Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/A-B1fautLT6YW7JiwpQsmufMeSs.roa
File: A-B1fautLT6YW7JiwpQsmufMeSs.roa (raw, json)
Hash identifier: SWwMHo9TGSccGfkQtrzdrpede7qmN52HdUSoyz9X848=
Subject key identifier: 03:E0:75:7D:AB:AD:2D:3E:98:5B:B2:62:C2:94:2C:9A:E7:CC:79:2B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0972
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/A-B1fautLT6YW7JiwpQsmufMeSs.roa
Signing time: Wed 16 Dec 2020 02:08:49 +0000
ROA not before: Wed 16 Dec 2020 02:08:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.199.140.0/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2418 (0x972)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:08:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=03E0757DABAD2D3E985BB262C2942C9AE7CC792B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:b3:f8:e1:aa:dd:72:9e:55:a1:57:e7:91:
93:00:9c:69:d3:d6:28:c4:ee:99:0c:31:81:09:9f:
2b:0c:36:83:e0:dd:e2:f7:19:56:b8:d4:fb:fc:8c:
a2:dd:1e:e8:c1:7b:fe:a3:c7:f6:73:1f:2d:42:42:
1d:f1:28:42:75:29:8f:22:4a:d2:a1:60:fc:d5:cc:
fa:1e:12:3c:59:5b:52:2f:c3:c0:d7:65:0d:59:e9:
99:e8:36:23:34:75:70:d7:7b:77:de:59:ce:db:1d:
1c:7d:ec:18:3e:e1:76:73:5c:93:9d:e7:97:71:f2:
52:78:12:cd:f4:dd:48:5d:74:0d:e6:09:26:8f:1f:
4c:cb:50:e4:41:65:e1:5b:2c:06:26:22:22:dc:d8:
1e:b8:e6:79:17:4c:7a:77:12:9f:e0:e0:e4:7b:01:
16:58:63:d3:56:23:b1:a1:91:6f:d1:64:6d:12:61:
e9:6d:85:76:09:1b:a4:d4:98:38:a0:cb:03:ea:44:
1a:18:bc:17:a4:1e:75:ea:51:78:c6:e6:9d:1c:75:
1d:46:85:bb:73:63:da:18:bf:a0:e7:eb:b8:d4:77:
39:c6:0a:73:91:a9:bc:5e:6d:61:ed:9d:c6:c7:19:
7d:1c:b5:d2:2c:0e:cf:10:6b:18:3b:ee:4f:2d:7b:
1d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:E0:75:7D:AB:AD:2D:3E:98:5B:B2:62:C2:94:2C:9A:E7:CC:79:2B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/A-B1fautLT6YW7JiwpQsmufMeSs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.140.0/32
Signature Algorithm: sha256WithRSAEncryption
32:50:2f:3f:83:51:70:9b:ad:78:96:3e:dc:c2:d0:a9:93:90:
54:28:f3:ba:91:1d:11:1f:f1:11:e4:b4:74:ac:23:af:6a:be:
4b:c5:74:ed:3e:98:08:d4:f2:00:3d:db:78:ad:74:71:2e:ea:
49:b1:65:00:05:c2:1e:b7:0d:e4:db:96:48:57:f0:1e:2c:8e:
bd:13:44:7c:63:91:29:2a:37:10:0b:26:88:e8:21:a3:bf:d2:
3b:4b:5b:81:bb:a2:76:14:01:ce:2d:e8:29:36:8f:49:89:39:
3c:07:07:03:da:1d:5a:e1:48:e4:72:eb:74:37:c4:f8:13:b9:
9d:07:a1:f5:52:77:de:db:a2:32:a8:3f:98:3a:91:5c:ac:42:
4a:cd:6a:b0:17:51:46:93:e6:07:52:f8:8d:8e:78:72:3b:59:
6b:45:09:96:19:c6:8a:10:19:4b:bf:7e:3a:5e:a5:d2:f2:6f:
0d:4f:b5:e8:7a:3a:6c:a4:db:1d:86:48:43:34:51:1e:30:5a:
3f:cc:ac:9b:d4:4b:23:3e:93:7b:63:ad:02:20:7a:b4:3e:ea:
fc:58:dd:ed:a8:30:6e:e1:20:4d:1b:3b:06:65:93:8f:ba:0e:
fe:d3:ae:74:4c:d7:4b:1a:d4:60:0b:b5:56:97:03:52:97:2b:
a8:a0:4c:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:24 2025 by rpki-client