Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bneN8ZBcJZvv84vykJLb_9BWcRc.roa
File: bneN8ZBcJZvv84vykJLb_9BWcRc.roa (raw, json)
Hash identifier: viIQG1lEVRKrR9HxpYSVuirYIez77AA68EAG+PgOJEI=
Subject key identifier: 6E:77:8D:F1:90:5C:25:9B:EF:F3:8B:F2:90:92:DB:FF:D0:56:71:17
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B3C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bneN8ZBcJZvv84vykJLb_9BWcRc.roa
Signing time: Sun 07 Feb 2021 13:10:56 +0000
ROA not before: Sun 07 Feb 2021 13:10:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.16.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2876 (0xb3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6E778DF1905C259BEFF38BF29092DBFFD0567117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:0c:30:ec:92:22:75:c9:e8:d7:48:88:7d:f6:
66:90:e2:ad:17:61:15:77:e0:f1:dc:bf:28:1e:53:
97:cf:64:c9:15:65:bd:19:a6:f3:98:6d:ba:d2:96:
91:41:50:82:a9:07:a8:1c:1c:bb:47:05:e1:7b:ae:
00:95:df:60:1c:33:90:8f:5e:35:4f:8c:11:09:0c:
7f:0b:c0:c9:3a:c7:7a:2d:1e:4c:9f:0c:04:61:dc:
94:cd:5f:44:36:2d:54:4c:22:3d:5c:f5:c5:55:72:
f5:7d:6c:69:64:05:96:c0:02:07:b9:55:a2:7d:69:
8c:ee:49:71:b9:d3:5b:26:1f:f5:8a:df:e8:3c:da:
1f:93:89:04:df:4f:a6:d3:f1:a7:cc:cb:c5:b4:1d:
4a:cc:b1:1b:4c:f7:73:f1:0e:ea:95:4f:d0:48:8c:
f1:e6:d0:50:6b:42:49:1d:17:3a:a4:32:d5:16:b4:
62:46:ac:bf:95:4d:b3:03:6f:1b:43:84:1d:ca:9d:
0f:de:54:6f:1a:7f:fa:98:0e:17:cd:ff:75:2c:78:
e4:d2:fc:b9:3d:b2:dd:d3:44:88:e2:be:05:10:dc:
4a:10:5e:61:96:fc:bf:99:d8:5d:39:00:99:ea:89:
62:1e:9b:1d:0f:dc:37:af:2b:87:e8:68:b1:12:25:
c3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:77:8D:F1:90:5C:25:9B:EF:F3:8B:F2:90:92:DB:FF:D0:56:71:17
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bneN8ZBcJZvv84vykJLb_9BWcRc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.16.0/24
Signature Algorithm: sha256WithRSAEncryption
27:af:41:12:7c:25:1a:54:4a:8e:bb:48:b9:da:f4:3c:f0:a9:
24:f7:16:4d:0a:a3:e7:18:d6:df:41:d8:ec:a6:df:ad:06:00:
ab:4c:b2:a1:52:f2:51:7d:5b:52:81:43:f4:77:e5:60:43:cb:
ba:9c:d6:18:f5:57:8b:51:3d:87:56:87:76:ca:8e:25:8b:79:
f4:93:26:8f:85:cb:0e:0c:f2:06:ce:50:0a:a4:22:f2:78:fa:
fb:63:21:11:ef:4e:67:78:cb:a1:43:3d:cd:9a:00:52:d7:21:
d7:20:3c:66:b2:87:89:4e:99:0d:9a:b6:e0:5d:43:83:c1:a4:
e1:33:56:52:25:f5:c4:de:76:b3:62:18:1e:51:1c:0b:60:d2:
50:14:f5:f0:cf:ef:50:70:c5:dc:70:31:ae:cf:93:32:d3:3c:
67:2c:eb:f3:ea:f4:ab:28:42:4f:bb:ff:42:a1:07:b6:c8:51:
7f:2e:29:00:f4:b0:d4:9d:b5:c8:d4:89:19:73:9f:eb:39:3f:
8b:f0:71:06:ad:14:25:fe:d3:59:26:e0:2e:ce:85:50:06:6e:
22:66:1a:64:41:bd:36:58:d8:3d:d8:95:6a:02:3b:49:9d:b4:
08:e0:65:84:de:7a:57:79:6c:9f:03:db:73:f9:45:c7:32:be:
d2:24:45:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org