Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Xx71ZpmyfUMU7uSvBCwvO8fvuiw.roa
File: Xx71ZpmyfUMU7uSvBCwvO8fvuiw.roa (raw, json)
Hash identifier: QeG+olFwxfHfhdzxM19+SZZ82sWXoMSniMvOlSEQ/OQ=
Subject key identifier: 5F:1E:F5:66:99:B2:7D:43:14:EE:E4:AF:04:2C:2F:3B:C7:EF:BA:2C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0980
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Xx71ZpmyfUMU7uSvBCwvO8fvuiw.roa
Signing time: Wed 16 Dec 2020 02:17:48 +0000
ROA not before: Wed 16 Dec 2020 02:17:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.7.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2432 (0x980)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:17:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5F1EF56699B27D4314EEE4AF042C2F3BC7EFBA2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:3b:37:5a:d2:24:5b:53:b6:90:2b:ab:89:56:
ae:85:6b:1a:64:c7:1d:1f:ab:9c:4e:16:e0:98:ee:
5a:53:e6:84:89:54:81:d1:8c:4a:07:6d:07:47:08:
99:bb:62:f8:c0:71:94:b2:0e:b6:1c:a4:f3:2d:9a:
b1:00:8b:16:3a:91:d2:67:97:63:71:73:98:92:15:
e5:79:16:83:3f:83:14:0f:f3:64:d0:ac:8d:0b:82:
97:fc:8f:99:a1:90:50:95:0a:d5:20:6f:05:5b:04:
39:72:3f:1d:b0:ee:20:8c:10:92:6a:95:7b:c3:e1:
40:18:c9:1f:bc:33:67:8d:96:b3:ed:d3:a7:88:51:
a5:b1:eb:2a:ca:37:3e:ea:77:46:61:7b:48:fc:57:
b6:84:d7:a8:54:05:69:85:cc:b1:4c:25:02:64:ea:
58:2a:96:66:aa:c1:8e:99:fb:e6:7d:d5:90:54:17:
b2:8b:2d:a0:61:bd:da:4c:14:2f:e9:bf:44:bd:19:
a7:66:2a:8a:1f:8b:e6:0f:6a:59:21:97:15:5d:2a:
17:f1:7b:49:45:25:46:9d:f7:37:29:58:55:27:73:
7c:e7:47:22:d1:87:3c:a6:fe:a8:e8:9d:e8:2b:ff:
bc:5c:00:4f:51:6f:7d:20:6b:8d:54:da:33:c6:95:
aa:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:1E:F5:66:99:B2:7D:43:14:EE:E4:AF:04:2C:2F:3B:C7:EF:BA:2C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Xx71ZpmyfUMU7uSvBCwvO8fvuiw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.7.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:11:22:4d:ab:22:02:d0:7f:29:41:12:65:a3:a7:2b:bd:af:
b8:8c:48:a3:7d:ef:34:95:ad:db:e7:d4:45:0a:53:8c:98:38:
76:ac:d1:d4:67:87:d9:3b:ab:6b:82:66:d7:4e:83:74:02:03:
9e:bc:a6:12:e6:cd:fe:fc:24:dd:fe:88:6e:02:0c:0e:fc:6a:
fa:56:88:2a:f4:54:d5:96:c7:da:d2:66:4d:6f:1f:78:51:60:
9d:b3:47:27:f4:0b:12:ac:08:15:0b:05:e6:8b:42:35:89:ca:
26:d9:31:c5:86:b6:67:f8:48:a2:8c:6f:a0:b5:62:c7:46:1b:
8f:86:27:4c:73:7c:4e:e4:a6:e1:a7:5b:a4:cf:b4:4e:e8:ff:
9c:15:b0:8f:4d:48:8d:ff:ec:9a:10:7c:35:20:d7:5f:aa:05:
5e:39:59:07:aa:24:8e:28:cb:c8:65:72:7c:8e:eb:f5:16:d4:
02:11:4e:68:d3:47:27:43:88:04:b4:c7:d7:2b:f7:41:88:1a:
e4:ce:96:49:b4:3b:d4:5f:f7:5d:11:ad:d7:b7:d1:65:65:e4:
9e:45:c5:e2:4f:d7:d0:fd:b9:39:f3:6d:ef:09:d3:a1:da:9a:
cc:79:a7:a3:82:82:8b:9c:20:9b:c6:c1:4a:e0:86:55:2e:90:
5b:21:3f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org