Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/C7wPJW5goX7465IPQNQKjpNzs08.roa
File: C7wPJW5goX7465IPQNQKjpNzs08.roa (raw, json)
Hash identifier: i3jF5ZNDv3osB+YbQgr1m/VO24MJdNqI2/3JQQCx5Z4=
Subject key identifier: 0B:BC:0F:25:6E:60:A1:7E:F8:EB:92:0F:40:D4:0A:8E:93:73:B3:4F
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CC8
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/C7wPJW5goX7465IPQNQKjpNzs08.roa
Signing time: Wed 29 Sep 2021 02:50:16 +0000
ROA not before: Wed 29 Sep 2021 02:50:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 60.199.171.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3272 (0xcc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0BBC0F256E60A17EF8EB920F40D40A8E9373B34F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:51:83:2a:ca:8e:eb:62:24:b3:02:25:5c:8d:
ef:ef:9b:58:71:90:a0:36:e6:e8:d6:4d:d8:6f:af:
1c:cd:db:a2:cd:9d:87:55:71:8f:66:7e:4b:f8:3d:
e6:e4:5c:ff:a1:b1:a2:cc:c2:ec:1b:d9:32:38:39:
9b:42:46:dd:e0:aa:29:3c:7f:46:d4:9e:76:86:f5:
b4:8d:d1:a7:0e:fe:83:bb:01:43:f7:94:a7:48:60:
ec:7a:39:68:b1:bb:7d:50:a0:de:df:4c:22:35:18:
5e:90:c1:28:ee:ba:8b:f2:ca:d8:e2:a9:16:ed:2b:
76:9d:d2:3c:4c:81:46:36:ff:75:f2:43:5f:6b:e1:
d7:c6:6a:73:65:0b:7f:87:23:0c:1f:36:12:5b:fe:
20:2a:7c:7e:d8:49:36:be:ed:ab:53:7b:7e:3d:db:
0f:f6:b2:fb:0e:bf:8e:c3:b1:0f:61:52:28:8a:68:
e0:44:8e:38:fa:17:01:80:15:22:31:1c:85:6c:cc:
00:77:4d:d6:fb:95:ec:7a:df:97:79:57:9d:d1:c9:
ca:93:46:74:10:69:73:78:78:5a:b7:e9:d1:5f:2a:
55:15:60:59:4a:c5:59:2a:16:30:60:1a:32:2a:87:
e1:73:0a:c6:f6:e0:ea:c9:b5:4b:8c:d3:60:34:70:
86:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:BC:0F:25:6E:60:A1:7E:F8:EB:92:0F:40:D4:0A:8E:93:73:B3:4F
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/C7wPJW5goX7465IPQNQKjpNzs08.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.171.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:61:3a:43:c1:7d:63:53:2b:c1:d4:66:c2:5b:15:5c:e9:40:
a0:c6:17:55:81:13:92:38:eb:02:75:14:40:96:4e:e8:c3:a5:
bc:59:fd:6a:fc:ad:1a:53:93:c6:46:47:0c:ce:a3:85:a9:f3:
10:7d:75:28:5c:48:08:f2:22:d3:ae:78:81:5d:42:76:c4:2f:
c0:0e:65:10:26:20:f5:0e:a4:9a:bc:bb:63:67:03:ed:63:39:
01:76:a1:55:51:d4:de:7c:95:07:6c:44:8a:f8:d5:83:7b:fa:
49:c0:19:8f:cd:8e:6f:d6:45:8b:79:54:21:18:95:71:af:27:
f7:9f:50:4f:9b:b0:9b:9e:1b:4a:05:e3:a2:e6:e8:17:ca:45:
eb:7f:b4:f6:cc:2f:e0:f3:16:cb:aa:8a:a7:d7:62:54:c6:f6:
6d:b7:f8:3d:4d:3c:aa:d3:43:66:67:dd:25:41:20:cb:84:e1:
cd:b5:f8:3f:19:74:a1:be:28:02:ee:ef:a0:16:a1:d2:2e:5f:
b9:36:19:91:83:ca:fe:d6:cb:b9:70:54:75:86:94:82:85:58:
ca:6c:ae:ef:0f:96:ba:c2:2b:7c:2d:4e:a6:7a:6b:85:2e:c7:
d9:1f:07:d4:71:ba:4f:59:fc:31:b9:53:70:94:4c:77:12:9d:
6d:04:34:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:02 2023 by rpki-client on console-ams.rpki-client.org