Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jf9wSkYPeahmfvn4KCgZ7E58dpU.roa
File: jf9wSkYPeahmfvn4KCgZ7E58dpU.roa (raw, json)
Hash identifier: /h0iSHfypq9X1wdTI+rBFfXIcLx70CMfTHEPlcZnUTI=
Subject key identifier: 8D:FF:70:4A:46:0F:79:A8:66:7E:F9:F8:28:28:19:EC:4E:7C:76:95
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CC0
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jf9wSkYPeahmfvn4KCgZ7E58dpU.roa
Signing time: Wed 29 Sep 2021 02:50:13 +0000
ROA not before: Wed 29 Sep 2021 02:50:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.17.19.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3264 (0xcc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8DFF704A460F79A8667EF9F8282819EC4E7C7695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c8:3d:0f:4d:13:fd:32:80:36:08:ff:09:d5:
5a:c6:98:f9:08:ae:da:b9:90:e1:df:d9:f1:34:0e:
4f:ab:aa:4f:47:41:90:d7:35:53:63:49:9d:70:1d:
91:bc:df:7c:69:62:1b:fa:8b:e7:af:c2:26:cb:ac:
ff:50:e2:e2:57:aa:a3:71:48:bf:48:d8:38:de:d9:
d5:e5:b6:45:a5:ba:2c:07:fa:4f:26:08:5c:be:0a:
87:53:da:80:ab:39:de:7a:e2:29:61:f1:f5:c5:f8:
29:be:15:5c:51:bc:af:76:ad:f7:9f:bd:80:45:6a:
9c:79:5f:8d:fb:a0:2b:c0:75:7d:fc:37:dd:c0:46:
9a:28:77:21:5e:5b:76:c5:dd:bd:c6:ee:1f:9a:6a:
04:b0:4d:fd:56:e8:aa:6f:5c:02:fa:0f:11:03:b9:
89:e2:a9:55:bc:8d:b7:9e:89:72:d1:a7:40:e9:ab:
04:f2:6c:73:15:45:3b:e5:0d:5d:15:8b:d7:8e:32:
15:9a:cb:80:7e:cb:7b:3f:0c:96:32:41:98:ed:98:
4c:06:00:c8:99:d0:72:86:85:a3:6d:0b:52:af:89:
dd:91:78:be:bd:42:b5:ad:dd:89:67:e9:8e:34:9c:
2d:2f:23:d5:79:0e:32:79:37:a7:65:0f:25:19:55:
bf:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:FF:70:4A:46:0F:79:A8:66:7E:F9:F8:28:28:19:EC:4E:7C:76:95
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jf9wSkYPeahmfvn4KCgZ7E58dpU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.19.0/24
Signature Algorithm: sha256WithRSAEncryption
82:24:7f:57:be:9f:cd:3b:5c:50:5e:23:fa:f7:83:c2:82:74:
06:c3:c0:47:1e:4f:01:ae:37:85:98:e6:1a:77:03:ca:f2:d2:
df:36:8c:b8:77:8e:a7:aa:f1:13:d2:9f:45:9d:7f:2b:02:16:
8b:a9:1f:f2:a1:7d:73:87:32:89:d8:d3:61:1b:0d:a7:0a:06:
68:9b:01:fc:ed:5e:43:84:bc:dd:bc:24:88:ba:23:5d:a1:a0:
c1:f9:33:78:54:46:71:29:f9:32:af:51:00:1b:94:e0:32:44:
9f:73:ac:6a:f7:c8:e0:e7:50:03:75:47:58:13:f2:f1:7e:a0:
54:fd:e7:fc:a3:cc:6e:be:ba:b3:f7:0b:9e:d8:49:e3:a5:11:
4b:4c:95:8a:56:87:a8:5f:f3:e9:c7:e7:21:b8:28:36:08:f3:
ce:37:bc:bb:4a:5c:77:14:27:da:28:ea:e5:1f:17:23:67:9e:
7b:67:02:84:f6:63:5d:d9:a7:97:ce:a6:a2:7f:ba:86:d7:4d:
86:85:cf:e1:60:be:cd:cd:c1:1a:3e:fe:d4:16:71:f3:64:33:
e6:03:a3:f1:e2:bc:99:56:fe:06:fa:95:76:9e:0b:c4:88:38:
38:7e:be:04:72:89:f1:6b:a4:05:de:d9:1e:f3:5f:bf:55:b9:
c5:2c:69:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org