Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pmwjyvMk4Sq6hOuA15fNwl7yE5w.roa
File: pmwjyvMk4Sq6hOuA15fNwl7yE5w.roa (raw, json)
Hash identifier: zDG/FmjaWvxuQzyTn5+rSzuKt3lTuia5ooxtwNNRgng=
Subject key identifier: A6:6C:23:CA:F3:24:E1:2A:BA:84:EB:80:D7:97:CD:C2:5E:F2:13:9C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B3A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pmwjyvMk4Sq6hOuA15fNwl7yE5w.roa
Signing time: Sun 07 Feb 2021 13:10:54 +0000
ROA not before: Sun 07 Feb 2021 13:10:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.17.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2874 (0xb3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A66C23CAF324E12ABA84EB80D797CDC25EF2139C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2c:56:dc:33:19:4f:69:7c:4f:57:84:ab:12:
c3:8a:5f:08:23:a7:b9:e7:d9:c8:1d:52:a4:52:08:
3f:67:0e:17:23:93:ba:18:1f:97:29:41:cb:c2:84:
be:04:81:71:fa:f3:50:3d:3f:06:5a:c8:76:68:5c:
ca:83:e1:40:0c:f1:0d:5b:92:3d:c2:19:fe:3f:5a:
2c:5b:73:74:5a:3e:3b:33:6a:79:b2:2e:1f:6f:6e:
bd:99:72:4c:50:93:54:aa:9d:5a:73:53:ad:64:fd:
3e:25:05:c3:f2:30:12:61:29:e6:11:03:82:2f:72:
c3:67:12:b6:0d:b5:dd:6c:4c:01:25:e4:ae:73:5a:
61:0b:ce:01:44:4f:2c:68:58:ac:83:3f:ce:4f:7d:
81:b5:66:33:19:a7:1f:86:5a:bf:32:cd:b2:e9:42:
f3:46:1f:58:83:de:41:bf:04:8e:84:51:5a:4e:b6:
03:44:ae:f9:34:f9:11:f6:95:a8:26:9d:f4:ef:4e:
04:25:16:5c:71:2f:26:93:4a:31:9f:d2:44:24:dc:
bd:eb:6d:1b:bf:2a:55:0b:8e:4d:45:84:b3:74:75:
59:8e:c9:fd:f8:92:34:0d:9c:38:b7:94:f6:cf:bb:
5a:8b:45:3f:84:ef:c8:55:7a:1a:04:b7:90:03:1b:
05:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:6C:23:CA:F3:24:E1:2A:BA:84:EB:80:D7:97:CD:C2:5E:F2:13:9C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/pmwjyvMk4Sq6hOuA15fNwl7yE5w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.17.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:8e:31:c3:f5:2a:63:ad:e2:be:a2:ee:28:1c:04:ce:1a:1e:
1a:e8:70:4f:d4:23:38:8d:70:c4:06:fb:45:5c:04:0f:35:3e:
00:8b:4d:aa:03:ef:3c:7c:9e:cc:10:70:ce:65:03:06:aa:f3:
5f:94:45:c5:e1:97:13:19:86:e1:37:04:ef:ea:be:5c:8f:d6:
e2:75:f4:08:dc:e2:a1:06:10:b0:4e:62:ba:6a:37:e3:57:29:
e0:48:b1:44:6c:29:51:ad:ee:b5:5a:00:23:6a:65:70:f9:1c:
61:73:0f:3a:96:97:ac:5b:c4:73:79:6e:67:0f:ff:5b:02:e3:
82:d8:28:23:fd:56:a4:dd:9a:57:b2:76:df:17:81:96:f3:e0:
16:b1:5c:09:b5:07:fa:cb:0c:f2:99:36:36:f4:66:4c:dc:09:
a5:f0:4a:ee:84:27:b0:e4:5e:71:39:f6:1e:ea:45:c5:4d:d2:
be:2d:bc:f0:61:34:37:43:2c:49:01:c4:09:f1:84:a3:b7:d0:
29:c0:df:e1:29:7f:c3:22:a9:cc:f4:51:82:02:fd:2e:5b:df:
69:d3:d6:05:72:7c:d5:d9:2e:d7:4b:c2:fa:26:ff:90:f1:bb:
64:82:7d:59:a6:78:a9:2a:b9:21:ea:ec:3d:4a:34:43:92:26:
ed:63:8b:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org