Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/2XfRobgf1IbfoHB6G0bhu5FglEc.roa
File: 2XfRobgf1IbfoHB6G0bhu5FglEc.roa (raw, json)
Hash identifier: 83OCx9TwoBm04FJPu3IbP+nFOx10xup191X4FZeuyX0=
Subject key identifier: D9:77:D1:A1:B8:1F:D4:86:DF:A0:70:7A:1B:46:E1:BB:91:60:94:47
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0968
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/2XfRobgf1IbfoHB6G0bhu5FglEc.roa
Signing time: Wed 16 Dec 2020 02:00:17 +0000
ROA not before: Wed 16 Dec 2020 02:00:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.199.176.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2408 (0x968)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:00:17 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D977D1A1B81FD486DFA0707A1B46E1BB91609447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f0:3f:dc:24:4c:61:91:76:50:e2:2c:7f:f3:
23:4d:f1:ef:48:45:f4:00:e0:66:a6:b2:7d:4a:36:
a6:dd:67:59:25:23:3f:31:15:ca:95:77:c6:be:76:
53:71:4b:f5:b7:f9:2d:4d:b6:ac:9c:73:09:c9:11:
30:9c:29:63:46:58:41:6a:0b:83:26:ff:6d:d5:da:
23:2d:ea:a7:07:bc:49:55:e9:82:46:46:56:2e:48:
f6:36:ad:47:be:91:29:a3:44:c6:59:57:43:50:24:
80:bf:1f:bf:0f:7d:82:ff:8f:c2:17:94:f3:cd:c9:
58:ad:f2:8c:32:b4:60:f7:da:06:fe:28:93:75:48:
d7:10:69:df:1d:fa:ea:54:28:1d:e3:8d:9c:56:37:
a8:5b:67:ae:f2:b8:da:6d:03:74:fc:5b:2b:71:33:
34:f5:d0:84:82:f5:a8:e1:a0:4b:9e:87:0a:dd:57:
13:14:10:bd:3c:ff:19:c1:cc:ae:9d:93:56:eb:f2:
d0:e2:3e:87:6b:eb:9f:dd:e1:2a:b4:fd:3f:99:73:
1b:b7:e4:3b:fa:43:a3:fe:2f:22:c3:d0:2c:f1:d7:
75:25:47:8e:f9:66:88:d4:83:fb:5d:19:1d:af:3b:
31:43:45:02:6e:f9:00:39:05:89:bc:f4:33:65:59:
b3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:77:D1:A1:B8:1F:D4:86:DF:A0:70:7A:1B:46:E1:BB:91:60:94:47
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/2XfRobgf1IbfoHB6G0bhu5FglEc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.176.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:4d:64:0a:d2:62:e5:60:3c:c4:27:f4:87:1c:51:57:bc:7c:
bf:8e:91:3c:cd:3e:22:78:6b:93:1b:13:51:bf:9c:f9:1d:fb:
0f:3b:85:db:d2:6e:0c:53:17:c5:d8:01:98:98:10:4d:52:11:
ec:f2:aa:9e:b1:71:a8:ae:8a:b3:9e:15:c2:d9:f2:1a:30:ba:
ca:ce:49:37:34:c5:fa:2c:46:0c:9f:fc:ec:a7:d1:34:60:fa:
fc:eb:e3:58:d5:18:d7:e4:7f:70:a4:ce:df:3b:73:08:5b:cc:
32:ab:6c:db:b2:36:8a:56:f7:ee:02:71:55:c9:9c:a7:23:d2:
bc:c9:5c:97:25:bf:e0:d9:86:04:f9:ef:c8:43:d6:0d:49:75:
59:f8:f2:fe:1b:ea:bd:27:dd:7e:da:c8:57:d9:d0:9c:4e:4b:
9b:33:a8:9d:30:22:c3:78:93:ed:71:20:2b:f5:3f:81:bf:a7:
bb:02:be:f1:0f:06:02:be:fd:dc:db:4f:0d:56:57:e0:42:98:
90:45:92:95:6c:9b:22:fa:e6:be:52:6f:fd:92:54:c7:2a:22:
9d:df:b8:de:35:40:44:04:70:5c:87:10:d8:ed:47:7f:6a:af:
95:b2:d2:a1:fd:97:48:ba:2e:ce:69:db:60:66:10:e2:f1:5d:
98:0f:02:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org