Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/4U7l7WrRUQJPvTTT_PR6TDm_d4c.roa
File: 4U7l7WrRUQJPvTTT_PR6TDm_d4c.roa (raw, json)
Hash identifier: e+WXUxWTFobMtW3lc8KNp1TQFzsWF1bLtxMW6oFUOt4=
Subject key identifier: E1:4E:E5:ED:6A:D1:51:02:4F:BD:34:D3:FC:F4:7A:4C:39:BF:77:87
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AFA
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/4U7l7WrRUQJPvTTT_PR6TDm_d4c.roa
Signing time: Sun 07 Feb 2021 12:58:36 +0000
ROA not before: Sun 07 Feb 2021 12:58:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131611
IP address blocks: 60.198.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2810 (0xafa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 12:58:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E14EE5ED6AD151024FBD34D3FCF47A4C39BF7787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:dc:a7:a0:0d:99:43:34:ea:0f:e7:97:2c:fb:
a2:6b:68:b0:c3:0f:85:87:3d:7a:89:0e:38:d9:b2:
a9:2b:f3:9a:da:c3:4e:32:f8:b0:22:53:b4:69:a7:
13:86:3f:2e:22:1d:02:ab:a4:b9:72:ff:34:6f:38:
c5:a6:37:2f:b7:35:59:93:52:ff:7b:d9:b0:64:ce:
37:78:65:1d:8d:43:2f:d1:f9:51:06:37:f5:4c:41:
06:62:d2:4b:d2:93:dd:af:6a:a9:bb:24:c9:3c:7d:
d5:19:ed:3f:97:95:ee:34:2e:ac:98:b1:52:8a:79:
cd:77:85:0d:11:9f:e5:42:05:ad:1e:bb:c3:be:57:
31:3f:de:87:a8:ea:22:22:ea:40:57:4e:98:ee:b2:
c5:d6:81:de:e7:ad:b5:ed:c7:86:9e:5d:4d:dd:96:
f2:9b:5f:f8:d1:7f:cd:bb:27:5a:d0:5c:7a:9f:8e:
bb:df:18:28:ed:74:05:95:26:16:d8:b9:27:f7:3f:
22:6a:77:54:a3:a1:01:d3:51:5f:f7:66:6f:a1:63:
ba:62:2b:0a:b1:54:b6:d6:c0:fe:bf:4d:cc:8c:16:
58:60:9d:52:59:7f:67:47:00:15:77:cf:bd:65:76:
5b:bc:cc:8f:a7:de:48:3c:55:7b:52:f5:3d:02:8e:
6e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:4E:E5:ED:6A:D1:51:02:4F:BD:34:D3:FC:F4:7A:4C:39:BF:77:87
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/4U7l7WrRUQJPvTTT_PR6TDm_d4c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.160.0/19
Signature Algorithm: sha256WithRSAEncryption
96:f8:21:a6:e2:5e:0c:e1:99:8f:cb:ed:ee:e6:24:35:09:4d:
00:85:61:f0:51:b5:21:72:9e:c2:20:b7:09:8e:77:27:3c:d1:
0c:df:d8:91:56:de:1c:d6:e7:52:98:04:4a:14:f6:62:56:4f:
b4:e5:1a:68:1c:ad:f4:1b:59:72:d4:5b:19:78:9e:d7:bb:aa:
d2:e9:0e:12:dc:d5:ac:2b:46:df:3b:08:ee:75:ad:fb:20:ee:
f5:7f:76:96:4e:4b:58:58:c0:a3:4d:68:66:84:f3:2b:64:1b:
51:a6:96:a7:a7:70:ad:49:a8:b4:35:f5:a5:7e:67:cd:56:21:
51:b7:51:97:fa:3d:e3:a6:9d:77:1f:a6:f8:66:02:e0:a2:a1:
cc:4b:ee:12:4f:08:f6:d4:60:f0:b5:96:76:06:78:40:4d:3f:
0f:bc:73:51:49:da:e0:04:ad:49:bc:6f:b3:ea:8a:df:e1:92:
8e:e4:99:e9:8f:8a:ec:09:29:b4:ea:1f:fe:ce:ca:e9:e9:33:
93:e9:60:4d:b3:5b:58:ef:75:70:d5:e6:6d:5c:c2:4d:90:f8:
44:bb:6b:b7:00:f7:58:c1:2e:38:75:c4:b0:40:61:c0:5f:6a:
86:80:47:8e:23:48:81:4a:54:5b:64:af:d0:05:63:3d:53:db:
cd:e0:0b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org