0:f5:95:b2:7a:07:2a:
9d:fa:03:0f:e0:2c:49:e4:cd:d1:7b:b1:af:3a:a0:
18:91:33:c3:9d:16:18:90:0c:58:3d:b9:5e:0b:45:
bd:68:32:83:fb:a7:64:3d:5a:de:00:ec:d3:67:0e:
4e:8c:39:ff:76:b2:13:22:b2:99:23:c0:53:05:19:
a1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:54:DA:F9:8C:4E:56:3D:CC:9E:0A:10:EC:91:3B:83:0C:32:FC:87
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/UFTa-YxOVj3MngoQ7JE7gwwy_Ic.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.160.0/19
Signature Algorithm: sha256WithRSAEncryption
7f:09:74:95:5d:f9:f3:0e:36:d7:21:44:d0:b4:0e:a2:da:16:
61:de:6c:4b:da:18:8e:92:53:ff:a0:90:77:ac:7b:aa:66:b0:
f9:b9:97:15:72:17:2e:6e:97:43:1c:2c:25:0d:fa:b8:55:8d:
a1:b6:c4:f1:b7:65:88:7e:b8:65:49:0d:4d:b9:4d:25:95:ba:
d9:de:fe:70:b5:18:e5:3b:65:b0:31:b3:fd:0f:52:f9:9a:5b:
4f:a9:f1:7f:41:b9:b6:24:00:87:75:2f:d0:3e:23:f0:4f:92:
c0:65:4b:97:ea:c9:52:be:6a:f5:d2:ad:30:46:f8:bd:64:13:
eb:fd:3c:9c:ef:08:f9:72:14:af:ae:6b:8f:cf:d7:6f:6c:bd:
56:9f:4a:3a:68:80:f1:a1:83:47:4b:f3:8e:94:b0:af:b5:01:
6d:e7:5a:0b:75:3e:29:c4:5b:b4:6c:ab:80:2d:57:c2:c7:85:
b4:21:be:c5:63:92:78:a0:77:c7:88:be:07:55:30:cd:2a:ce:
f7:15:97:0f:79:02:d4:89:9e:ff:77:af:d1:37:b7:84:8d:0d:
01:18:01:eb:1e:82:f1:37:ad:f9:89:46:1a:51:0c:6e:f3:51:
de:40:1a:59:c1:8a:4a:74:29:ba:61:98:0d:c1:e5:cf:b4:e4:
66:17:be:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org