Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qONm_VgAOL8Te0n9q6uLJZo-dYg.roa
File: qONm_VgAOL8Te0n9q6uLJZo-dYg.roa (raw, json)
Hash identifier: WKhjfm7KPyBI1wj2gOAHZHbzHkAXtSbybKGyuKgZJ0k=
Subject key identifier: A8:E3:66:FD:58:00:38:BF:13:7B:49:FD:AB:AB:8B:25:9A:3E:75:88
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0F70
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qONm_VgAOL8Te0n9q6uLJZo-dYg.roa
Signing time: Fri 01 Sep 2023 09:36:50 +0000
ROA not before: Fri 01 Sep 2023 09:36:50 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 210.17.112.0/20 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3952 (0xf70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:36:50 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A8E366FD580038BF137B49FDABAB8B259A3E7588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:65:3e:6d:17:96:42:91:8b:fa:f7:40:99:0c:
de:c7:cf:00:12:f8:20:c5:8f:77:b1:d9:14:73:e6:
92:86:f2:ab:19:d4:b8:aa:14:14:f9:4a:f2:17:eb:
f3:a2:31:d2:85:a9:f3:ae:d9:07:d2:68:3e:b6:a0:
e9:d6:63:2b:48:ae:4e:e7:82:08:8d:28:55:89:a1:
4f:cc:6d:23:30:6c:70:01:22:26:61:2b:7a:05:7d:
d4:df:c4:f7:8d:86:b2:ca:3b:27:88:52:e5:5c:f7:
1e:88:1e:8f:b8:2a:9a:03:22:e6:27:c3:77:57:68:
3a:86:ce:a7:63:cd:13:e0:34:b3:8d:da:1a:34:55:
3a:cd:e4:d7:a0:80:ba:87:6f:b4:b2:05:5f:4c:ed:
80:0a:99:eb:35:68:48:a8:88:d2:98:bb:ee:e6:5e:
e7:cb:e9:4e:9f:2e:32:6f:f0:c3:12:12:63:18:d0:
1b:b0:1a:0b:b9:30:5d:87:81:81:9a:8d:ab:7c:44:
b0:05:d1:76:05:4c:ef:c3:0f:73:25:06:1e:60:54:
bf:10:9b:dd:0f:4b:a3:6c:98:64:73:ed:ff:a9:62:
ec:61:19:3f:04:2f:6e:99:dc:d3:3e:a8:ee:48:87:
0c:42:02:39:d8:e2:37:41:02:29:d6:68:a1:5f:0c:
a0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E3:66:FD:58:00:38:BF:13:7B:49:FD:AB:AB:8B:25:9A:3E:75:88
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qONm_VgAOL8Te0n9q6uLJZo-dYg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.112.0/20
Signature Algorithm: sha256WithRSAEncryption
30:dd:2f:c8:ed:3c:6b:82:e8:f8:60:69:a3:8e:d2:2c:9a:d5:
72:90:8b:79:61:da:6c:8b:c4:18:62:1d:77:96:07:5c:8a:a6:
c2:38:90:46:56:38:dd:0c:fd:a1:c4:e7:55:32:5b:b5:ad:c8:
1c:fd:f6:bd:27:f1:e9:1d:56:3b:25:b1:b3:b6:07:b8:ec:62:
24:e5:f0:fa:24:72:cf:66:f5:44:f1:b4:51:70:84:01:7b:5b:
88:1f:15:3b:ed:91:3e:30:94:0d:09:5c:48:f0:5c:72:4f:51:
10:31:de:01:d8:a6:b8:c9:16:38:79:e2:72:33:6c:c9:0a:05:
c4:21:6b:86:0d:4a:f9:b7:e7:2e:fd:47:5a:0d:89:01:39:4b:
cb:27:cf:6d:99:e9:db:7f:41:80:0d:cd:b6:ed:26:02:1b:36:
e6:ee:5d:fa:1e:5c:53:6b:9a:02:34:24:de:e1:aa:41:03:ac:
99:53:5c:9e:03:8e:e2:07:dd:c8:0c:e0:1e:7b:18:42:6c:79:
6c:b7:fb:7b:f0:24:a0:bb:47:ca:f4:30:1e:43:74:25:81:85:
e8:18:3c:ec:79:4c:0f:12:91:06:35:ee:c9:a2:37:f8:04:cd:
87:49:88:97:d1:7b:eb:ca:20:12:47:e6:ff:56:8e:61:50:78:
3e:c8:6d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:36 2025 by rpki-client