Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mw2sAOHOM2WKi8jf5or2qQiW7tk.roa
File: mw2sAOHOM2WKi8jf5or2qQiW7tk.roa (raw, json)
Hash identifier: LCBcUszGzpYl1b/S0kEGauy4eOVgl43knMaTil6/taY=
Subject key identifier: 9B:0D:AC:00:E1:CE:33:65:8A:8B:C8:DF:E6:8A:F6:A9:08:96:EE:D9
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B0C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mw2sAOHOM2WKi8jf5or2qQiW7tk.roa
Signing time: Sun 07 Feb 2021 13:08:33 +0000
ROA not before: Sun 07 Feb 2021 13:08:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 61.30.239.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2828 (0xb0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:08:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9B0DAC00E1CE33658A8BC8DFE68AF6A90896EED9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:82:90:d5:b7:d1:89:f7:8c:4c:ca:da:2e:80:
83:ed:b6:f1:28:b6:3b:a0:f2:2d:2a:6b:22:ed:b7:
99:df:e0:4d:15:9f:45:99:78:ae:bc:ad:ce:11:e6:
3c:0a:56:c7:78:b0:0d:4a:3f:81:77:64:dd:c3:b0:
31:5d:92:8d:e8:66:7f:96:aa:94:cf:10:3e:35:fe:
a6:52:f5:7c:cf:89:30:ee:11:65:46:29:0f:20:a4:
40:86:a8:9b:b9:f8:cf:77:c1:f9:cf:6d:88:bf:41:
20:ed:18:2b:76:b6:e1:36:2e:3c:c8:c7:25:02:32:
5a:c5:b5:f1:94:df:52:cd:3b:92:fe:40:8f:06:c2:
e9:c7:b7:57:a4:3b:41:bb:09:03:50:3a:ea:5f:27:
1d:1c:07:90:de:35:dc:5a:d3:3e:48:6e:99:b9:ad:
d7:c6:e6:27:24:21:68:e1:69:53:c3:15:9d:d8:47:
9b:fc:f9:1c:23:8b:c6:63:20:be:ae:13:4b:8e:c3:
e2:aa:93:b2:82:21:42:1f:e9:7c:9b:f1:19:df:e7:
6a:6a:67:49:21:7b:94:15:94:56:d5:da:88:08:15:
ea:fb:6d:c2:93:0f:a7:c2:cb:04:9c:bf:af:f9:33:
b8:99:0e:43:05:87:79:bf:60:53:88:a6:f8:f7:c0:
d6:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:0D:AC:00:E1:CE:33:65:8A:8B:C8:DF:E6:8A:F6:A9:08:96:EE:D9
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mw2sAOHOM2WKi8jf5or2qQiW7tk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.30.239.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:95:5e:ad:1a:08:2d:b5:96:9f:78:7c:43:6a:20:7c:54:01:
e2:36:c4:d6:aa:9e:d0:aa:5e:77:a4:97:98:bb:59:8b:a7:1a:
d9:5e:bf:ef:70:0d:e9:ff:8e:04:75:51:52:cf:a1:0a:db:43:
e9:d4:65:12:84:86:3b:d7:e2:b7:ab:65:fa:1f:1e:5b:43:91:
f2:e0:8d:f7:88:32:34:05:12:ff:6a:09:5b:45:9b:66:35:9a:
d1:17:c9:1a:04:b0:6f:08:6c:e8:b9:a8:60:fb:2c:b6:3c:aa:
0a:53:86:25:66:49:92:df:74:46:2a:28:22:00:86:a0:be:ba:
d7:b1:ba:5b:b8:5f:22:c4:a6:7e:f7:06:9c:f5:49:1b:4b:e5:
b5:6d:1d:f2:53:5a:13:ff:aa:ec:23:9c:4e:62:cb:3c:f7:4c:
af:ea:53:19:86:76:6d:24:7d:a7:b7:cf:64:2c:c7:45:8e:ef:
2a:1a:34:c6:03:95:1b:b5:25:52:63:e1:90:4c:ad:39:ff:ec:
19:11:33:c3:e4:fc:38:9f:fb:14:5a:78:cb:54:e1:78:a6:ce:
f7:24:27:56:c2:8a:fc:49:aa:9b:49:59:ba:b3:d0:a0:bb:1c:
d1:ae:26:d8:a4:a5:3e:28:94:54:eb:d4:5d:87:65:01:cf:21:
9b:84:9e:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org