Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_MRNBpdkanU7sHc-VEBxKsvDPN4.roa
File: _MRNBpdkanU7sHc-VEBxKsvDPN4.roa (raw, json)
Hash identifier: PQyqvtZnK1vzIcs1KoVMCgScPAaklobPwJnslB1bBYs=
Subject key identifier: FC:C4:4D:06:97:64:6A:75:3B:B0:77:3E:54:40:71:2A:CB:C3:3C:DE
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A90
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_MRNBpdkanU7sHc-VEBxKsvDPN4.roa
Signing time: Sun 07 Feb 2021 11:36:37 +0000
ROA not before: Sun 07 Feb 2021 11:36:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.62.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2704 (0xa90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FCC44D0697646A753BB0773E5440712ACBC33CDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:08:a4:3c:34:5e:15:fb:73:31:26:eb:2b:55:
91:25:08:40:bd:c2:06:db:80:76:62:d8:76:2a:d1:
7a:37:a5:f3:24:70:61:a3:4b:82:89:3b:39:d0:d6:
57:8d:94:ec:03:df:c0:48:27:43:82:19:85:9f:99:
65:b6:94:32:42:03:d4:7b:19:a2:56:81:cc:cd:e4:
9b:7f:cb:1f:62:71:8a:20:c1:86:f8:e2:a9:07:72:
01:01:93:4d:14:52:af:75:17:10:47:55:57:72:c8:
80:f7:12:c6:7b:8a:9a:60:b0:30:fc:06:e7:03:94:
43:14:4c:00:43:34:8e:35:74:ab:74:f4:49:63:95:
17:e3:42:fd:e9:0b:4c:80:1d:54:5e:58:07:5b:05:
9f:09:f4:25:c9:6a:48:98:1e:d3:91:6c:c8:40:e5:
f4:0a:fb:14:25:78:ed:9e:a1:0d:d5:68:0d:58:a3:
9e:44:d9:3d:0b:29:27:b9:d5:9b:38:69:6c:ba:b1:
d6:0f:e7:71:61:ae:12:ec:b5:a1:fa:57:dc:82:d1:
d7:35:45:ba:f9:33:36:e5:56:6f:e0:b3:c9:f8:ad:
c5:b6:1e:a6:6f:ac:20:fa:80:25:52:2c:51:cd:d5:
1f:2c:2d:12:c1:46:85:cd:56:1b:cd:49:f7:92:7f:
29:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C4:4D:06:97:64:6A:75:3B:B0:77:3E:54:40:71:2A:CB:C3:3C:DE
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_MRNBpdkanU7sHc-VEBxKsvDPN4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.0.0/19
Signature Algorithm: sha256WithRSAEncryption
4a:58:2d:55:b5:df:ca:bd:87:eb:36:fb:36:2a:ed:41:20:e1:
0a:49:17:e9:fb:2b:49:ff:aa:f2:73:96:ad:15:e5:d2:ba:d7:
2c:cb:50:87:d8:91:87:3f:1e:51:98:7e:6c:eb:25:6a:ee:6a:
c5:1f:20:f0:17:72:7d:92:4b:a4:5a:75:f6:0d:c1:d6:ee:ae:
c5:20:08:16:e6:9a:03:f2:a4:9e:dd:ce:85:93:89:00:75:94:
69:9b:d8:f5:f9:2b:bb:a8:cf:59:ab:99:f0:83:51:0f:15:3b:
68:da:b2:df:1c:f5:47:b9:03:9c:2c:45:21:a5:00:24:78:d3:
db:d8:2a:6b:19:10:24:06:5d:d3:3f:a7:52:06:f4:ff:31:d0:
59:50:45:08:f0:26:2f:0b:6c:ac:69:95:5a:9d:88:a6:1f:25:
89:f6:7f:31:42:54:aa:b6:12:97:9a:30:6c:da:20:01:d6:ee:
73:af:03:3a:25:1a:20:a8:e2:8d:10:a0:29:52:8a:5c:51:61:
e5:16:66:de:d0:7d:d2:b3:45:4c:1f:8e:7c:a7:c0:82:08:da:
6e:57:91:a9:ff:0d:ac:e6:81:f8:c1:a8:74:b6:53:de:b8:cc:
74:34:ca:fd:bd:d5:e1:64:5e:ef:12:06:ad:89:0b:65:e9:a7:
a6:0b:c2:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org