Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/yR1onElHOJWzKEBhhQb9llfkMfw.roa
File: yR1onElHOJWzKEBhhQb9llfkMfw.roa (raw, json)
Hash identifier: pCiluG2JouPwBr01EN4eyouA7cqgto0vnHzywPvG4Bo=
Subject key identifier: C9:1D:68:9C:49:47:38:95:B3:28:40:61:85:06:FD:96:57:E4:31:FC
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 09B9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/yR1onElHOJWzKEBhhQb9llfkMfw.roa
Signing time: Wed 16 Dec 2020 03:40:08 +0000
ROA not before: Wed 16 Dec 2020 03:40:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 210.17.104.0/21 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2489 (0x9b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 03:40:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C91D689C49473895B32840618506FD9657E431FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6d:3c:e5:21:79:43:e5:f2:e9:8d:81:44:7d:
df:b2:41:1e:81:95:b4:31:1b:ef:4e:7d:b0:de:47:
22:8e:93:d6:a2:a9:ef:b6:b8:e9:c5:65:7b:f2:2d:
45:e4:88:67:f3:e6:4c:b6:d6:92:dd:20:05:5f:39:
9b:b3:60:21:16:18:25:0e:04:ff:1f:ad:b8:8a:92:
51:99:ca:07:7b:50:8a:e5:18:fc:94:78:3b:56:44:
c6:64:ad:e3:af:f5:12:be:68:f4:f4:ce:dd:95:16:
84:ab:d3:ff:29:b3:62:a8:b1:bf:6c:81:25:b6:20:
06:6b:96:c5:b9:eb:50:9e:68:42:8b:b0:3f:cb:1d:
a4:be:b4:0f:94:80:44:c8:7c:ce:a0:82:f0:bb:40:
a5:73:f6:6b:a7:49:31:d1:d7:13:eb:f4:46:6d:c3:
39:06:d3:c3:8a:91:e2:ce:5b:5e:07:8a:40:66:2b:
41:13:c9:f2:89:a5:04:29:1f:af:4c:38:a5:24:1a:
c8:b7:cb:5c:d6:9c:00:d5:50:03:c1:24:16:af:b1:
79:39:e7:ec:47:df:25:d1:15:a0:41:c3:fd:0c:7e:
54:23:48:04:61:5b:e3:63:04:e5:9d:cf:1e:52:88:
e9:cd:f0:4b:f6:42:f0:85:0f:ae:3e:69:68:90:fe:
85:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:1D:68:9C:49:47:38:95:B3:28:40:61:85:06:FD:96:57:E4:31:FC
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/yR1onElHOJWzKEBhhQb9llfkMfw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.104.0/21
Signature Algorithm: sha256WithRSAEncryption
60:c8:8d:b7:21:9a:8f:cb:f8:81:13:f7:7b:dd:ef:d0:66:71:
97:3a:62:5c:f9:ed:52:ee:c4:75:30:6c:44:9c:91:e8:2c:9f:
60:a8:20:a4:4a:c3:8a:59:f9:55:95:53:6c:33:6e:e2:b0:08:
38:f6:ce:ad:b4:10:ec:40:b6:c1:0a:28:53:ff:fd:09:2b:de:
b9:97:fa:d2:cb:e5:c6:8d:c4:7d:cb:e3:37:bc:09:76:07:f8:
81:33:47:c5:71:01:3f:a2:f8:79:ea:57:7b:e2:34:a3:5f:96:
fa:79:d7:c3:14:29:3f:05:35:4a:b8:0c:7b:2e:19:0a:8b:4c:
b9:1a:90:29:b1:85:6b:e4:cd:19:db:55:a1:ee:bd:b7:60:58:
44:f7:49:e9:62:15:d3:fb:81:a0:42:52:97:53:4f:e5:6c:14:
cb:37:64:de:49:83:dd:1c:cd:a1:27:fe:67:bd:19:f0:2f:c7:
97:7e:1e:65:19:bb:04:3e:e1:af:41:1a:0a:f5:58:b1:50:e4:
ee:66:34:cd:cd:a2:cc:d7:dd:8a:35:a9:51:6b:ce:ad:b5:c1:
fa:5b:eb:fe:81:88:2a:1e:14:e3:4e:22:aa:d6:52:8d:3a:4e:
87:2b:0b:19:0b:d1:42:3b:ac:0a:e7:d3:39:dd:b9:a5:36:17:
09:59:cc:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org