Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8fkSOw02C4wje-GvXQ9rAA2CmUM.roa
File: 8fkSOw02C4wje-GvXQ9rAA2CmUM.roa (raw, json)
Hash identifier: OE2lcLqpdxi5bQRIoWdbcXMsn5IridCZKFap743JYmI=
Subject key identifier: F1:F9:12:3B:0D:36:0B:8C:23:7B:E1:AF:5D:0F:6B:00:0D:82:99:43
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CAE
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8fkSOw02C4wje-GvXQ9rAA2CmUM.roa
Signing time: Wed 29 Sep 2021 02:50:08 +0000
ROA not before: Wed 29 Sep 2021 02:50:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 60.198.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3246 (0xcae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F1F9123B0D360B8C237BE1AF5D0F6B000D829943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c5:3c:bd:a6:d4:e2:b8:b7:5d:0a:29:a3:63:
7d:c9:af:eb:d3:be:d1:15:56:7b:3f:3a:2e:8b:b1:
42:07:68:e6:b8:bd:87:93:50:ca:e7:b9:38:bc:f8:
2a:13:c2:96:f1:7b:93:be:2a:ba:f6:89:13:9e:85:
12:0b:43:b0:3b:3a:96:2e:a6:da:87:86:6d:1f:f0:
46:06:b3:09:24:a8:eb:a3:47:c3:db:82:20:c8:22:
78:74:46:29:61:55:3c:d0:89:12:c4:b1:09:a6:52:
61:2c:56:94:70:2b:9f:b6:5d:dc:b0:2f:c4:98:0a:
9e:1d:f3:71:09:3c:a2:d6:67:7b:4b:13:59:79:84:
bd:75:6e:f4:2c:c4:4c:f0:2b:e3:a5:a0:95:99:73:
82:1f:32:bc:ec:07:40:2e:8b:e6:a7:14:b3:1c:2f:
23:e9:c0:a9:6f:d7:0e:9c:02:52:99:eb:06:2f:02:
dc:b0:ca:88:95:df:ba:ae:20:9a:a0:74:2f:2e:14:
b0:18:a4:6d:93:12:6c:a4:ab:ac:cf:37:39:fd:6d:
33:89:ef:e8:e1:81:3e:35:6a:0b:a0:19:be:27:a9:
fb:b0:54:71:83:e2:7c:aa:6f:d1:09:13:99:1f:ac:
ec:4b:fb:32:4a:eb:a6:7a:2a:18:83:db:89:d9:32:
49:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F9:12:3B:0D:36:0B:8C:23:7B:E1:AF:5D:0F:6B:00:0D:82:99:43
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8fkSOw02C4wje-GvXQ9rAA2CmUM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.48.0/20
Signature Algorithm: sha256WithRSAEncryption
03:0a:28:50:ea:eb:ef:9c:8b:57:ce:85:76:28:f2:83:b7:14:
a6:aa:a8:8d:19:3a:c7:c0:96:be:44:f8:f9:bf:a9:7c:30:6c:
75:25:b7:cb:92:1b:88:0f:7b:ab:23:5b:9e:c6:e7:e4:96:84:
64:47:ec:8e:88:c8:79:58:91:2a:7b:75:ad:76:e5:80:97:2f:
c4:e1:b6:a1:c0:ff:89:e7:c3:32:bb:21:f3:32:6d:52:9f:73:
e9:16:e4:3f:28:78:ac:83:f2:2f:f0:49:03:d5:aa:fc:ec:67:
28:34:ac:d5:f9:c7:8f:bf:9b:84:3b:4c:7a:8d:95:3b:67:a8:
6b:58:e2:d0:c0:e4:1d:ce:4f:e9:4e:e8:1e:83:f4:68:65:96:
29:1e:bc:69:11:93:09:b1:77:a2:a1:10:15:41:17:76:54:9b:
6f:47:16:08:4c:14:8f:2a:c1:21:32:6f:3a:87:50:27:db:06:
72:63:1d:d2:02:74:17:b4:a4:a8:19:02:74:b0:9a:8c:59:83:
bf:93:49:02:66:6e:6e:8f:f3:a7:34:12:a6:84:ed:89:7d:9a:
71:c4:b3:45:d5:e3:e4:4c:0b:41:eb:05:2d:36:08:38:97:90:
8a:d0:c7:75:8d:0a:50:07:f8:3b:e2:73:9a:0d:14:26:0b:bd:
f2:bd:32:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org