Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/e24vLzlZ6OzeS96qLC6QzTJYcjs.roa
File: e24vLzlZ6OzeS96qLC6QzTJYcjs.roa (raw, json)
Hash identifier: f+X7Bdm1MpDGj0i2I8ahK4cB/bUZqZrpfDSuC4aRE9k=
Subject key identifier: 7B:6E:2F:2F:39:59:E8:EC:DE:4B:DE:AA:2C:2E:90:CD:32:58:72:3B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0986
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/e24vLzlZ6OzeS96qLC6QzTJYcjs.roa
Signing time: Wed 16 Dec 2020 02:19:13 +0000
ROA not before: Wed 16 Dec 2020 02:19:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.49.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2438 (0x986)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:19:13 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7B6E2F2F3959E8ECDE4BDEAA2C2E90CD3258723B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7b:d7:8e:2c:61:b1:1a:eb:cb:37:50:79:23:
60:b3:f9:be:fc:93:a9:de:73:c0:c3:e0:56:0d:a2:
f6:b5:28:ec:bd:0a:29:0b:b3:05:d0:4d:6d:59:1a:
9f:5e:cf:2d:f8:2e:52:71:09:15:e7:5d:f8:4f:a8:
16:76:f3:02:9a:2d:35:0c:9b:95:ba:3f:5a:77:44:
62:9d:f0:cf:31:dd:1c:5d:f1:0c:16:29:95:f6:9b:
95:ab:42:94:8a:d0:37:18:cf:fe:6c:88:7d:5d:82:
3c:a0:d4:30:34:43:8c:4c:4a:5d:eb:1e:ee:1b:1d:
bd:7b:37:64:be:ee:6b:9d:ee:21:9b:64:10:90:44:
1d:f1:80:f7:7d:3d:11:4c:e3:30:d9:e0:0d:f2:cd:
28:ec:ac:2b:53:83:c3:ef:40:3d:fe:ab:80:c9:fd:
27:a6:17:34:2e:18:43:97:62:ea:5c:f6:56:49:12:
fb:6c:17:8b:2f:43:b2:e6:c8:21:a3:b7:b2:de:e8:
e3:5f:06:49:34:cf:f8:b5:72:5f:29:30:18:32:0c:
a5:0d:42:d1:30:ea:8a:dc:25:ab:0b:63:38:c0:29:
f5:2f:6e:5a:46:e1:6c:63:7a:b7:93:01:12:06:a4:
a4:21:33:47:f3:9e:82:fc:0c:c1:3d:a5:74:5f:fb:
7d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6E:2F:2F:39:59:E8:EC:DE:4B:DE:AA:2C:2E:90:CD:32:58:72:3B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/e24vLzlZ6OzeS96qLC6QzTJYcjs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.49.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:4c:1e:93:7a:ce:18:bd:83:70:a5:91:09:63:84:2e:f5:f8:
88:c5:a5:c2:75:d7:2c:31:61:31:0f:02:5c:cb:f5:49:05:c7:
2b:03:52:d2:e3:d0:e9:90:3d:61:62:f4:eb:c2:ed:ba:fe:2d:
c1:0a:03:cd:05:87:42:da:ba:1f:cf:4f:74:15:cb:d0:af:00:
82:d9:1e:8c:6b:50:20:a3:61:8d:2e:e9:3c:12:8c:11:94:6b:
20:cb:8d:7d:c0:3e:43:23:7c:3c:6e:02:bf:70:3d:91:89:0c:
6b:67:89:7d:a0:4b:2d:14:fb:eb:ac:2f:87:ae:f9:e2:a8:35:
34:f6:5c:70:bd:57:2a:a2:c6:4c:e7:2c:7d:ab:6e:59:f9:be:
f6:2d:a9:5c:bb:fc:6b:ab:21:7a:bd:1c:73:50:a3:f7:05:96:
c3:dc:9b:60:ef:9f:7d:b8:0c:81:df:2c:fc:d0:c7:2e:0d:bb:
41:31:26:00:f5:19:60:77:f4:24:a9:d1:6d:08:da:55:72:18:
27:b6:9e:a8:9c:83:72:06:81:71:59:e4:a8:83:c8:59:82:b1:
75:71:01:a7:a7:b2:df:d4:00:72:fd:00:c8:37:07:d3:c9:eb:
7f:67:7b:c8:46:cc:03:5c:09:27:db:c3:78:4d:51:b3:63:6e:
cf:e1:e4:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org