Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aItJkB03K_KEsep37wBXyaD30BE.roa
File: aItJkB03K_KEsep37wBXyaD30BE.roa (raw, json)
Hash identifier: hUPznMcyH+682pp2KDx038g3aNOCE+OMBQDa98W5Qpk=
Subject key identifier: 68:8B:49:90:1D:37:2B:F2:84:B1:EA:77:EF:00:57:C9:A0:F7:D0:11
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B4E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aItJkB03K_KEsep37wBXyaD30BE.roa
Signing time: Sun 07 Feb 2021 13:12:53 +0000
ROA not before: Sun 07 Feb 2021 13:12:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.112.0/20 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2894 (0xb4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:12:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=688B49901D372BF284B1EA77EF0057C9A0F7D011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d2:49:de:83:ac:e8:bc:b3:20:cb:6f:0a:db:
8a:e7:df:54:e6:05:4c:01:10:18:2b:41:84:a1:46:
d8:f8:01:64:be:93:b8:46:aa:85:a4:01:d9:bf:29:
10:fd:30:b0:db:af:67:ca:34:d3:a7:2a:3a:57:c4:
6d:53:f9:fd:e0:5b:b2:23:d2:33:e5:41:f1:c0:dc:
5c:5a:a4:86:6c:5a:59:90:b2:1b:1c:6b:0c:4f:39:
3e:db:b9:cc:06:50:a9:ba:f5:5f:fd:0b:07:52:d0:
fc:16:87:94:5a:c7:a2:fb:61:c7:0f:d4:96:ba:fc:
c6:4b:e7:2e:ce:1c:f8:77:11:3f:48:7d:38:54:b6:
48:5a:b9:ba:7e:03:bb:a0:16:bf:8f:f4:41:ae:c3:
21:83:28:2b:84:72:6d:57:d1:7d:2f:eb:d4:df:a6:
d3:f9:93:f7:87:c9:e0:6f:04:c2:52:2b:78:75:f0:
33:04:23:7d:74:d0:d6:69:cc:53:29:fa:1d:39:b4:
a1:72:ff:cc:25:1e:89:e5:2f:e1:da:98:82:ba:11:
6c:ba:4a:4e:c8:d0:0d:90:c7:e9:d4:b6:12:12:51:
7b:d3:2c:55:93:83:8e:be:a2:30:09:3b:f1:70:38:
86:0e:b5:ab:fb:db:0a:e1:fb:31:56:0e:ed:b8:f6:
2d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:8B:49:90:1D:37:2B:F2:84:B1:EA:77:EF:00:57:C9:A0:F7:D0:11
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aItJkB03K_KEsep37wBXyaD30BE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.112.0/20
Signature Algorithm: sha256WithRSAEncryption
95:6b:16:c9:bf:fc:50:fe:50:c7:4f:a2:6d:85:3d:34:bd:15:
42:ba:37:14:b9:f5:87:f9:f2:35:c5:b6:14:46:b4:ab:d0:fb:
5f:36:ed:88:ec:b4:6b:6b:ed:e1:b8:00:94:90:a5:f3:ba:5e:
63:79:4b:38:18:58:1f:9d:34:76:cf:40:d0:e2:fd:17:63:48:
22:b7:3e:fa:85:19:54:8b:6a:54:a7:a4:5a:5e:c1:c9:b3:4f:
8f:7d:53:e1:df:6c:8b:d6:a4:af:3b:3a:a3:ca:35:e7:69:d9:
bc:0b:8a:b3:ef:14:c9:12:bf:f3:6e:af:1c:65:1b:a3:c8:42:
20:16:f5:22:67:78:7f:11:4a:80:92:9c:b2:dd:c2:47:66:8b:
d2:1d:f7:a4:2f:6e:43:83:ba:f6:2f:d5:c0:7c:37:fe:8b:29:
52:30:e4:08:0a:1f:25:ae:58:55:d6:36:c8:0b:d1:ff:9b:47:
31:de:67:a7:b4:e2:8c:c5:d4:35:f9:36:f0:6b:69:e8:2a:40:
6e:e5:d4:3c:1c:be:39:96:a2:76:c3:d3:f3:a4:fa:a9:a1:c7:
5c:ad:e9:f7:ef:81:14:b2:2b:6e:99:12:3e:7f:5b:b8:e2:c2:
80:0a:b6:c5:7d:88:da:fc:e1:9a:39:0c:7b:0e:08:f4:3f:9a:
51:78:b3:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org