Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bxGCHmK0fcgZdlVgFuBr1uAPgKM.roa
File: bxGCHmK0fcgZdlVgFuBr1uAPgKM.roa (raw, json)
Hash identifier: N8F72dAvu73PrUIjEYROmVVyfo6PWUZJpNIUm/L0EcE=
Subject key identifier: 6F:11:82:1E:62:B4:7D:C8:19:76:55:60:16:E0:6B:D6:E0:0F:80:A3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0990
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bxGCHmK0fcgZdlVgFuBr1uAPgKM.roa
Signing time: Wed 16 Dec 2020 02:26:54 +0000
ROA not before: Wed 16 Dec 2020 02:26:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.16.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2448 (0x990)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:26:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6F11821E62B47DC81976556016E06BD6E00F80A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:71:d5:e6:1c:12:f5:bf:9c:54:78:f8:32:90:
70:b2:24:6d:90:5b:0a:06:54:94:6b:7f:29:27:ab:
4f:7b:6f:c1:00:43:e0:06:44:fd:19:3a:91:62:f2:
9c:b9:09:f8:49:0c:24:fd:68:46:05:52:00:98:65:
46:04:63:80:b4:a9:3e:c9:88:1c:16:6d:94:74:5b:
b6:b3:eb:b3:c3:7c:66:d8:2e:aa:0b:0f:aa:3d:7b:
49:15:d9:ef:ff:1f:8d:c8:63:8d:93:12:64:14:ab:
fe:31:c0:04:51:d3:12:1b:31:be:0e:c1:de:f3:1e:
62:15:66:2d:ce:bb:4c:9a:e3:88:78:1b:7a:f7:65:
20:50:0a:22:90:37:51:f5:8e:b3:41:b7:21:9a:9b:
e6:42:68:c8:9a:2a:2a:11:16:ec:8e:16:78:5e:5a:
b3:65:75:9e:43:64:9d:f1:f4:0c:88:18:7e:82:f4:
76:65:a8:95:1d:5f:dd:c4:95:c7:a4:ff:27:d2:c0:
34:76:51:e5:d6:61:ae:38:0b:43:7d:fa:4d:cf:f0:
16:81:d3:b9:9f:06:7e:7e:10:29:68:ac:0f:12:c3:
dc:c2:b7:41:af:ca:58:9e:14:49:29:4e:37:18:40:
02:64:4b:dc:4c:52:1d:7d:73:1f:9f:06:d1:15:14:
82:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:11:82:1E:62:B4:7D:C8:19:76:55:60:16:E0:6B:D6:E0:0F:80:A3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/bxGCHmK0fcgZdlVgFuBr1uAPgKM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.16.0/24
Signature Algorithm: sha256WithRSAEncryption
98:de:8a:cd:e7:df:8a:de:1f:f9:66:de:12:03:c7:8f:b3:c6:
c5:bf:78:0f:7c:ed:52:fd:e8:d2:c2:98:3f:7b:d2:6f:a9:f9:
47:28:03:3d:41:af:25:99:9f:a7:3b:e5:36:69:7f:46:a5:43:
48:ee:82:73:07:2d:be:a9:07:6e:ee:24:3e:8c:51:74:0d:6a:
bf:c7:16:5d:21:16:49:19:bf:53:98:44:6f:52:91:d2:a9:a8:
71:3e:99:09:fd:3f:8b:83:65:9c:11:20:e6:f3:06:48:c5:b4:
c8:a8:ef:6a:84:33:5b:05:55:d1:d1:b7:05:4e:d7:91:d7:97:
a6:83:2e:8e:a3:04:16:d8:7e:c2:b2:99:61:4c:33:27:16:06:
cf:33:07:b7:44:f2:b2:b4:6b:85:32:e7:da:30:d5:23:cc:97:
94:b7:37:c7:91:5e:ae:48:a2:8a:ab:77:a7:09:45:2a:ed:d5:
88:35:69:46:e7:50:7e:1a:39:ea:34:84:15:58:d0:ec:17:c2:
e6:85:86:e6:df:fe:49:9f:ae:e9:26:09:3d:87:d8:28:aa:75:
c4:ee:05:cf:dc:4c:fe:f3:44:1d:70:fd:81:14:e1:32:1d:79:
dc:01:8d:a1:f7:ad:17:0d:bd:ba:ca:c2:b5:98:37:bb:b1:45:
c5:66:cf:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org