Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/VzJfDpIUtHob8ZQex0tYBxCEf_k.roa
File: VzJfDpIUtHob8ZQex0tYBxCEf_k.roa (raw, json)
Hash identifier: w5vxGqHP8b+KIZAPWQhQgQaX0yfp+6MCo+Sx1ax2y+I=
Subject key identifier: 57:32:5F:0E:92:14:B4:7A:1B:F1:94:1E:C7:4B:58:07:10:84:7F:F9
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0826
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/VzJfDpIUtHob8ZQex0tYBxCEf_k.roa
Signing time: Tue 29 Sep 2020 09:57:49 +0000
ROA not before: Tue 29 Sep 2020 09:57:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.67.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2086 (0x826)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=57325F0E9214B47A1BF1941EC74B580710847FF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:87:01:25:cb:32:6c:c7:1f:41:68:8c:f7:98:
eb:b0:a8:b1:70:1c:11:f6:f3:40:23:9a:63:7b:bc:
8a:09:98:af:43:6a:09:be:eb:4c:5f:ec:d4:c9:93:
cf:c8:4d:95:19:e7:e2:f5:fc:6b:9f:63:0e:33:19:
02:5d:51:45:d2:25:fb:a2:34:20:dd:89:97:49:c8:
ce:73:32:f7:04:9d:1a:4e:5f:51:38:88:0b:19:66:
fc:76:6f:f6:f5:a6:ce:65:08:3f:12:64:d2:66:f0:
eb:18:ca:4c:08:4c:17:b3:50:e1:8d:1c:04:72:1c:
26:d1:7a:44:30:75:50:5d:0f:f1:82:94:88:32:4b:
ee:1d:c1:39:ca:6c:68:f8:0f:26:47:6c:d0:0d:54:
45:e1:67:88:0e:b0:b6:c7:23:f0:3e:d3:e9:cb:83:
df:9c:d7:64:37:02:47:ac:b0:7d:1b:17:e3:67:8e:
5c:ee:45:0c:2c:1f:fd:38:d5:c7:51:b2:a4:a4:47:
d3:40:77:b8:a5:1c:f2:3e:db:9e:f0:e4:48:02:7d:
d0:bf:c0:0c:9c:db:74:96:d1:f9:47:de:9f:71:db:
d5:af:f6:98:7a:30:d5:85:4a:cc:1e:51:ef:1a:86:
a7:b7:f9:1c:43:e6:e9:be:ca:63:b8:fd:cc:50:4a:
50:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:32:5F:0E:92:14:B4:7A:1B:F1:94:1E:C7:4B:58:07:10:84:7F:F9
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/VzJfDpIUtHob8ZQex0tYBxCEf_k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.160.0/19
Signature Algorithm: sha256WithRSAEncryption
34:0e:ff:54:01:6a:e5:7b:18:0a:62:a3:cb:89:5f:3e:a3:67:
02:e8:8c:7f:29:57:c6:33:dc:31:0c:cb:df:cc:d9:cd:74:23:
ea:39:10:1e:89:4e:38:18:46:c0:4a:aa:fb:cc:37:f3:3e:c9:
c7:ec:0f:a0:58:16:f9:86:6a:23:9d:bd:8b:38:1a:08:50:0d:
a0:cf:2b:84:e2:78:40:07:af:05:84:f7:4f:c5:9b:7a:cf:0a:
63:23:0a:42:06:d0:63:69:ac:3f:f0:81:9c:a6:20:5c:70:02:
96:fb:e7:d8:9b:91:f8:21:34:61:47:dc:41:8f:93:d2:15:b6:
cf:89:e4:ef:57:38:88:dc:1f:b5:64:01:60:22:34:65:04:72:
96:15:a6:59:d0:db:d3:30:03:34:0a:73:49:a0:20:d8:a3:31:
63:77:b0:04:58:a4:80:c5:38:20:28:17:bd:fa:ea:1c:5c:4b:
98:73:cc:71:25:e2:de:41:25:cc:a5:65:bc:8c:57:8f:68:b1:
5c:fb:a5:5f:b5:1a:b3:db:34:15:7e:18:b9:d4:80:96:72:63:
89:8c:0d:ff:62:c8:ff:1c:73:16:c5:ea:7f:7f:9b:1f:4b:3c:
de:4c:8b:57:d6:4e:78:6c:20:a8:a3:18:3c:36:62:87:84:37:
df:b6:da:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org