Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3F4s7iL4sWUJyI6qaWAIFcx8jY0.roa
File: 3F4s7iL4sWUJyI6qaWAIFcx8jY0.roa (raw, json)
Hash identifier: DSSBZXaQoQl+aBvYNcixTa+8Z7l97m735x42GeE9AVU=
Subject key identifier: DC:5E:2C:EE:22:F8:B1:65:09:C8:8E:AA:69:60:08:15:CC:7C:8D:8D
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B22
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3F4s7iL4sWUJyI6qaWAIFcx8jY0.roa
Signing time: Sun 07 Feb 2021 13:10:28 +0000
ROA not before: Sun 07 Feb 2021 13:10:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.199.134.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2850 (0xb22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DC5E2CEE22F8B16509C88EAA69600815CC7C8D8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0f:8a:36:a8:07:9c:8b:f4:d1:f4:8f:5b:50:
17:5b:97:a7:e6:36:8a:a5:ff:43:46:de:4b:72:d1:
b7:de:b9:07:46:3b:d4:89:ca:22:71:92:4a:17:91:
e3:a9:77:d4:0f:f6:e7:2a:69:d2:9a:b4:5a:07:aa:
db:ba:c2:0e:d0:a7:c6:5e:c6:3e:46:00:b4:12:c1:
97:4b:fb:d5:a8:27:6a:50:af:8d:38:94:a3:d7:10:
4c:48:d6:54:fc:33:f9:79:25:7d:bb:c5:11:43:56:
c9:29:81:b0:93:50:8f:50:60:b6:e5:48:ae:ae:f4:
a7:1a:9b:79:aa:22:61:ee:29:75:25:64:21:ec:bd:
1f:92:53:15:89:65:c0:02:04:00:c0:b6:03:13:9f:
82:24:77:16:d8:66:99:8b:eb:84:0d:73:10:1e:03:
f6:c5:01:a3:eb:21:5e:44:24:30:b3:b7:fc:f0:0d:
3c:58:e3:30:a4:8c:dc:19:ad:0e:f5:fa:41:c9:a2:
a1:62:8c:b0:87:3d:d5:03:ef:32:f2:15:be:cb:05:
9d:4a:aa:ce:44:0c:32:e6:7e:30:1f:48:38:17:00:
6b:65:91:f0:7e:d4:29:04:70:3d:bb:7f:3c:d5:4e:
ba:28:ff:a8:8c:a9:6f:f7:96:83:23:d3:d7:11:66:
d0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:5E:2C:EE:22:F8:B1:65:09:C8:8E:AA:69:60:08:15:CC:7C:8D:8D
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3F4s7iL4sWUJyI6qaWAIFcx8jY0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.134.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:db:92:78:46:41:db:86:70:e5:db:89:32:c0:09:07:c8:91:
cc:3a:5e:3b:0f:52:c8:45:19:4a:1a:fe:9f:06:61:37:6e:26:
10:13:d1:14:89:1b:f8:ce:c9:1b:00:a6:37:28:6f:cc:01:61:
0d:51:4c:42:fe:96:7d:59:95:db:75:37:ae:94:ed:cb:41:b8:
ee:79:93:8a:72:72:d5:21:26:0f:55:68:67:ba:12:a0:04:c8:
00:5d:13:a8:50:0e:ef:18:81:23:10:d2:6a:74:c1:c0:a3:ba:
a1:51:d0:ed:66:2e:82:d9:c6:7d:29:d5:aa:b6:a3:fc:b0:c9:
9c:4e:03:7f:d4:f5:7b:0c:2e:20:99:b2:ff:a5:dd:67:60:03:
ae:05:7f:e0:a7:40:2f:05:a7:1a:f8:a4:7a:81:8e:4c:62:f0:
e1:f2:58:a8:b8:9c:54:db:92:34:f9:3f:6c:66:03:cb:d7:bf:
3c:3d:ca:d8:0d:06:ac:73:fe:d5:13:97:0e:f8:1c:28:b9:3b:
ed:ff:47:a3:ad:b1:d4:75:93:3f:12:25:8a:a1:b9:90:48:50:
4c:7e:d9:00:f5:2e:69:2b:35:97:d6:fa:65:09:cd:65:42:3c:
f9:6c:80:14:cc:ff:6f:04:63:6e:8a:00:1a:6c:eb:12:4f:b4:
21:c5:e6:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org