Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/k9aaHWRlSkspVCvfLaN0tdkuBlU.roa
File: k9aaHWRlSkspVCvfLaN0tdkuBlU.roa (raw, json)
Hash identifier: o+xjuB23KT//RDS7j5/BSXpYMYB5gLHJhfNDHTpmdsI=
Subject key identifier: 93:D6:9A:1D:64:65:4A:4B:29:54:2B:DF:2D:A3:74:B5:D9:2E:06:55
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/k9aaHWRlSkspVCvfLaN0tdkuBlU.roa
Signing time: Thu 15 Sep 2022 02:47:20 +0000
ROA not before: Thu 15 Sep 2022 02:47:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.17.96.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=93D69A1D64654A4B29542BDF2DA374B5D92E0655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c7:fe:5a:0a:fc:bf:62:d7:58:4c:5b:14:57:
da:71:40:d8:e8:f6:57:91:92:b2:06:ae:8f:90:fa:
0e:4a:3c:9d:5f:43:4a:44:bd:b2:fa:e3:e8:6a:7f:
22:a6:33:68:d5:ac:3d:86:de:d4:3a:e6:f0:81:ec:
ca:70:6f:2e:09:7f:91:72:0a:8e:03:d1:9b:07:b0:
ef:46:55:d4:35:d2:4c:d8:80:d3:70:23:af:ce:76:
63:7c:d7:6e:b3:e6:11:eb:59:54:64:13:ff:4f:c4:
1e:b2:97:ee:de:9f:bd:93:9e:c8:91:5e:f6:f6:9d:
e4:34:e4:f0:a5:ed:3d:8c:02:fa:9b:67:0a:cb:bd:
39:b5:5e:d0:9b:cd:1b:8a:fe:52:de:1a:47:18:3d:
bf:8c:87:c6:8b:e8:3b:3c:42:14:9d:40:61:5d:68:
83:b8:67:1e:e6:08:05:5e:06:6c:ce:2f:1e:01:96:
48:14:20:ea:f4:55:be:58:9f:dc:8e:b2:72:4d:03:
cb:8b:5e:62:a6:7c:bd:37:4d:21:fd:3f:7b:83:94:
ac:a2:1d:07:f3:3d:9c:41:a1:e8:74:a7:b9:38:75:
db:25:04:a7:2e:6c:ac:33:65:ff:26:c3:08:73:12:
55:d6:62:a7:6a:5d:b0:5d:d6:f4:a9:ef:21:8c:02:
1a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D6:9A:1D:64:65:4A:4B:29:54:2B:DF:2D:A3:74:B5:D9:2E:06:55
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/k9aaHWRlSkspVCvfLaN0tdkuBlU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.96.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:13:56:eb:6a:42:8c:1a:52:bb:54:67:cf:cb:e7:b9:73:c0:
44:c3:f8:a5:46:0e:db:46:3d:a3:7f:ea:1a:fd:23:9b:da:43:
bd:7e:47:0a:0a:39:a0:2f:20:bd:09:7a:cc:29:38:36:7c:f0:
95:6e:8a:d8:bc:74:2f:1c:9c:ed:71:c5:6c:d9:6f:99:71:fd:
7b:52:b4:c6:32:e9:ea:cf:52:40:90:af:ca:c7:09:2c:8f:db:
fa:f3:ab:e5:8c:a8:6e:ce:b6:a3:e9:46:82:e7:bd:95:5d:63:
02:1a:b8:45:48:46:f1:7a:48:ef:d4:6c:61:1e:4a:35:9b:16:
c6:73:34:79:7c:8b:fb:31:6a:a2:07:24:19:c5:c8:19:2a:f2:
63:e1:e0:3c:02:d9:c9:2d:fb:4c:de:71:5c:df:ad:d5:3d:80:
ad:1c:50:fb:a4:5e:95:50:94:e4:b3:97:07:22:89:75:ca:87:
b9:3f:e3:32:50:65:89:65:b0:d1:96:40:63:da:86:e4:56:b5:
f0:a8:94:7b:e9:5e:d0:49:87:24:83:83:7a:14:ae:f1:ff:9a:
f9:95:b6:33:e4:0f:95:f5:1e:e4:1a:4a:fc:30:b7:00:02:91:
91:93:31:4e:2a:cd:7f:09:a7:3e:ad:3d:10:55:66:83:39:59:
b9:f7:e1:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org