Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qmrwF5R7lIlNqxZsnng3MXrpaTc.roa
File: qmrwF5R7lIlNqxZsnng3MXrpaTc.roa (raw, json)
Hash identifier: qyWTUVwamZU8gyOj7GRQOJBWsTeQEGCp61/6VcRG/eY=
Subject key identifier: AA:6A:F0:17:94:7B:94:89:4D:AB:16:6C:9E:78:37:31:7A:E9:69:37
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qmrwF5R7lIlNqxZsnng3MXrpaTc.roa
Signing time: Thu 15 Sep 2022 02:47:08 +0000
ROA not before: Thu 15 Sep 2022 02:47:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.17.50.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AA6AF017947B94894DAB166C9E7837317AE96937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:af:e3:51:f7:d8:7c:93:75:ca:f9:cf:22:38:
22:a6:ff:49:32:fc:ec:6c:88:21:16:8a:a0:c9:e0:
33:6f:7d:56:e8:22:6f:ab:27:a7:17:28:f3:44:58:
ea:80:ec:4d:e1:c8:6b:18:90:4e:a5:39:de:55:3a:
85:6a:0b:a6:bf:85:48:1e:40:93:ae:9f:e3:1a:17:
ed:ad:55:a9:b5:b4:4a:d0:50:c6:fd:20:6c:64:35:
d0:cd:5e:06:a4:f0:8e:1e:39:ed:82:4a:10:dd:40:
51:4c:64:46:94:ba:b2:95:c2:35:01:a9:92:8b:e0:
6b:38:87:93:d3:c6:f8:5a:00:d8:29:59:1f:e0:6a:
ac:87:c8:85:76:86:94:86:93:da:9c:ff:d5:a7:16:
f0:bc:82:f4:24:af:67:c9:75:29:b9:74:72:77:c6:
04:27:86:a1:f1:84:46:45:ce:dd:4a:45:7a:9c:9d:
13:21:8c:44:5f:ca:6f:98:c4:b5:c3:04:60:1a:bc:
71:98:e0:17:96:01:97:3a:b2:31:e8:e7:2c:8c:6e:
09:fb:83:67:67:ac:68:94:fb:ae:19:f7:6b:0b:dd:
c3:43:b4:52:50:24:e9:a1:21:08:3d:7a:84:c3:99:
e2:dc:42:85:4d:9e:a9:96:ff:ad:7b:a4:3b:1d:14:
d2:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:6A:F0:17:94:7B:94:89:4D:AB:16:6C:9E:78:37:31:7A:E9:69:37
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qmrwF5R7lIlNqxZsnng3MXrpaTc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.50.0/24
Signature Algorithm: sha256WithRSAEncryption
41:64:65:f2:e4:7c:3b:77:7f:a3:29:8e:47:ad:a9:5c:bc:5e:
cd:78:d1:65:3c:94:65:da:2b:6f:5e:b6:ad:da:64:f0:c0:bb:
f9:64:be:2b:63:eb:f5:e8:3f:ae:c0:03:a4:6c:c5:39:a3:47:
de:88:1d:6e:92:13:37:a7:5d:70:f5:86:06:ad:25:a9:4e:6a:
be:ec:9c:9b:1f:2f:b8:4f:15:74:33:c6:1e:53:2b:ed:0a:1a:
8e:cc:fc:36:97:88:dd:e7:43:92:a9:b5:ec:18:47:96:79:4f:
be:e5:2b:81:41:f7:ff:bc:f6:95:9e:d2:bf:01:6f:f3:ba:62:
c5:19:23:66:94:2a:c8:cf:55:b6:e1:b3:2b:4f:6a:8e:d0:7b:
9b:b6:c4:8d:7b:58:13:e3:bc:ba:76:30:1f:fc:55:9a:20:bd:
41:1a:62:e7:5f:1d:6d:3a:02:ff:e1:e4:61:f0:fe:d2:6e:77:
f0:30:28:76:0e:8d:8a:69:0d:ce:c1:89:dd:2e:53:04:53:37:
87:60:d2:24:ed:9c:9b:9e:7c:b6:28:4d:02:11:66:f2:67:d9:
b2:b9:66:70:3c:ce:fd:06:df:14:f6:48:0e:9d:b1:d8:90:52:
4b:e4:d2:6c:3b:19:5b:66:2d:ad:eb:8a:cf:f2:b4:61:cb:08:
a0:09:b3:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org