Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XpfH3MBn0YLlKZduUS6OZL20dbs.roa
File: XpfH3MBn0YLlKZduUS6OZL20dbs.roa (raw, json)
Hash identifier: DBNMTJf5G2MVqe8Ie24VKythdOjulyLIl/Ui05fYYoA=
Subject key identifier: 5E:97:C7:DC:C0:67:D1:82:E5:29:97:6E:51:2E:8E:64:BD:B4:75:BB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XpfH3MBn0YLlKZduUS6OZL20dbs.roa
Signing time: Thu 15 Sep 2022 02:46:49 +0000
ROA not before: Thu 15 Sep 2022 02:46:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.17.112.0/20 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:46:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5E97C7DCC067D182E529976E512E8E64BDB475BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:87:57:23:32:9c:9c:a5:cb:0a:98:a3:9b:4a:
3b:f0:f7:37:f8:c6:42:6c:c8:47:41:35:be:6f:4e:
34:b6:80:b3:51:4b:bc:3c:28:bf:7b:5d:ef:b1:5f:
4d:58:5f:48:99:9a:b2:a4:ad:6f:76:73:9d:38:39:
29:ac:6b:31:7e:9c:c9:ce:2b:7f:be:a3:02:79:3b:
c3:d0:e2:61:5f:ab:be:98:b4:8a:25:e7:2a:61:c0:
73:cc:ab:3f:0b:4c:d3:ae:d9:98:d2:f1:f5:48:49:
f2:23:4a:99:6c:9a:c2:4c:2f:a1:6a:38:4a:be:a1:
eb:0a:a7:3a:8b:af:f9:75:18:45:23:b0:56:18:ea:
d9:dd:30:a1:cc:b6:23:9e:98:26:79:0e:74:1e:00:
71:f5:cb:0d:70:65:df:54:c8:cc:58:fa:27:36:0b:
21:4b:c4:a4:d8:88:cb:79:55:e1:95:68:14:51:c7:
ea:c4:95:a9:c6:c3:e9:f0:aa:c6:4a:0f:55:df:6d:
76:81:4f:57:e6:af:f6:10:61:1d:4a:74:0d:b3:9c:
b4:8e:81:ff:73:46:ee:fc:47:4d:2e:2c:3d:c0:59:
6f:47:3b:f1:14:ce:56:78:2b:66:9d:a3:73:cd:39:
be:8d:d0:af:f2:60:ee:d7:c1:f2:74:7b:9b:c8:f3:
ee:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:97:C7:DC:C0:67:D1:82:E5:29:97:6E:51:2E:8E:64:BD:B4:75:BB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/XpfH3MBn0YLlKZduUS6OZL20dbs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.112.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:ab:c9:6e:49:58:fe:44:38:20:38:38:8d:80:0f:68:90:c9:
a1:95:65:f7:15:0d:cc:59:ab:12:92:1e:8d:3e:c1:d3:5e:93:
d6:6d:c3:05:95:bc:4a:e7:e8:9f:9e:b4:0a:5a:07:00:07:b5:
5b:55:5e:a8:05:1f:0d:17:74:18:1f:3f:0c:48:31:a0:d1:28:
dd:d7:6d:84:fc:d1:d0:94:95:52:13:f8:a0:59:bc:0c:d1:07:
c8:41:c8:bb:49:13:43:de:0f:84:c3:28:b8:c3:31:ad:65:e2:
8d:a0:dc:3b:61:b1:f2:b1:29:6d:b0:07:d6:74:cd:ad:1f:5e:
a2:ae:c2:de:97:4a:55:93:f4:a1:a7:8c:17:0d:92:61:f2:1f:
fd:14:22:cb:d3:5f:16:e8:d1:1c:29:51:c9:dd:f4:07:eb:98:
04:fa:fd:02:91:43:2e:0a:1a:29:d2:e9:fb:fc:5e:a8:70:99:
21:ae:d8:3b:80:e8:01:2a:aa:9e:ee:85:76:c4:e7:e6:33:42:
56:c1:d8:e8:f8:f8:90:94:e0:52:ad:00:0c:f1:9f:17:e1:50:
97:ac:35:3d:e1:91:59:0e:fb:f6:26:6b:67:34:6a:2a:36:9f:
7e:4f:1e:9c:85:4a:5e:6c:8a:92:01:06:17:90:e7:f7:93:05:
0a:7f:35:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org