Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BekMR9a3jU_6kg9ZXyIeocVjj_A.roa
File: BekMR9a3jU_6kg9ZXyIeocVjj_A.roa (raw, json)
Hash identifier: 5mxu643EY26hO2AFIdV4e5rsLtKAX8/3VxiRie4lWtA=
Subject key identifier: 05:E9:0C:47:D6:B7:8D:4F:FA:92:0F:59:5F:22:1E:A1:C5:63:8F:F0
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CA5
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BekMR9a3jU_6kg9ZXyIeocVjj_A.roa
Signing time: Wed 29 Sep 2021 02:50:06 +0000
ROA not before: Wed 29 Sep 2021 02:50:06 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131634
IP address blocks: 60.199.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3237 (0xca5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:06 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=05E90C47D6B78D4FFA920F595F221EA1C5638FF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fc:bd:1c:c2:f0:bf:f3:da:a8:f4:ef:e8:ac:
68:79:6b:ca:93:9c:9d:a1:2f:6f:bd:3d:43:53:ae:
8e:56:d7:97:bd:0f:35:38:fe:91:44:71:a1:55:c3:
e9:0b:29:99:f3:fd:99:6b:a4:a9:ee:8e:7b:8a:b8:
09:1c:b4:f9:86:78:94:f2:bd:bd:8e:b8:01:be:4e:
97:10:84:f4:f6:a1:b6:b5:d4:a8:d0:c7:34:cf:35:
c0:39:4c:a3:a4:a1:d6:a3:74:43:bc:30:47:0f:4d:
a3:a3:f8:60:f1:dc:49:32:2c:63:b4:23:b8:d4:ad:
81:c0:be:16:73:88:a9:7b:d9:03:26:9f:8c:a3:7d:
8c:28:18:3a:e3:bc:2f:44:28:3d:a7:a6:78:f5:e4:
3d:b0:7d:a1:ce:a6:59:3f:c0:00:dd:be:e8:3e:cf:
c3:37:03:30:c7:1b:5e:08:d2:30:aa:9f:af:e5:01:
24:2c:58:66:35:4b:40:96:eb:5e:5a:f0:4c:0e:a5:
a9:a2:c7:13:67:20:24:62:a8:3e:84:f8:89:71:2f:
bf:3e:b0:5d:6d:9d:84:a4:03:43:5e:22:88:87:58:
ce:90:79:2d:df:ec:19:3d:66:78:80:a9:2f:28:8b:
fd:91:e5:0a:5e:9a:d2:3e:72:bc:1e:20:2d:06:57:
e6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:E9:0C:47:D6:B7:8D:4F:FA:92:0F:59:5F:22:1E:A1:C5:63:8F:F0
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BekMR9a3jU_6kg9ZXyIeocVjj_A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.50.0/24
Signature Algorithm: sha256WithRSAEncryption
29:62:3f:5e:c2:af:7a:6b:89:1f:eb:4d:64:41:7c:66:24:af:
b9:db:60:0f:f5:c0:82:3c:61:16:83:fb:82:88:7f:60:ad:67:
12:d3:ef:88:8f:b3:b5:c4:74:7a:82:75:37:9c:53:63:01:35:
d5:99:77:42:a3:8a:a2:a0:bc:d3:e0:b1:61:bd:46:fb:29:b6:
d0:de:37:fa:7b:36:28:a4:8b:8c:d1:84:8c:cb:1d:f3:4b:0d:
77:54:52:28:6f:1e:21:8b:91:17:c8:1a:88:cc:dd:b6:ad:2f:
f1:79:10:f1:54:50:13:a9:59:2d:27:46:16:64:4c:b3:42:47:
d2:f7:fe:66:a9:3f:54:8a:3f:52:7b:36:ce:b3:25:a4:43:b9:
7e:ab:d6:4b:38:df:c3:18:62:e7:61:26:8d:87:40:bd:17:b8:
04:37:1d:a5:94:0e:fa:97:14:fe:23:d5:0d:4d:dc:d2:8f:c8:
d0:c0:04:c7:c7:c5:8b:8e:4e:4f:5a:05:21:94:57:e3:d3:7f:
0f:ee:71:0a:60:91:db:14:2d:7b:78:7c:d3:3c:d0:71:9c:b3:
a7:f6:54:e9:96:a6:43:cc:2b:37:9f:57:24:f2:54:8b:7c:4f:
b0:86:f4:3e:5a:f7:97:74:90:6b:9a:eb:d1:ad:4b:0f:cd:6b:
23:b4:df:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:38 2025 by rpki-client