Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/142GnuL5I6CkxbHadqH3vy6zdWw.roa
File: 142GnuL5I6CkxbHadqH3vy6zdWw.roa (raw, json)
Hash identifier: 7rjihrX31nzXfnDi7+/DRH1EKkL2ZIa/7HV7vJq4954=
Subject key identifier: D7:8D:86:9E:E2:F9:23:A0:A4:C5:B1:DA:76:A1:F7:BF:2E:B3:75:6C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B20
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/142GnuL5I6CkxbHadqH3vy6zdWw.roa
Signing time: Sun 07 Feb 2021 13:10:26 +0000
ROA not before: Sun 07 Feb 2021 13:10:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.199.147.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2848 (0xb20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D78D869EE2F923A0A4C5B1DA76A1F7BF2EB3756C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ba:1d:12:f0:85:37:be:4d:04:77:f5:ab:0d:
37:e6:ce:21:59:a3:af:ab:b7:e0:41:04:64:6c:a1:
4a:0a:c2:08:51:2e:b0:42:9c:9d:ef:29:74:23:a3:
df:e2:02:51:e9:18:66:1e:78:d6:7d:67:23:a5:61:
d0:f8:1a:2c:08:65:41:8c:0d:a9:b8:07:76:96:30:
40:d3:0f:da:7f:5f:6c:c2:f0:3b:00:d0:b8:be:a4:
ed:38:9f:5f:81:b9:a5:21:c4:7a:b1:11:3a:d6:fb:
7f:cc:0d:39:c7:a3:88:ee:28:3b:b5:84:97:03:b7:
36:fe:b1:a8:7e:d8:7a:18:95:06:78:02:18:af:46:
e7:02:6c:e7:1e:2a:80:aa:57:97:85:4e:8e:97:e0:
1e:4d:6f:85:ce:62:37:61:33:02:2c:c1:8b:5d:f4:
62:75:da:38:f3:71:41:52:9e:4c:52:7b:03:ab:8a:
09:21:37:24:63:cc:ca:a5:5a:d3:87:1f:b5:a1:64:
3e:92:8b:d5:83:cf:c7:63:65:6c:da:59:1d:4b:9f:
17:65:24:63:33:e9:29:87:82:5b:00:79:7d:8f:c2:
ce:39:1c:5d:74:0a:a2:9c:9f:69:c7:b9:b4:64:57:
80:09:42:a4:ab:5e:c7:ed:0f:40:8c:da:1a:ed:55:
af:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:8D:86:9E:E2:F9:23:A0:A4:C5:B1:DA:76:A1:F7:BF:2E:B3:75:6C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/142GnuL5I6CkxbHadqH3vy6zdWw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.147.0/24
Signature Algorithm: sha256WithRSAEncryption
49:90:1e:f5:f2:43:29:17:4c:9e:86:47:8f:b3:16:e2:f9:8d:
94:75:0e:39:74:b3:ab:7a:7d:3f:17:1a:4f:e5:f0:be:71:c5:
9c:4e:99:4b:4a:5e:95:ff:bd:b9:d2:c1:6f:a7:98:45:d0:e9:
22:26:73:79:1c:f3:b1:cc:7d:11:06:6d:59:41:08:0d:9c:74:
93:01:8f:b0:a1:62:ee:7e:51:cd:ae:90:d1:7f:b5:5c:7c:c9:
35:1b:e4:6f:e6:d1:17:9c:3f:e8:42:5d:73:a3:a2:6d:28:3d:
41:f2:69:a7:e1:ae:ea:5e:e1:9f:b5:e9:8c:2d:6c:71:d8:4d:
f1:88:91:da:9c:4a:9a:03:79:a7:4d:42:ae:73:2e:09:ac:1a:
5e:2c:8d:cd:28:ca:6c:b7:1e:f8:63:9f:cd:32:f5:67:4f:3d:
42:98:76:f5:18:87:02:f1:fc:51:af:2f:9c:63:8e:23:17:2f:
ec:a3:d8:db:37:9d:96:04:57:95:75:85:1c:44:89:19:a4:55:
e2:4a:82:7a:d6:2f:f2:b9:59:dc:64:d4:0d:45:23:ec:a0:b2:
01:78:eb:ac:55:51:9e:73:c3:c5:c7:d0:07:3f:aa:5b:61:d6:
cf:1c:dc:7e:96:ed:f9:59:eb:44:6b:86:65:37:5d:a8:0a:d4:
0a:bf:17:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org