Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YOGyDHB8aPQZ0uOLdx5I6hUA-IQ.roa
File: YOGyDHB8aPQZ0uOLdx5I6hUA-IQ.roa (raw, json)
Hash identifier: 4XwkbfOB6wZ8n0UrxKuGq7Wd1KxbRCDWnipSUw+O7jA=
Subject key identifier: 60:E1:B2:0C:70:7C:68:F4:19:D2:E3:8B:77:1E:48:EA:15:00:F8:84
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CA9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YOGyDHB8aPQZ0uOLdx5I6hUA-IQ.roa
Signing time: Wed 29 Sep 2021 02:50:07 +0000
ROA not before: Wed 29 Sep 2021 02:50:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 13335
IP address blocks: 210.17.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3241 (0xca9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=60E1B20C707C68F419D2E38B771E48EA1500F884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:63:21:f6:9b:da:13:b0:c5:a8:dc:d0:41:cb:
84:d9:b6:c9:b1:d6:02:9e:56:de:6d:81:de:9a:d7:
1c:b1:68:f1:dc:0f:a2:30:51:07:4a:9f:f1:9d:39:
53:66:c4:89:93:2c:cb:50:ec:6a:fe:86:d9:6c:ef:
33:6c:bd:a2:9a:37:44:04:81:36:09:97:0d:23:a1:
0c:11:44:41:89:04:c2:88:47:27:54:0e:cb:0b:b6:
fc:02:35:9f:49:24:18:1a:b3:97:0b:3b:4c:87:45:
84:f4:4e:1f:fb:50:c2:5f:35:4f:42:5a:bd:80:5c:
1c:5d:fc:4a:88:15:7b:a2:1e:84:5e:56:fc:59:8d:
b2:42:fa:29:2e:ce:11:8d:d7:02:52:1f:ef:77:c9:
07:31:40:af:15:ea:bd:ed:a1:1b:de:fb:aa:c5:9b:
37:8b:f7:27:f1:39:a5:8d:8a:22:c5:83:de:18:68:
2c:6d:ed:fa:e5:08:e0:ad:77:bb:af:3c:06:83:a7:
a4:8d:ec:1b:f7:5e:f6:a5:67:e1:5c:5d:eb:06:06:
96:01:d1:7c:cc:59:ee:25:c8:69:0b:34:f4:a6:c5:
ef:36:a6:a7:29:a1:de:78:88:f3:84:1c:cd:cf:0c:
ee:6a:09:f4:50:3a:85:9b:98:21:5a:20:06:81:62:
61:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E1:B2:0C:70:7C:68:F4:19:D2:E3:8B:77:1E:48:EA:15:00:F8:84
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YOGyDHB8aPQZ0uOLdx5I6hUA-IQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.44.0/24
Signature Algorithm: sha256WithRSAEncryption
50:e2:4b:fd:d0:bf:ec:15:3b:13:b8:72:2c:ed:d9:92:f9:c1:
bb:2b:94:eb:27:a6:aa:e1:34:5f:c9:88:bc:89:35:72:55:a6:
d7:b0:3c:bc:38:6e:7b:dc:48:34:66:56:82:59:de:4d:43:91:
f8:3b:b4:77:92:a8:bd:ce:4d:5d:a7:4c:01:4b:58:76:9e:53:
61:41:f6:05:2a:4d:67:a8:cc:cf:ab:dc:58:73:0c:3d:9e:61:
d0:93:d9:53:9e:9f:2e:5e:be:75:e7:98:a8:53:cb:c0:96:73:
ab:8b:16:cb:7c:45:b4:6c:aa:a7:e2:08:52:29:56:b1:83:78:
de:77:9d:06:bb:3c:11:68:5b:e3:43:81:cc:23:c3:d8:bf:98:
1d:64:64:21:75:c7:fb:f6:c0:e0:e2:07:de:12:7e:14:a1:d7:
40:3e:6c:7c:7a:a8:f8:80:22:bd:a7:5f:b6:3b:3c:60:7a:5b:
89:07:43:3d:66:b3:bc:94:4f:73:19:4b:46:a7:69:ae:8e:19:
fb:bd:be:c4:19:1c:46:51:5d:29:e0:e9:05:c1:21:6d:6a:ae:
b4:97:9c:7d:35:70:e1:f9:b9:81:7b:8f:43:43:01:e7:38:63:
0f:ba:cd:9e:27:aa:cb:84:d5:10:87:b4:01:fd:c8:bc:ea:08:
38:15:0d:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org