Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/yoiSQ8ZsrTJX-p3fKco7hKQBpk4.roa
File: yoiSQ8ZsrTJX-p3fKco7hKQBpk4.roa (raw, json)
Hash identifier: CJRMLjzMksuIqXg6KyxBTNhNBM/MFKTGEUOC20It6pg=
Subject key identifier: CA:88:92:43:C6:6C:AD:32:57:FA:9D:DF:29:CA:3B:84:A4:01:A6:4E
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C95
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/yoiSQ8ZsrTJX-p3fKco7hKQBpk4.roa
Signing time: Wed 29 Sep 2021 02:50:01 +0000
ROA not before: Wed 29 Sep 2021 02:50:01 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 210.67.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3221 (0xc95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:01 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CA889243C66CAD3257FA9DDF29CA3B84A401A64E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1f:d5:1a:12:e1:93:c3:fd:e6:21:1c:96:7a:
53:95:68:5c:f5:fe:98:d3:16:76:37:b0:b3:23:4c:
f2:7b:73:7d:27:4c:45:95:56:09:c8:8f:a2:d6:d4:
d0:58:28:4b:31:70:8b:88:0a:78:4b:c3:5d:b2:ed:
3c:5d:4c:a7:56:f6:e4:fb:ae:3e:c8:58:85:f1:ca:
2c:ef:9f:e6:2b:3a:7e:4a:62:01:1d:bc:51:54:e1:
f8:f5:24:1d:f4:ab:7b:0f:68:bb:a8:a5:b0:fd:3c:
bb:5a:66:43:d7:97:6b:2e:09:55:d4:c0:59:6a:d8:
e7:0f:ba:ad:bc:a0:c0:4a:ce:5d:80:2a:9c:24:33:
ed:38:26:e3:fb:12:56:d8:7f:eb:cf:bf:b3:cf:d7:
56:75:1c:73:33:ae:a4:91:1d:65:b5:72:ae:85:ec:
76:72:5b:fa:bb:73:b2:69:b3:c2:be:00:ad:72:aa:
b3:ef:9e:c5:e0:88:5c:97:c5:e6:af:4d:11:ed:2a:
55:2a:19:72:91:e4:8c:8b:8a:29:f6:c0:37:af:47:
f1:cf:73:38:78:4a:70:bc:d4:07:8d:96:ee:0b:20:
6c:d5:c1:89:4f:d4:8e:54:66:b2:65:cf:ef:6b:d1:
b9:44:7c:2c:ac:42:0b:ed:64:40:f7:10:c8:e5:93:
a0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:88:92:43:C6:6C:AD:32:57:FA:9D:DF:29:CA:3B:84:A4:01:A6:4E
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/yoiSQ8ZsrTJX-p3fKco7hKQBpk4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.192.0/19
Signature Algorithm: sha256WithRSAEncryption
7d:52:37:84:f2:fe:89:98:cd:88:6f:21:20:b0:1e:d8:59:c9:
a9:95:3e:2b:44:73:b9:14:71:20:93:49:76:be:6f:42:61:54:
66:9c:9e:2a:74:c9:eb:43:d1:21:e0:21:d9:a7:68:b8:5c:ee:
69:18:fb:80:55:37:2e:82:3c:b0:70:0a:bf:31:d0:4a:4d:4f:
d2:0f:a2:ef:f5:37:e1:0c:7f:9b:86:df:e0:73:1f:b3:22:b3:
ad:38:2f:52:81:40:13:6a:6d:d8:f6:65:e7:91:ce:04:d3:00:
44:28:96:9d:d1:6d:b0:4b:03:6f:a5:2a:4d:5f:cd:4b:3e:81:
75:40:ad:78:14:8b:1b:6a:0d:61:99:30:0f:d2:20:67:ba:a2:
b7:9e:e1:5c:ad:49:b3:db:d0:5f:02:90:ed:d9:f3:a8:9a:52:
17:7e:7e:0d:f1:18:dd:52:e6:0f:b5:58:69:cb:01:d9:ec:9b:
d7:b2:f3:6f:4a:9b:a2:5d:39:d9:20:d6:79:84:13:49:81:5c:
05:c1:cd:a5:cc:3d:10:07:09:ad:58:03:79:ec:c8:29:26:b1:
d6:cf:85:36:9f:1a:ab:45:31:7a:d2:46:17:bc:51:42:07:28:
0b:12:d8:95:55:60:8d:b3:24:fb:18:66:31:52:d7:11:79:7c:
40:31:f9:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:27:07 2025 by rpki-client