Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WwB1ydyWAp1gd7bLCXV-gC2f5SU.roa
File: WwB1ydyWAp1gd7bLCXV-gC2f5SU.roa (raw, json)
Hash identifier: TK2yCGd7OVOWhyMHA4jPujMSL2EeTwRDtdZ+ZcQnJLg=
Subject key identifier: 5B:00:75:C9:DC:96:02:9D:60:77:B6:CB:09:75:7E:80:2D:9F:E5:25
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B42
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WwB1ydyWAp1gd7bLCXV-gC2f5SU.roa
Signing time: Sun 07 Feb 2021 13:12:12 +0000
ROA not before: Sun 07 Feb 2021 13:12:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.80.0/20 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2882 (0xb42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:12:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5B0075C9DC96029D6077B6CB09757E802D9FE525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:6a:63:f2:4d:7e:30:12:93:82:9c:96:31:d7:
e9:d7:a4:4c:42:e1:02:16:12:eb:bb:36:79:8a:14:
d5:55:5a:c9:15:84:ff:c9:a7:41:98:3d:19:5a:09:
6b:39:b4:70:ad:b2:7b:25:36:b9:f5:d5:75:76:ee:
1e:dd:76:ab:8c:24:d9:f2:2e:ac:68:0d:fd:59:f8:
7e:6e:0e:00:0f:45:24:92:8b:2b:61:6f:61:e8:b1:
71:8f:22:50:7b:34:41:d4:ea:1c:d1:1e:63:21:3c:
97:57:06:ea:a1:d2:21:65:2c:10:8f:3a:22:ee:54:
94:20:87:c0:01:d9:af:08:45:20:0e:00:66:04:8e:
10:27:9c:c0:4c:07:39:18:67:26:05:24:7b:56:53:
06:69:0d:59:e4:e7:d6:2d:6c:df:2b:ec:55:07:7f:
e4:cf:e7:95:00:09:31:a2:dd:3a:c9:aa:d8:48:54:
3d:76:b8:10:f3:d0:a5:51:a3:00:31:08:92:4c:5e:
34:6a:0f:21:f8:b9:81:2d:95:91:7b:32:b9:a9:b7:
a9:d0:56:80:d6:99:49:49:6e:fc:9f:40:b6:4e:d8:
8c:2d:e7:d3:cd:bb:ae:fb:d6:52:7c:4e:4b:82:62:
7b:ed:cd:dc:4a:c4:1c:c3:b0:3a:b6:4a:66:7d:4d:
d8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:00:75:C9:DC:96:02:9D:60:77:B6:CB:09:75:7E:80:2D:9F:E5:25
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/WwB1ydyWAp1gd7bLCXV-gC2f5SU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.80.0/20
Signature Algorithm: sha256WithRSAEncryption
6a:71:95:7e:1b:e7:ed:ee:74:74:94:27:c2:48:1b:22:77:41:
3f:ee:7c:85:a1:51:30:71:18:6e:92:80:18:8e:34:e4:37:6b:
47:ea:fa:5e:53:2b:f0:88:b1:82:9c:fe:5c:43:c2:c8:00:a0:
5c:0a:c5:fc:e2:93:4e:91:57:a6:d2:af:b6:5d:09:55:58:b7:
a5:e5:1b:4d:b7:64:f4:b2:40:f2:2c:7a:6f:64:28:20:a0:c1:
b8:98:43:22:65:72:be:1c:8c:dc:c6:ed:ce:6b:cf:95:25:eb:
64:c8:77:bb:c4:fc:63:27:4d:f1:59:b7:42:64:de:03:0f:50:
33:22:2b:98:e6:84:92:24:7d:cd:dc:cf:62:f8:8c:84:c8:3e:
e5:8c:59:45:19:f1:d6:ee:47:8d:d3:ab:5d:39:99:ec:30:30:
46:1c:5a:ac:ee:0a:9a:47:3d:1a:9c:f0:8b:6f:e1:06:12:f3:
5c:c5:1d:93:85:92:fa:ca:26:30:44:4a:83:19:05:63:17:30:
08:55:5d:dd:8f:3c:29:3b:12:10:41:88:3a:bb:52:77:21:af:
26:3b:eb:cb:21:71:ec:d3:ff:e6:93:cb:95:42:26:01:e6:bf:
c6:fb:cd:a2:56:3d:dd:fc:84:83:c8:af:64:4a:2d:3f:97:20:
19:d3:9f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org