Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/D-GySAC6n6JkBtutq5pK6X4r9Bw.roa
File: D-GySAC6n6JkBtutq5pK6X4r9Bw.roa (raw, json)
Hash identifier: XKZjBPy+f7ggtmmls+cmw9D9ncPjbovQ6jJxCJEmi7Y=
Subject key identifier: 0F:E1:B2:48:00:BA:9F:A2:64:06:DB:AD:AB:9A:4A:E9:7E:2B:F4:1C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B10
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/D-GySAC6n6JkBtutq5pK6X4r9Bw.roa
Signing time: Sun 07 Feb 2021 13:10:09 +0000
ROA not before: Sun 07 Feb 2021 13:10:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.199.235.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2832 (0xb10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:09 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0FE1B24800BA9FA26406DBADAB9A4AE97E2BF41C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:18:90:72:77:f5:f3:58:df:58:ac:df:09:c2:
d5:de:5d:7e:8b:98:ab:9d:7d:63:ef:9d:b0:cc:7a:
ed:d8:db:9c:47:e4:28:25:30:1d:88:2c:76:77:92:
cd:ba:c5:b4:ed:71:7a:76:32:d0:3f:6d:d0:d8:42:
b2:5f:5e:cc:9e:02:75:22:52:5f:1f:81:ce:33:a0:
fe:e8:0b:62:31:32:12:e5:2d:30:f4:9a:ab:9d:9a:
0a:60:44:69:26:ad:78:3d:d6:4f:dc:7e:d2:46:99:
f3:11:55:a3:ac:ab:94:19:bb:72:6c:0b:d8:f9:2d:
fc:bd:d7:51:51:30:0d:91:39:7b:d9:32:69:9a:bc:
dd:15:21:39:98:a6:11:12:13:93:9f:da:ff:95:d5:
4e:9d:24:e7:8d:30:d5:59:7e:64:c2:8f:a4:e3:2b:
a6:c3:2e:6a:e6:83:e1:c3:ae:f3:30:14:eb:77:3a:
69:24:04:71:22:c8:40:5c:60:10:96:68:b6:3e:23:
5a:31:a9:c1:11:11:97:3e:bd:ab:73:5f:aa:9a:ea:
9c:10:97:a6:8e:31:fe:1b:7d:bf:67:6f:c8:29:8f:
c3:ac:07:25:32:d4:86:de:32:6c:b7:27:ee:7f:9d:
d6:07:69:da:09:17:bf:82:82:d3:e2:4e:15:e4:dc:
f8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E1:B2:48:00:BA:9F:A2:64:06:DB:AD:AB:9A:4A:E9:7E:2B:F4:1C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/D-GySAC6n6JkBtutq5pK6X4r9Bw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.235.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:14:06:9e:cf:39:9c:f5:75:46:8a:ca:c6:bc:b1:a2:05:95:
35:b9:e9:bf:e1:71:d0:42:5a:5d:cb:c2:2c:58:2a:f0:3d:51:
6e:11:6c:ab:98:47:12:c2:1b:26:55:f1:a1:4f:62:c7:5a:bd:
00:da:c7:c8:8d:58:49:db:89:73:a0:d3:46:0b:0a:79:6b:02:
04:88:af:b8:b2:ba:d5:62:a4:d7:fd:84:83:e6:33:21:87:1b:
05:bf:c5:e1:35:3c:9a:e5:ab:44:23:bc:61:e6:07:e3:79:53:
e8:2b:41:8e:4f:9e:35:1b:94:1d:f7:35:2f:e7:70:9e:0e:8e:
d2:37:5e:a6:d6:d8:2d:a4:c6:4a:cb:40:d8:9b:57:28:e2:72:
b3:24:f5:13:48:c2:12:56:4b:b3:54:0d:e7:5b:ad:1a:3e:e4:
56:37:5d:1b:83:78:02:cb:72:9d:99:4c:75:96:7f:5a:0e:47:
dd:11:42:bf:10:c3:c8:24:72:8c:c2:ce:5b:dc:fa:61:85:fe:
21:23:2e:5a:5b:d7:63:ef:43:35:70:e2:a7:60:59:f8:8a:68:
5a:c9:86:4e:c1:30:61:6d:e6:c8:72:e8:6f:40:fd:a9:33:7d:
18:7f:81:51:36:bb:34:03:c2:53:83:2f:39:ab:e6:ff:bf:2c:
6a:c9:2f:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org