Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DPqkzXFPN-eTfWsP_mBHQskYojU.roa
File: DPqkzXFPN-eTfWsP_mBHQskYojU.roa (raw, json)
Hash identifier: Fcu/dmxDibn3NU/TQtFBkm4iD0SYkAGsFJZv28OTGpo=
Subject key identifier: 0C:FA:A4:CD:71:4F:37:E7:93:7D:6B:0F:FE:60:47:42:C9:18:A2:35
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0828
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DPqkzXFPN-eTfWsP_mBHQskYojU.roa
Signing time: Tue 29 Sep 2020 09:57:49 +0000
ROA not before: Tue 29 Sep 2020 09:57:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17213
IP address blocks: 60.198.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2088 (0x828)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0CFAA4CD714F37E7937D6B0FFE604742C918A235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d0:7f:74:e4:4a:c6:22:e9:be:19:04:05:34:
2a:2b:c7:dc:d5:de:7d:6e:81:40:d6:a5:44:03:3c:
72:ee:2e:15:09:0d:88:51:4f:2f:33:f7:0e:14:2a:
fb:0a:74:8c:05:5b:6f:89:d9:31:78:46:31:bc:a7:
e5:ba:eb:0c:be:db:5d:0f:46:77:08:39:96:d1:f9:
fa:20:62:2f:c9:65:fd:c8:81:2c:fe:a8:6f:e5:62:
d7:b5:ad:ab:a7:26:43:8c:47:11:51:5d:78:f0:f4:
4b:a6:26:d0:48:23:54:50:02:00:db:fe:67:e5:d9:
57:7f:70:95:af:69:b5:54:90:ad:7b:b7:0a:68:74:
0d:30:b2:9d:91:a0:fc:c5:7e:43:d7:2c:15:24:46:
a1:67:4e:d1:86:31:17:cc:24:a9:43:7e:c5:a4:2f:
bc:83:94:7e:03:25:0b:10:ea:d8:6a:33:35:67:57:
46:e0:de:63:32:e2:e1:ab:ca:cb:14:42:9f:3a:99:
28:76:d4:45:b9:ad:18:9a:6b:03:b0:f5:1a:f0:9b:
bd:2f:ac:77:79:7a:02:59:4a:27:50:0c:30:a3:6c:
5b:74:98:02:13:36:d8:a2:0c:cf:b6:7c:d3:72:d8:
96:b1:b2:4e:c4:92:6a:33:f6:1b:b3:74:45:b6:7e:
f4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:FA:A4:CD:71:4F:37:E7:93:7D:6B:0F:FE:60:47:42:C9:18:A2:35
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DPqkzXFPN-eTfWsP_mBHQskYojU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.159.0/24
Signature Algorithm: sha256WithRSAEncryption
64:29:39:fa:e2:20:07:5e:ec:bc:f7:9f:8c:ed:df:2d:11:b1:
af:27:ea:ec:f5:6f:c3:d0:f8:e2:88:bf:d6:fb:ba:5d:ad:c5:
84:c8:b7:e4:9c:21:82:ff:02:3f:4c:e3:ca:39:44:d3:c6:f1:
d0:05:67:1f:15:de:2a:94:62:63:90:22:0f:c6:73:0f:4d:9b:
51:a2:01:e4:5a:e3:43:9b:c8:31:55:8e:cb:63:f4:dc:5d:59:
a0:6c:e8:c5:75:10:eb:e9:4d:a6:48:51:e6:db:f3:8e:0d:48:
c5:c6:80:70:ba:37:0a:30:54:39:70:a6:44:08:7e:8c:1c:03:
d9:59:03:d3:70:3c:b2:60:28:27:ae:2e:a1:04:5c:cd:63:ee:
40:4e:72:d6:dd:7f:02:71:67:58:05:51:85:8a:eb:c6:d7:04:
14:12:b3:b6:86:7f:ea:2e:de:36:16:cf:eb:22:ce:25:dc:98:
14:0a:6d:ae:85:b6:5b:54:2b:29:a4:e8:54:46:ae:9d:9b:c4:
db:23:49:bd:a2:9c:74:c4:bd:75:47:25:d2:c7:db:2b:7a:09:
bc:d5:6d:cf:12:d5:2c:21:26:7b:42:74:af:5f:b0:b7:d9:5e:
d9:be:02:7c:b7:46:1b:ef:a1:e6:0d:d6:eb:b3:3c:d4:b6:8c:
e0:26:d3:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org