Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pDw5wba9r3bvoRBoV9awoBMCyUo.roa
File: pDw5wba9r3bvoRBoV9awoBMCyUo.roa (raw, json)
Hash identifier: q5v2QPlCUBcUos7t3JUs8qiCYNmZBovmJNQrTbTYbfs=
Subject key identifier: A4:3C:39:C1:B6:BD:AF:76:EF:A1:10:68:57:D6:B0:A0:13:02:C9:4A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C3B
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pDw5wba9r3bvoRBoV9awoBMCyUo.roa
Signing time: Wed 29 Sep 2021 02:49:34 +0000
ROA not before: Wed 29 Sep 2021 02:49:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.17.72.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3131 (0xc3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A43C39C1B6BDAF76EFA1106857D6B0A01302C94A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2c:cd:04:fa:97:1b:cf:22:61:b3:38:51:93:
d5:21:bd:a8:13:fb:13:1d:20:f4:c8:0c:a8:86:38:
6c:29:e1:ab:4c:3f:dd:14:ff:22:54:42:c8:04:a4:
47:fb:af:da:bd:57:9d:c3:16:2a:3b:9d:bf:4f:ad:
dd:f8:84:68:88:11:5e:02:b2:11:06:86:d0:c5:64:
9f:5e:fb:9f:f9:41:7e:db:a4:ee:74:a8:67:cb:86:
06:58:a1:2d:d5:3e:ba:fb:bc:40:52:b8:18:10:fd:
66:48:d0:4b:10:c1:ce:21:ec:ed:04:51:2b:fb:20:
a2:ca:ef:c8:06:9c:1c:3f:23:fd:02:17:92:96:19:
d3:36:1a:f7:38:b7:20:48:50:52:d7:9c:c9:b4:66:
33:9a:3a:70:17:43:35:e4:d2:97:90:da:2b:a5:09:
d9:05:9c:17:be:9c:c3:77:e3:e6:ad:b1:3e:3e:a9:
10:d4:21:6b:6b:31:04:8a:00:f8:91:06:66:d4:76:
34:91:72:80:aa:fe:f5:01:e9:8d:32:2b:07:46:99:
e0:9d:94:ae:ce:02:39:1e:1d:47:39:b1:81:55:63:
27:bc:23:cc:09:59:0e:86:aa:7c:88:31:47:ed:70:
dc:ce:42:51:c4:63:e9:87:55:3c:92:26:07:0d:d8:
f0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:3C:39:C1:B6:BD:AF:76:EF:A1:10:68:57:D6:B0:A0:13:02:C9:4A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pDw5wba9r3bvoRBoV9awoBMCyUo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.72.0/24
Signature Algorithm: sha256WithRSAEncryption
71:0e:eb:db:78:86:d0:95:51:c4:e1:0d:b5:58:ad:f5:8d:79:
87:93:d4:9d:6d:89:a5:87:79:67:43:41:98:7d:d4:95:48:7c:
f6:41:76:57:62:0c:22:58:0c:1b:45:a6:34:f4:21:77:54:f1:
25:a4:43:ab:aa:6c:ef:12:4a:25:a0:f2:79:e4:f8:d9:f4:a4:
c3:a6:4c:bf:15:57:44:00:2a:9c:f5:1e:b8:1c:ba:24:a0:fa:
64:ca:8c:ff:a1:a8:ff:e2:25:41:b8:63:61:74:b9:64:5d:8d:
b6:eb:af:e8:15:b2:16:9e:3e:b9:15:03:f7:d9:8f:63:f9:00:
ae:57:1a:a3:bf:00:8c:99:83:04:45:32:f1:9e:1f:58:24:cd:
fd:77:01:0a:92:6a:7c:55:7b:f4:8c:4c:71:5d:55:6e:65:dd:
ea:6f:b8:69:a6:8e:bf:40:c5:2b:83:02:b9:c7:43:b2:43:a3:
23:87:b1:f3:b3:80:b4:d5:a5:b1:cd:4d:00:b7:e1:e0:f4:a7:
ee:49:43:3c:09:1d:9f:8a:ae:f3:bc:c0:87:c4:c3:34:ba:40:
4f:2b:b3:b3:f9:b5:50:23:44:37:57:e2:0c:b4:08:b1:4d:c2:
83:19:71:c1:3e:0d:a9:c0:5d:cc:1e:09:a9:5b:60:26:1a:5c:
2e:b1:f3:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org