Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ajmxQpiYyT8uG3GjI_g3n3oyyww.roa
File: ajmxQpiYyT8uG3GjI_g3n3oyyww.roa (raw, json)
Hash identifier: wHuhZzvF2RY+BfXijXKpSPHSRzM0q7ynT48fWlG0Wlc=
Subject key identifier: 6A:39:B1:42:98:98:C9:3F:2E:1B:71:A3:23:F8:37:9F:7A:32:CB:0C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C91
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ajmxQpiYyT8uG3GjI_g3n3oyyww.roa
Signing time: Wed 29 Sep 2021 02:49:59 +0000
ROA not before: Wed 29 Sep 2021 02:49:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.17.104.0/21 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3217 (0xc91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6A39B1429898C93F2E1B71A323F8379F7A32CB0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9c:ba:64:5d:9f:76:15:e8:04:d0:1a:55:f5:
80:8e:77:9a:9b:9a:cb:ed:ba:10:3b:c2:c0:ca:5a:
43:bf:75:61:f3:ae:88:0e:84:0f:3a:8b:44:5a:30:
69:97:71:67:23:d6:cf:79:3d:c1:57:5d:6d:f8:14:
5a:34:e7:40:4e:ee:ac:bb:48:1e:8a:66:4c:b1:e0:
ab:be:a9:69:74:62:18:57:0c:e1:6e:e7:77:b2:0e:
32:58:03:ef:c3:7d:5c:a9:14:b4:1e:14:e5:58:e4:
ab:dd:44:77:5b:fb:ab:5c:d1:99:4f:e3:a5:b5:fc:
2c:21:54:3d:b8:a7:99:2c:cb:bc:98:19:78:cf:4b:
78:80:30:20:0a:c2:a6:11:47:c1:96:9a:f9:61:ab:
70:9d:9a:e2:53:ef:71:6d:98:be:3e:2e:f3:95:14:
39:36:a4:1b:54:21:7c:9b:40:dc:22:32:64:92:21:
9f:f2:69:4d:e0:b3:aa:13:d1:2b:40:26:1f:d8:c5:
2c:2b:27:0e:d6:a2:a0:a4:1b:b1:c4:5f:6a:bd:a3:
37:0a:01:9e:b3:fc:11:97:88:0e:06:34:d5:cc:20:
06:6b:e0:f6:e9:9a:aa:d6:c7:fc:d9:11:d6:a7:4d:
43:87:e5:1d:a2:75:31:52:1f:27:1b:a2:c5:b9:94:
27:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:39:B1:42:98:98:C9:3F:2E:1B:71:A3:23:F8:37:9F:7A:32:CB:0C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ajmxQpiYyT8uG3GjI_g3n3oyyww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.104.0/21
Signature Algorithm: sha256WithRSAEncryption
95:2a:ea:b0:d7:e0:9f:83:f9:51:fb:bc:4a:e7:cf:2a:11:6a:
21:e9:f8:25:6a:5c:2c:5c:b4:c8:05:c2:bb:5c:27:c6:07:7f:
ea:3a:75:fb:a2:4e:0a:6a:14:38:de:a3:dd:b7:5a:74:5e:8a:
48:90:21:f2:50:1f:d7:c6:98:ce:b5:92:6f:d5:d0:79:a7:4f:
59:05:94:dd:9f:3c:86:37:39:46:1d:0c:06:d9:25:a1:d3:bd:
ed:91:df:84:99:64:6b:dc:80:f3:85:96:d0:a5:88:c3:00:c2:
5a:9e:72:8e:87:65:92:12:2a:ac:14:59:97:b2:c2:cb:f8:18:
ed:75:10:3e:d4:09:dd:fd:ee:70:bf:31:f8:11:00:64:c9:72:
ae:8b:d6:73:cd:a0:57:59:8a:01:27:30:e8:3f:0d:1b:99:30:
c2:a6:b7:2c:eb:1f:c9:25:6e:90:50:ab:61:72:73:33:ed:2d:
98:7a:08:a5:9b:2e:ae:12:0d:97:66:86:38:3f:2d:a3:fc:71:
b1:fa:61:1f:5b:4a:4b:c6:b6:da:0b:6c:6a:43:6d:e3:ee:2b:
c9:57:7d:64:ed:f0:7a:38:a9:89:78:5f:7b:56:41:9d:49:4f:
ee:a1:a3:e6:d8:81:47:7f:fd:68:4a:02:d8:84:6e:6a:21:3c:
41:d5:71:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org