Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1MZazkDcfzLswdDIECUtK6KgB8s.roa
File: 1MZazkDcfzLswdDIECUtK6KgB8s.roa (raw, json)
Hash identifier: eAWNh9IcKrG607wfsPrYtJoxN39dzCsruy8W/x/bKj8=
Subject key identifier: D4:C6:5A:CE:40:DC:7F:32:EC:C1:D0:C8:10:25:2D:2B:A2:A0:07:CB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 09AE
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1MZazkDcfzLswdDIECUtK6KgB8s.roa
Signing time: Wed 16 Dec 2020 03:06:08 +0000
ROA not before: Wed 16 Dec 2020 03:06:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.199.140.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2478 (0x9ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 03:06:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D4C65ACE40DC7F32ECC1D0C810252D2BA2A007CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:87:6f:3b:1d:54:87:db:a5:cf:1e:97:64:08:
0e:0e:c2:6b:62:02:f3:eb:bc:84:55:57:ef:b1:01:
c8:74:46:64:10:64:df:07:d7:54:b6:22:37:3c:65:
97:2d:24:28:e9:ee:8c:dd:d1:ed:da:f7:7d:77:f6:
8e:fe:3f:32:d0:cf:68:bb:2b:06:13:b9:11:21:c0:
57:dc:f4:4e:11:db:23:f7:2c:d7:2c:c7:77:9d:4f:
60:5b:5e:ee:d1:b6:46:37:70:7c:db:8a:d6:96:16:
c5:22:70:3a:a4:96:39:2a:21:d0:fd:58:26:7c:79:
45:d5:18:a9:64:2f:bf:5d:3d:07:3c:f6:79:6c:8d:
0e:2c:33:8c:98:02:f0:52:5e:54:6b:3b:96:99:ec:
bf:53:f8:47:a5:6c:38:75:8e:96:9f:5c:d8:61:fd:
90:1f:64:cc:a2:ae:90:9c:9c:ca:ca:18:cd:c0:29:
db:1a:63:4a:2f:81:fe:c5:36:c4:51:7c:32:0b:9e:
a8:6f:e6:13:8c:37:b8:2e:1f:17:5e:c8:b9:b7:9f:
c6:c5:7d:af:df:f9:9a:1d:61:d9:f8:43:0c:1b:26:
03:f2:5b:5d:68:c5:fb:26:09:58:71:25:38:a3:b6:
00:7f:3b:7d:b7:66:54:ea:11:0c:9e:e2:ef:9a:44:
c1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C6:5A:CE:40:DC:7F:32:EC:C1:D0:C8:10:25:2D:2B:A2:A0:07:CB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1MZazkDcfzLswdDIECUtK6KgB8s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.140.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:ab:21:3d:54:41:fb:3e:38:4e:86:a0:e5:8d:93:21:13:04:
4a:1f:9c:92:d4:cd:03:85:40:ec:8f:a6:10:54:11:e0:86:64:
94:ae:81:99:32:7f:cd:50:a1:28:0d:92:cd:d5:84:df:b9:c1:
0e:fa:3d:1e:07:11:72:51:4f:8c:69:30:f8:d2:83:2c:aa:cb:
40:93:6f:12:3b:8b:bc:37:7c:57:ee:d8:48:61:25:82:95:66:
1d:28:b6:a4:9b:e3:dd:71:ee:9d:3a:5e:a8:d6:a7:fe:17:e5:
6a:1e:bb:19:80:6e:80:64:e5:41:b3:6e:f6:ea:b3:0f:50:91:
98:ef:05:65:69:35:e6:80:cf:60:80:2d:ef:d8:17:9e:74:c7:
6f:df:62:72:22:d3:c1:75:e0:77:5c:50:6d:90:6f:34:f7:be:
1a:78:ea:77:2a:7d:c9:50:8b:df:29:a7:e3:2c:4c:df:9e:d4:
9f:49:4c:8a:72:ac:f6:bb:b2:a3:76:0b:0a:0c:18:fb:ad:92:
23:62:9c:b8:0d:ce:97:53:06:64:a8:3d:0e:bd:bc:5b:48:05:
40:a8:c7:5f:55:b3:50:f8:2b:2b:1a:21:a5:8d:d0:bc:70:55:
a8:22:35:36:87:66:41:89:67:66:72:55:8a:f6:21:7e:03:8e:
4f:2f:2d:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org