Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mXz88_3vJK_M0b8vYBgh7SwmW2w.roa
File: mXz88_3vJK_M0b8vYBgh7SwmW2w.roa (raw, json)
Hash identifier: CfuoMTadeNlPS9c3+bA6q285JJBWWUFSU8cPn9JX1Jk=
Subject key identifier: 99:7C:FC:F3:FD:EF:24:AF:CC:D1:BF:2F:60:18:21:ED:2C:26:5B:6C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B32
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mXz88_3vJK_M0b8vYBgh7SwmW2w.roa
Signing time: Sun 07 Feb 2021 13:10:46 +0000
ROA not before: Sun 07 Feb 2021 13:10:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.49.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2866 (0xb32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=997CFCF3FDEF24AFCCD1BF2F601821ED2C265B6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:93:f9:e4:cd:5a:4c:37:3c:ea:a6:1d:14:dd:
1c:2a:6b:29:c3:aa:d5:c8:fb:27:65:df:e5:d7:c2:
be:3b:44:a1:5c:3b:de:c3:88:a0:f6:3e:a4:01:66:
f5:c5:75:bf:7a:3a:84:f5:37:c1:20:58:85:e8:c0:
f5:ef:53:f0:38:98:be:6d:5c:5b:86:77:49:0f:6f:
eb:4f:52:14:a3:93:eb:13:5c:45:f2:1a:f8:ab:cb:
a9:b2:93:10:9b:1d:9b:53:66:38:07:ae:34:36:f3:
bf:58:69:1e:de:de:fd:0f:a6:6a:46:11:9b:7b:92:
45:26:7d:9d:c4:5c:3d:78:75:6d:cb:de:be:d9:2e:
95:0b:5e:05:64:89:b3:22:17:59:7e:3f:b8:4a:29:
6a:8c:a5:cd:3d:58:cb:c4:88:6b:b6:73:1d:f1:2f:
89:e5:dd:7b:31:ae:c3:73:81:6c:1f:94:73:54:b7:
bd:bc:3f:3d:96:da:5d:e6:a4:26:06:3c:ad:1c:3d:
0b:a9:2e:78:c1:de:5d:5e:00:65:2e:40:ed:63:1b:
c5:ee:c5:5d:fc:e6:ca:ce:68:48:ac:23:9f:3a:14:
3b:29:a7:b6:35:a8:23:a7:15:83:e3:3e:79:4e:c3:
e9:a5:8a:f4:59:22:31:df:82:0f:65:c8:84:6d:90:
5f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:7C:FC:F3:FD:EF:24:AF:CC:D1:BF:2F:60:18:21:ED:2C:26:5B:6C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mXz88_3vJK_M0b8vYBgh7SwmW2w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.49.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:29:87:64:e9:9a:b7:a8:e8:49:87:eb:f0:7e:81:a0:99:aa:
0e:6a:af:f9:15:21:27:33:bb:d1:07:14:97:bf:6e:5d:d7:c5:
0c:0e:c3:65:48:52:7d:8c:f9:7f:43:52:0e:44:6b:58:f9:00:
46:36:b4:10:c1:0f:a7:06:35:cd:06:27:7f:48:29:32:8e:2a:
6a:02:c0:ce:dd:dc:41:f1:73:75:90:97:8f:f8:21:c0:de:d7:
7f:3d:60:fa:2c:10:e5:73:65:e1:8e:05:96:d5:eb:44:9c:28:
41:c8:e9:57:37:98:95:a2:b5:e3:06:5d:89:83:48:8a:4e:b4:
e8:22:7e:75:b0:94:63:98:6a:47:6c:e6:a2:69:15:e1:f3:88:
17:e3:33:87:53:a1:55:f4:c9:bc:57:9c:a4:68:e3:b0:0e:55:
6d:e8:d0:c0:5b:25:5d:b2:96:77:06:9f:92:87:f2:50:07:75:
fc:ee:ec:10:63:dd:47:8c:b4:b8:03:2b:c1:9d:34:4f:28:51:
33:c6:be:27:03:97:75:9a:a9:81:02:60:a2:bc:24:6a:21:14:
08:25:7e:62:a6:68:82:9a:76:58:a5:56:70:b2:46:8a:7e:f4:
dc:b8:b6:e7:82:ba:3c:b2:9d:a8:40:13:dd:f2:81:b3:13:67:
9d:d2:71:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org