Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0diRbKu7P7aS1aDuPbXB_iwCBlM.roa
File: 0diRbKu7P7aS1aDuPbXB_iwCBlM.roa (raw, json)
Hash identifier: VW9zxVTXq4thgeZF432e/2/M0Pj4Mnf/6HJ+fiJksJY=
Subject key identifier: D1:D8:91:6C:AB:BB:3F:B6:92:D5:A0:EE:3D:B5:C1:FE:2C:02:06:53
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0830
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0diRbKu7P7aS1aDuPbXB_iwCBlM.roa
Signing time: Tue 29 Sep 2020 09:57:52 +0000
ROA not before: Tue 29 Sep 2020 09:57:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 133747
IP address blocks: 60.198.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2096 (0x830)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D1D8916CABBB3FB692D5A0EE3DB5C1FE2C020653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2d:81:94:2d:d2:bb:0d:19:8d:a6:43:7b:73:
29:65:48:df:52:90:01:0a:df:6c:a9:de:f3:62:59:
c1:2c:c7:35:45:c6:bd:af:e8:98:b9:c6:96:bc:8b:
1a:79:0c:a4:9c:da:f9:7f:e8:de:6a:29:c8:00:46:
a9:0e:dc:8e:1e:0d:af:43:f5:2c:03:be:b2:b7:27:
41:15:70:fa:31:36:3e:73:8a:1c:f5:93:f2:39:30:
9e:de:31:38:77:a6:5f:ba:2c:aa:f7:73:08:c7:af:
dc:83:63:79:ba:c3:25:02:a0:2b:60:d9:18:ad:47:
5c:d5:23:52:ce:6d:51:50:ec:cb:bf:2d:eb:fd:18:
b4:77:11:62:90:90:13:88:74:6a:b4:59:37:39:e0:
26:52:fe:d2:ef:85:86:01:38:94:a6:22:ab:59:b2:
75:4f:60:04:f3:af:6e:77:c5:ae:13:88:90:a0:58:
cd:7d:dc:d2:54:75:86:25:64:75:fa:7a:f3:23:c8:
06:e9:a0:ff:dc:3f:5b:15:e7:af:bf:f9:0e:18:7f:
13:17:6e:6d:f5:08:54:27:67:86:c9:ee:6a:ff:91:
db:44:63:64:e6:10:d5:1d:4f:9e:5a:37:7a:47:b2:
9e:44:79:b7:d2:0a:d9:24:bc:23:80:31:f2:9c:22:
72:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D8:91:6C:AB:BB:3F:B6:92:D5:A0:EE:3D:B5:C1:FE:2C:02:06:53
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/0diRbKu7P7aS1aDuPbXB_iwCBlM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.136.0/24
Signature Algorithm: sha256WithRSAEncryption
83:bb:7e:cf:ac:b4:59:77:e0:34:64:62:80:b9:e9:41:9e:0f:
4c:d4:67:68:9e:11:1f:6e:90:60:94:d0:37:82:ed:46:bf:ec:
10:db:d1:84:36:bb:4f:1f:b2:84:98:fe:d9:a9:1f:95:64:4b:
25:10:da:6b:b2:cf:18:d8:13:16:38:f3:ba:04:15:ce:c7:8a:
a1:6e:a1:01:ac:d9:de:eb:a5:4b:43:3c:dd:31:89:8e:db:dd:
79:09:21:8f:3f:c9:cb:50:72:1c:e6:2c:ef:9e:43:59:ea:4a:
fa:f6:73:c6:66:02:98:3e:ec:9f:06:16:11:5d:7d:25:22:00:
f4:df:f9:6a:ce:e0:03:03:74:6a:69:6a:cc:ec:55:bd:16:fc:
08:9d:e8:81:43:74:fe:a2:fd:fd:7a:9f:13:33:70:b4:4d:40:
13:06:8b:04:53:33:e1:83:e6:68:f2:f7:b4:9b:5c:b6:d9:14:
bd:c0:cb:f9:91:82:78:e3:17:19:c4:10:2b:e3:8b:73:0e:d3:
0a:85:bd:05:61:d4:49:e0:7b:2d:4d:dd:c1:3b:cf:4b:ab:12:
c0:2c:4c:13:79:de:2e:23:02:04:1b:e8:17:5e:1e:5c:3f:a1:
3b:4e:2f:0b:99:f1:d0:f7:5f:52:b0:14:aa:5f:0b:63:a4:f3:
9d:71:4e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org