Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YBAyii-9kdRvQRGP9cSjcFHgxdU.roa
File: YBAyii-9kdRvQRGP9cSjcFHgxdU.roa (raw, json)
Hash identifier: GirAEYme9VQNPwqNQGGiDrWmF9brW2uTypkEVwiDK3Q=
Subject key identifier: 60:10:32:8A:2F:BD:91:D4:6F:41:11:8F:F5:C4:A3:70:51:E0:C5:D5
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YBAyii-9kdRvQRGP9cSjcFHgxdU.roa
Signing time: Thu 15 Sep 2022 02:47:11 +0000
ROA not before: Thu 15 Sep 2022 02:47:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 60.199.110.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6010328A2FBD91D46F41118FF5C4A37051E0C5D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fc:41:64:05:8a:18:61:b6:05:90:77:ba:d2:
e3:50:a4:85:be:5c:e4:19:7e:c1:c8:04:d7:45:7e:
15:50:15:e3:68:6a:3d:11:46:b7:92:bc:d3:eb:88:
ff:7c:0e:49:21:5f:55:3a:ec:7b:8f:78:01:c7:89:
f0:d9:0b:cc:e3:df:44:d5:b0:6c:e3:3a:d6:6e:ef:
51:ec:84:d9:ad:53:66:73:76:d5:09:03:24:75:56:
8c:2d:65:82:4e:a5:3f:e3:10:8d:dc:37:21:7c:30:
46:0a:95:38:90:12:dc:9d:78:e4:e8:77:7c:7c:21:
ee:86:e3:1e:f2:7f:56:6e:d7:d0:59:26:5c:d9:a0:
6e:b8:c7:30:18:9c:aa:3f:0f:79:14:0c:80:32:53:
be:a8:df:4d:72:33:bf:e0:45:02:5f:a7:ce:cb:32:
32:73:4c:a8:73:4f:a5:05:c6:7b:ef:f3:8a:7a:30:
94:37:e9:17:20:4d:16:4c:0d:2d:c5:02:88:81:5d:
6a:05:e8:1a:cb:28:ff:7f:21:c0:18:49:44:70:ff:
1d:a9:e6:06:fc:bf:ac:52:9e:0e:eb:c1:6e:84:75:
38:f2:37:a7:6d:9c:02:4b:a6:79:5d:a1:85:7f:7d:
db:66:c5:d1:f9:47:bb:fb:41:d8:10:0b:35:fe:f2:
8a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:10:32:8A:2F:BD:91:D4:6F:41:11:8F:F5:C4:A3:70:51:E0:C5:D5
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/YBAyii-9kdRvQRGP9cSjcFHgxdU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.110.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:45:34:0f:95:2d:e8:3e:9a:27:ef:a6:41:dd:63:11:4d:ee:
cb:c7:74:2d:f0:be:db:82:d7:57:87:c8:35:bb:3b:ff:dd:6f:
ea:30:9e:b6:75:ce:b2:9b:65:d7:02:9a:50:22:90:cd:cc:e6:
70:37:e0:30:99:1d:e5:2c:36:b0:5e:d6:50:fb:0a:78:ad:33:
92:70:13:b3:98:63:f2:2c:75:c5:c4:a1:11:3a:50:a2:a1:1c:
da:14:da:58:1d:e6:38:4b:8f:cb:57:4c:db:08:30:5e:e9:8d:
c1:b9:b4:2b:47:db:e0:78:41:d5:f0:28:a0:1d:8a:61:a8:2d:
a8:0d:80:d7:2d:06:b2:09:82:af:6a:9b:45:ae:d7:87:6d:6f:
7a:d1:b2:96:c8:37:da:01:3e:e2:38:dc:33:13:72:2a:bd:1f:
47:bb:6e:36:03:06:4b:f0:e0:06:ea:be:82:73:d9:35:87:19:
9f:9d:f4:66:7d:cb:32:e4:00:06:c5:f6:41:86:c4:8a:0e:5f:
ad:82:3e:b6:e1:80:f6:8e:c3:25:b6:c0:6b:47:37:db:fe:d7:
e2:00:25:ea:a4:40:72:9c:dc:4f:cd:3b:2a:10:3a:66:80:1c:
1b:42:f7:ae:c7:6c:f9:3a:58:3c:8f:8e:0b:ce:f1:a0:4e:16:
01:4b:74:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org