Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/X8cvhhhMaT-VinLOZItY1-z_Wcs.roa
File: X8cvhhhMaT-VinLOZItY1-z_Wcs.roa (raw, json)
Hash identifier: S6sp+VImkw3DwiLKHP4vm7k/Gj9Vb8T8INZZyHm6uXI=
Subject key identifier: 5F:C7:2F:86:18:4C:69:3F:95:8A:72:CE:64:8B:58:D7:EC:FF:59:CB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CCB
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/X8cvhhhMaT-VinLOZItY1-z_Wcs.roa
Signing time: Wed 29 Sep 2021 02:50:16 +0000
ROA not before: Wed 29 Sep 2021 02:50:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 60.199.147.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3275 (0xccb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5FC72F86184C693F958A72CE648B58D7ECFF59CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d5:29:6c:cc:47:57:45:9a:6d:5a:20:4a:84:
dc:18:35:94:e5:f1:52:b0:b0:3f:ee:bd:2f:92:c6:
54:3f:95:c5:cb:47:b9:61:74:1e:72:3f:88:cd:e7:
7c:6b:e0:59:c1:2f:e2:07:3d:b1:4b:f8:30:ad:7f:
de:5d:43:cf:1b:67:c6:55:a8:42:3c:2d:fd:7b:b9:
c7:ba:66:1a:da:fc:12:9e:9d:57:b8:84:16:44:ab:
15:48:f2:f1:cb:c3:db:72:a2:5f:26:55:0d:ce:00:
04:98:69:bc:ea:5f:33:e7:61:3c:11:a1:09:45:d3:
0f:f1:39:9e:e0:4b:a3:fc:29:a4:16:c6:40:53:26:
3a:e6:ba:3b:99:ec:c8:9c:c1:1a:75:5b:ed:d2:47:
68:fb:6b:38:2a:c1:0f:7a:95:38:c1:1e:ec:65:c8:
d3:7a:55:50:7b:20:54:96:29:3d:f4:f7:79:59:88:
11:60:50:14:0b:0d:e4:f3:b5:5b:a8:fe:b9:30:07:
d9:08:74:8c:3e:c6:6c:37:e5:0f:d9:63:1d:aa:c8:
f0:30:92:44:d9:d9:ff:f6:53:83:de:66:24:85:5f:
d8:c4:dd:fd:b4:ad:9f:b9:4f:13:29:60:45:db:1e:
b7:47:6b:79:28:5f:6e:a3:f5:d5:df:07:58:93:cc:
aa:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C7:2F:86:18:4C:69:3F:95:8A:72:CE:64:8B:58:D7:EC:FF:59:CB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/X8cvhhhMaT-VinLOZItY1-z_Wcs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.147.0/24
Signature Algorithm: sha256WithRSAEncryption
69:06:90:cf:2c:d0:c1:99:4e:23:79:46:97:cc:ac:f7:d3:96:
10:99:ab:4e:39:4c:b9:4f:de:ec:55:05:53:9d:01:e1:b8:31:
5b:76:16:d7:79:89:fc:04:f3:cd:80:a5:81:dc:aa:be:66:6a:
51:bc:99:5f:aa:a9:73:76:3c:e0:8a:29:55:5f:ab:36:82:38:
b7:72:4b:2b:52:79:2d:d2:01:64:e0:72:01:66:9c:5b:3f:55:
2f:43:91:6c:a5:9d:70:97:b8:d5:67:24:4d:42:d2:fd:39:13:
ba:e8:32:39:6f:50:8c:bf:17:6a:63:09:af:01:e9:26:c4:95:
d2:32:57:f6:0d:99:ba:82:4e:01:e1:60:af:a8:5a:94:cc:b3:
fa:16:26:84:fd:c9:8e:7b:26:82:5d:54:41:e0:58:ae:e0:f8:
30:d1:c3:70:d9:9e:c7:a4:18:bf:a0:a3:b8:95:34:91:d9:c3:
84:c4:3f:75:b2:83:a1:5b:e2:fc:33:65:6a:d6:9d:10:24:f4:
14:78:17:ff:03:b4:22:3c:42:20:ff:dd:f4:87:31:78:24:5f:
ee:29:80:5e:6d:b8:03:1e:cb:bb:9b:36:b7:6d:46:d1:03:8c:
2d:2b:09:e4:fa:54:31:d4:a8:36:f2:ff:b5:eb:8a:f8:2f:06:
39:c2:40:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org