Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ey3DP01vXazPctAA8mjWn3soxPI.roa
File: Ey3DP01vXazPctAA8mjWn3soxPI.roa (raw, json)
Hash identifier: pX/slqTVdXP78IMTGv345HBLQZDEwbwrz1zr3k8mDJU=
Subject key identifier: 13:2D:C3:3F:4D:6F:5D:AC:CF:72:D0:00:F2:68:D6:9F:7B:28:C4:F2
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0960
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ey3DP01vXazPctAA8mjWn3soxPI.roa
Signing time: Wed 16 Dec 2020 01:58:22 +0000
ROA not before: Wed 16 Dec 2020 01:58:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.199.235.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2400 (0x960)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 01:58:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=132DC33F4D6F5DACCF72D000F268D69F7B28C4F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:63:b4:49:f5:94:a2:92:dd:2c:ef:b8:68:62:
82:92:1d:60:76:bb:cb:e4:20:6f:a0:89:e9:9a:10:
70:a8:ef:58:9f:c3:09:84:09:68:8b:19:dc:1c:e7:
15:b6:99:b2:2c:43:a2:47:6c:a3:b4:30:17:85:2b:
2a:fe:b1:1e:9b:c5:6a:b0:d3:67:a8:ad:1f:6e:16:
62:1f:11:56:4a:fe:03:50:ba:ee:8f:99:9e:ef:c3:
82:4d:e2:cb:b4:dd:2e:22:72:9b:4e:0d:2e:ab:de:
69:4f:c1:4f:f7:fe:30:70:a4:39:15:1b:cf:ea:32:
5b:f5:07:77:d9:b7:c8:8a:02:b4:3e:9b:bb:0b:26:
03:59:fc:b6:a8:30:f8:85:e2:d7:92:d2:56:d1:46:
43:6e:d5:74:45:4f:9a:74:cd:86:ed:96:ab:38:14:
5a:fb:c0:2f:bb:6b:4c:26:52:bf:f5:72:22:77:6b:
24:6e:ca:41:3e:86:be:c0:37:a3:45:86:03:db:95:
5a:98:cb:0b:89:51:45:26:ad:2c:c6:af:eb:5d:a0:
1c:00:08:be:2e:12:73:62:d1:8c:68:dd:9f:16:30:
46:19:e4:27:b8:11:aa:f8:d7:a0:9f:8c:8c:1d:b8:
4c:45:f5:71:bc:b2:ee:8f:9f:c9:0f:f9:ed:87:29:
72:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:2D:C3:3F:4D:6F:5D:AC:CF:72:D0:00:F2:68:D6:9F:7B:28:C4:F2
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ey3DP01vXazPctAA8mjWn3soxPI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.235.0/24
Signature Algorithm: sha256WithRSAEncryption
44:08:16:b2:54:80:65:95:88:5d:bb:0e:bc:50:11:5c:34:5d:
56:ef:8f:ba:e4:31:81:99:7e:1f:50:43:c6:eb:15:4b:6b:76:
b3:16:e1:0b:3f:44:61:8d:a8:df:e0:e2:69:f5:ce:59:d0:8f:
db:b2:62:04:f9:a5:ae:17:eb:08:d2:d3:3d:c2:2f:5b:e2:15:
16:0f:18:4d:ed:3a:42:10:67:f7:b4:4b:83:83:c2:0c:32:4d:
3f:dd:45:21:f5:f8:ef:02:78:6c:fb:92:70:d9:3c:e9:23:8b:
6d:70:82:37:c0:f0:26:48:b2:fa:8a:ca:d4:e6:dc:0f:ed:17:
80:81:6e:29:3b:8b:b9:7b:c1:13:2e:73:8e:06:63:70:5f:ec:
03:b0:66:9e:76:cd:3b:a6:c1:95:82:d2:4f:98:4d:35:16:67:
d1:cd:f8:29:c6:ff:ef:48:09:74:3b:d7:51:18:1e:b3:50:3d:
ff:80:b4:86:7d:3d:fc:36:b1:49:04:e2:9b:de:d0:a6:03:e3:
27:af:33:0b:cd:92:3c:12:63:c2:13:6a:e5:21:9d:dc:9a:9f:
7b:c3:be:13:60:89:e3:24:59:b3:2a:ae:aa:46:fb:77:e9:b2:
21:a5:c6:d9:74:0a:49:b3:b8:26:d9:32:dd:26:52:41:8a:50:
ac:6d:94:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:41 2025 by rpki-client