Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/c6OYFf0UqhmChettIxB3c_8rts8.roa
File: c6OYFf0UqhmChettIxB3c_8rts8.roa (raw, json)
Hash identifier: IDw2qwmzQ2iC1rE9reOAhltNuyZvV2Ea5i2xQL/tpsw=
Subject key identifier: 73:A3:98:15:FD:14:AA:19:82:85:EB:6D:23:10:77:73:FF:2B:B6:CF
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 098A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/c6OYFf0UqhmChettIxB3c_8rts8.roa
Signing time: Wed 16 Dec 2020 02:25:44 +0000
ROA not before: Wed 16 Dec 2020 02:25:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.35.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2442 (0x98a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:25:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=73A39815FD14AA198285EB6D23107773FF2BB6CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:01:a2:d6:6a:39:d4:e0:fe:84:e2:1d:0b:27:
eb:44:78:2f:30:23:50:5c:98:3a:66:cb:34:27:84:
4c:5a:82:c8:40:bb:c1:a7:71:25:f6:ee:28:56:24:
1c:af:b6:18:22:83:c3:96:63:10:56:00:01:86:69:
e7:16:aa:cc:eb:8f:80:a9:ff:2b:ab:b9:90:b4:86:
c8:92:2a:7d:bc:39:4c:aa:ee:1a:0c:02:5e:61:8d:
e4:da:1c:df:12:47:da:59:f9:43:5c:81:62:4c:97:
ab:89:c6:0c:03:47:70:d4:7a:0e:77:6b:5e:83:cf:
39:5e:4b:3c:99:6c:6e:93:2a:7a:39:c9:90:2d:9b:
6a:cb:8b:a8:11:8c:1b:3d:09:ee:3e:bc:db:f7:df:
a0:7e:ca:b1:56:c7:56:ba:c8:df:7b:28:27:46:26:
43:28:f9:cb:58:99:76:80:52:20:4d:26:70:b5:98:
5b:ab:20:81:f5:2a:9a:23:5b:0d:c1:00:11:9d:64:
12:92:6b:4e:ef:06:0d:e2:15:db:f5:c8:0e:bb:c7:
89:18:73:22:06:e0:4a:97:3d:2e:2b:48:e1:38:5b:
e5:9b:83:f8:e4:e8:20:91:ca:d1:d3:0e:39:48:23:
3f:dc:63:5c:c2:0b:f6:c8:fa:f7:ef:91:46:8c:bd:
fb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A3:98:15:FD:14:AA:19:82:85:EB:6D:23:10:77:73:FF:2B:B6:CF
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/c6OYFf0UqhmChettIxB3c_8rts8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.35.0/24
Signature Algorithm: sha256WithRSAEncryption
78:0f:7e:0f:df:0d:d9:00:2f:b3:1d:dc:4b:39:92:c5:5c:88:
ba:f9:12:c6:bf:dd:f2:e3:6c:42:a8:97:5b:1c:6d:8d:07:c1:
ab:25:9d:4b:c5:c1:74:77:9d:d3:85:b7:9a:6f:2d:ab:7a:3d:
bc:bf:95:bc:cb:b8:a3:ab:fc:15:cc:b1:5e:30:39:0d:50:0c:
39:fd:f8:9e:3d:0e:08:87:e7:f5:df:a0:5b:d5:d1:a1:55:9c:
23:20:d1:25:89:3c:99:f4:94:e9:0a:54:ae:5e:37:d5:f7:ac:
de:63:d5:b2:03:4a:aa:f7:7c:5b:3a:0a:b4:7a:33:b1:69:ae:
e7:4b:c5:52:0a:59:72:68:77:40:00:dd:7b:ba:02:b3:1f:bb:
67:78:79:0d:c1:c1:c5:9b:b8:43:f6:84:11:31:2f:60:4f:72:
57:dc:a0:a9:16:96:98:6f:8d:67:bf:38:0d:41:7e:e6:af:f5:
1b:b2:17:8c:94:db:a4:be:d6:34:39:45:57:cd:17:9b:44:9d:
7f:ec:48:ee:5f:ea:b3:23:5e:09:d7:92:9d:5a:75:56:98:8a:
e0:3a:cc:ce:e0:97:50:bc:84:4e:17:8d:73:fa:47:77:3c:8d:
4a:12:ac:f9:de:ab:1f:3d:5b:ac:7c:5e:7d:c4:2d:81:cb:5f:
65:0f:7c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org