Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ezsg3QQmScCvQI9jycCkwfNG9DA.roa
File: Ezsg3QQmScCvQI9jycCkwfNG9DA.roa (raw, json)
Hash identifier: ijZS6DVemDFFytO9p4NDS4q6ODhxad9Bloza0h+vm/k=
Subject key identifier: 13:3B:20:DD:04:26:49:C0:AF:40:8F:63:C9:C0:A4:C1:F3:46:F4:30
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ezsg3QQmScCvQI9jycCkwfNG9DA.roa
Signing time: Thu 15 Sep 2022 02:47:22 +0000
ROA not before: Thu 15 Sep 2022 02:47:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 60.199.224.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=133B20DD042649C0AF408F63C9C0A4C1F346F430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:be:73:7b:c1:16:aa:0e:28:1e:bc:b2:01:7c:
d0:23:17:55:ce:36:99:1a:4b:52:e8:bf:ba:70:3d:
a7:b7:4b:af:3b:98:f9:d1:9e:c1:0b:e9:27:88:82:
4a:c2:12:76:fe:22:1f:d4:3e:f5:93:6b:da:24:d9:
05:ec:ff:66:d5:e6:9c:f1:30:10:8c:d3:5a:1b:ea:
41:73:51:2b:c7:d2:3e:e2:e3:be:da:18:86:48:27:
db:37:b7:e1:cb:15:9b:aa:88:ce:2a:69:d6:8e:3b:
f5:31:14:91:59:32:6d:bf:82:bb:8b:36:7a:4c:bc:
da:d2:0f:aa:49:a8:14:46:80:94:7d:14:06:65:11:
1b:5e:55:20:bd:b6:a6:f4:f2:4b:d0:15:6c:22:8b:
59:d0:99:9f:b3:26:18:6e:0f:40:3c:73:15:04:2a:
a7:a6:c6:02:ab:a0:08:34:77:6b:ae:b0:54:d7:c5:
6c:4f:0f:9a:20:30:4e:1d:e2:76:a5:bc:62:00:34:
53:48:55:e0:79:bc:cf:cc:52:c7:3d:8b:70:5c:9c:
23:aa:1b:2a:aa:ec:68:b4:34:20:6d:36:e0:82:70:
ae:6f:6a:48:4f:d8:0d:3d:ce:81:97:20:92:ed:f4:
54:17:fd:a4:b6:a5:76:57:25:76:62:2f:c8:4a:c5:
19:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3B:20:DD:04:26:49:C0:AF:40:8F:63:C9:C0:A4:C1:F3:46:F4:30
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Ezsg3QQmScCvQI9jycCkwfNG9DA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.224.0/24
Signature Algorithm: sha256WithRSAEncryption
14:73:38:62:78:81:a0:fc:71:d0:79:d2:1b:47:ae:26:77:7b:
4a:d1:6a:f8:e5:d6:72:99:d8:28:d1:a5:aa:87:28:a6:e5:c9:
e8:0a:3a:79:75:04:27:27:fd:30:43:7a:f5:e4:c7:15:62:a1:
1f:e1:aa:60:f9:c0:13:ca:d2:9c:a4:78:49:86:56:f5:52:58:
c5:89:f5:6c:71:b9:f8:42:dc:d6:32:36:9c:e2:00:6b:f7:58:
11:b6:f4:87:c0:a8:05:ef:b6:36:8c:5d:8f:06:a5:9c:bb:48:
3c:7d:f7:cb:4d:69:2d:9b:a6:46:51:95:68:7e:98:09:fa:d4:
20:36:f9:05:ac:d7:41:c6:23:ac:70:ce:46:bb:7f:b6:60:cf:
85:22:e7:0b:d5:36:60:31:3a:dc:78:b2:8d:82:57:f5:59:ac:
67:7f:47:32:8b:5e:38:5b:d3:e6:d8:de:7e:cf:55:17:56:09:
27:59:e2:02:3b:3a:1a:0a:78:20:5b:f3:fe:a1:45:f6:98:fe:
d5:19:62:1d:a5:18:60:9d:65:64:b6:9e:a1:e6:37:88:3c:40:
00:63:28:dd:4e:dd:09:76:88:f9:9d:c8:f4:3e:c4:8e:f6:c3:
d2:96:62:a4:9e:e2:91:8a:95:ab:91:a1:fd:da:2d:0e:a1:af:
dc:a7:0e:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org