Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kssVq8ZhK3KAhVFw_zF_bKHVfBA.roa
File: kssVq8ZhK3KAhVFw_zF_bKHVfBA.roa (raw, json)
Hash identifier: eT71yR3e0RGWjs8WYdEQMzwh5wB06fFmfy4gRLG5hVM=
Subject key identifier: 92:CB:15:AB:C6:61:2B:72:80:85:51:70:FF:31:7F:6C:A1:D5:7C:10
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B2A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kssVq8ZhK3KAhVFw_zF_bKHVfBA.roa
Signing time: Sun 07 Feb 2021 13:10:37 +0000
ROA not before: Sun 07 Feb 2021 13:10:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.72.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2858 (0xb2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=92CB15ABC6612B7280855170FF317F6CA1D57C10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6f:4c:0a:f8:33:04:5d:95:16:92:0f:9f:08:
cf:3e:55:48:1a:c8:b6:fd:40:a4:53:89:57:cd:fa:
5e:fa:c9:f4:91:42:d4:6c:15:d5:33:a8:9c:ec:e6:
c7:05:e1:80:81:cf:ee:0c:f6:9d:63:4e:5c:6c:a7:
da:49:20:ae:34:94:fa:bc:dc:7a:86:cb:fb:8f:a5:
a1:2e:52:2c:8d:7b:ce:62:0f:9e:8f:fb:38:11:da:
4f:5d:c9:ac:a0:ea:da:5c:49:4e:3d:bc:fb:91:08:
0c:f5:06:a5:a4:38:06:92:1a:e4:fc:eb:a1:47:64:
e0:67:72:b3:df:9d:81:03:0b:23:a6:90:30:30:24:
e7:3c:48:18:78:5e:1d:e4:68:8e:0d:55:97:05:9b:
8c:3b:e7:ad:bd:8b:4e:b4:96:4c:0b:08:ea:10:bb:
2d:9e:b9:56:25:03:e5:83:fb:41:34:75:a7:61:ff:
d4:3d:21:26:e3:e7:89:67:f6:20:11:c3:d7:c5:21:
57:0b:17:2b:48:f2:3b:af:fd:41:27:e8:6a:6b:5c:
a0:7d:14:68:c2:2d:09:96:16:bb:18:c3:69:9f:39:
7f:a8:cd:67:27:24:82:66:31:df:cf:af:d5:74:37:
d9:bd:81:0f:03:99:df:43:7b:1e:12:3c:2c:40:f8:
1c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:CB:15:AB:C6:61:2B:72:80:85:51:70:FF:31:7F:6C:A1:D5:7C:10
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kssVq8ZhK3KAhVFw_zF_bKHVfBA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.72.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:bc:9e:5f:9a:a3:e9:0c:2e:b4:c9:be:ab:da:8d:ee:b5:64:
cd:4a:8a:51:f1:bc:ed:bb:3b:1e:d9:60:45:8c:2f:43:78:7b:
df:c1:da:21:32:42:66:f1:b2:1e:71:b0:bc:10:52:17:c0:3e:
f7:35:10:11:7c:7b:40:b8:07:1b:99:f9:84:df:a8:c1:39:58:
20:f0:62:f3:86:3b:14:be:80:ff:73:e5:1c:0d:9b:67:6e:13:
27:45:86:45:21:b3:2c:10:4d:3a:b8:29:f1:74:b9:74:7a:99:
8e:26:bd:39:98:b2:cc:44:2a:63:27:22:59:f3:78:f1:d7:b9:
b7:1f:7c:02:3f:89:64:3c:04:75:8e:de:38:0c:9f:26:e5:f9:
fb:b3:2b:86:18:61:7c:ff:23:3d:50:d5:73:e7:ac:ad:9b:77:
bc:2f:09:92:79:36:8e:6e:ed:af:0c:f1:1a:56:fa:82:eb:f7:
99:c6:38:3a:77:3b:a9:91:87:52:32:d8:77:cf:4c:73:70:86:
f3:de:ae:e9:d6:20:ac:b4:90:6a:33:ec:34:58:22:b6:ca:f9:
d3:28:a6:2d:22:09:02:d1:3f:37:a2:47:a7:44:8e:dd:93:ca:
ca:f6:0c:37:85:72:31:5b:a9:4d:79:c2:34:33:16:fe:fd:b5:
39:6f:29:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org