Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vhb0He3Ng4_ia6ml0a9YiMDmFDo.roa
File: vhb0He3Ng4_ia6ml0a9YiMDmFDo.roa (raw, json)
Hash identifier: 0yMA5MJYzYp3qzitXTRqKEb4nSb7gs5Kx0kDUhgd7NQ=
Subject key identifier: BE:16:F4:1D:ED:CD:83:8F:E2:6B:A9:A5:D1:AF:58:88:C0:E6:14:3A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AAA
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vhb0He3Ng4_ia6ml0a9YiMDmFDo.roa
Signing time: Sun 07 Feb 2021 11:36:55 +0000
ROA not before: Sun 07 Feb 2021 11:36:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.243.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2730 (0xaaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BE16F41DEDCD838FE26BA9A5D1AF5888C0E6143A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:24:2b:75:3e:81:87:e4:0d:c5:a4:09:bd:b6:
f5:7e:e5:be:2a:af:21:fc:d4:2e:13:e2:77:c1:80:
f5:ca:ab:88:50:7f:89:5e:69:dc:ce:09:86:4c:9b:
d3:c4:fb:d8:01:1c:7f:4d:0a:8a:3c:30:1a:d8:c0:
9f:78:4d:8b:fe:9a:aa:f5:a6:8f:6a:9b:19:fb:43:
c4:73:72:2d:5b:3f:3e:de:a8:21:9b:99:8c:61:3e:
ed:31:a1:be:4f:12:39:69:40:af:76:fe:6f:52:b9:
be:8f:48:62:42:01:96:20:01:ab:9e:33:05:3f:77:
f4:e2:f7:33:d0:60:ee:fc:ef:81:48:ed:9c:d0:53:
83:55:36:8f:f7:d1:0c:7e:4c:ad:63:11:b2:45:79:
7c:7b:5d:51:84:0c:d4:6f:84:59:5e:80:26:fc:e7:
66:3e:92:fa:86:24:05:fd:38:eb:7f:2f:31:55:55:
87:83:12:f5:74:d4:f7:ff:87:1a:a0:5d:65:c6:a8:
9b:a1:d3:6c:9d:7b:a6:ef:98:70:6e:da:16:8e:f2:
85:e5:ab:47:20:d7:44:9d:4f:9f:70:cb:49:38:4e:
4c:89:7b:1c:df:38:18:1a:80:eb:d1:14:87:d5:4e:
de:28:f5:07:2d:27:be:f3:21:9d:88:d1:f0:91:d6:
c5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:16:F4:1D:ED:CD:83:8F:E2:6B:A9:A5:D1:AF:58:88:C0:E6:14:3A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/vhb0He3Ng4_ia6ml0a9YiMDmFDo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.96.0/19
Signature Algorithm: sha256WithRSAEncryption
1c:35:20:30:b7:f0:29:ac:a9:cf:5e:9e:7e:b1:34:0c:a8:9c:
11:14:8d:11:da:31:bd:d9:6d:b9:1d:bd:08:d7:2d:e3:0b:ed:
97:87:70:6e:95:1d:f4:b9:d8:34:8a:db:2c:cf:34:ba:4a:d5:
df:9e:c2:5c:97:a1:e8:99:3c:93:20:bd:05:e9:45:3b:90:bf:
dc:15:ad:fb:0c:53:9c:75:33:6c:20:02:20:33:ad:44:a8:22:
6d:dc:0f:7e:bf:39:f9:d0:0f:a9:46:52:ca:08:27:23:2f:04:
3c:1b:c2:4b:7e:b8:18:85:a9:2c:f0:f2:ea:c5:03:5c:bd:ad:
19:4a:2f:8a:b1:20:6d:03:44:2b:86:a4:71:75:5a:16:82:7a:
8d:55:9e:6f:33:78:96:45:78:88:c6:16:0e:19:17:3c:ed:57:
52:c9:8a:f2:89:f2:c6:82:eb:17:30:83:c2:30:f2:88:0e:6e:
70:1f:16:a2:16:52:db:b9:bc:e9:f0:95:99:18:f8:ab:34:36:
41:59:97:0e:13:44:8d:9d:a9:fb:a6:96:c5:68:74:9a:65:92:
cd:51:2e:79:79:6a:29:a5:9f:92:ba:37:4e:e7:ed:3c:61:80:
a0:0d:52:6d:22:d3:50:ad:06:27:36:00:a0:65:eb:ff:d2:ed:
ee:5d:91:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org