Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/f7Z3_gLx1u6QzXv7FkH64l3nyDc.roa
File: f7Z3_gLx1u6QzXv7FkH64l3nyDc.roa (raw, json)
Hash identifier: C4RHsVRS0m3G6JLeA+r+oPNQku9n703NgKAnbt+RhlA=
Subject key identifier: 7F:B6:77:FE:02:F1:D6:EE:90:CD:7B:FB:16:41:FA:E2:5D:E7:C8:37
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0B16
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/f7Z3_gLx1u6QzXv7FkH64l3nyDc.roa
Signing time: Sun 07 Feb 2021 13:10:16 +0000
ROA not before: Sun 07 Feb 2021 13:10:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.199.193.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2838 (0xb16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 13:10:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7FB677FE02F1D6EE90CD7BFB1641FAE25DE7C837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:04:cd:e3:0a:9a:ff:fb:d6:02:b3:08:2b:bc:
72:7d:dd:64:a3:7a:ff:03:d7:5d:f9:ce:32:cb:67:
cd:8b:c3:e6:3e:2c:bc:ed:6c:37:9c:98:d7:a8:23:
7b:2e:45:18:95:f7:04:d9:5f:86:1b:ae:11:9a:f3:
f1:39:21:13:d9:ea:2c:cc:63:d1:71:94:ce:1b:64:
8f:04:7c:74:6b:63:de:83:58:b6:0b:51:2c:53:51:
85:03:1a:89:16:6b:c2:78:be:04:5c:e3:56:e9:09:
b7:7f:d6:61:d7:df:6e:74:3d:10:4f:34:b8:7e:2f:
86:9d:bb:c9:88:76:e7:67:78:a7:15:54:89:6c:63:
7e:54:69:21:ce:5e:cb:77:76:f8:26:5c:e1:13:d4:
a9:07:75:14:18:dd:43:2a:68:a9:01:1e:a6:29:e0:
88:e2:c6:aa:13:49:7f:72:44:d9:1f:e5:17:03:57:
96:d4:1e:0d:14:e6:f4:0b:35:50:65:bc:75:bb:21:
59:e6:9a:9c:1a:e3:18:5d:ac:ee:4c:aa:bf:81:e5:
4e:c4:44:ba:8a:e5:61:53:9d:fd:84:1e:42:28:62:
b6:95:d7:a0:d0:e2:6f:b1:10:19:ac:9f:4c:57:02:
04:dd:58:6a:d5:31:ec:34:81:41:94:29:8d:70:26:
9f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:B6:77:FE:02:F1:D6:EE:90:CD:7B:FB:16:41:FA:E2:5D:E7:C8:37
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/f7Z3_gLx1u6QzXv7FkH64l3nyDc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.193.0/24
Signature Algorithm: sha256WithRSAEncryption
01:79:1a:b4:ac:87:3d:f4:78:eb:57:1e:80:36:1c:e2:92:d5:
2b:3f:f0:ad:d0:b0:19:b2:14:d7:ce:cf:a0:96:f7:c9:20:b5:
81:aa:f5:69:31:3b:a3:12:4e:69:91:52:67:fb:e5:32:31:b6:
61:8f:83:92:c3:23:3a:b4:04:d3:64:b3:4e:67:eb:a5:7f:cc:
c9:87:d2:3b:c9:7d:cd:52:76:bd:f9:4f:34:43:37:fe:49:84:
2c:5d:da:0a:5e:c3:b9:d9:ff:02:79:a9:13:0d:d1:74:67:a6:
58:ec:da:98:23:44:b5:8f:9e:31:15:db:75:cd:25:af:b5:10:
52:db:a5:a9:c3:ec:dd:a9:19:02:f2:2b:7c:8b:15:b3:0c:e3:
8c:51:a6:86:0c:6c:96:f1:b5:84:7d:6f:06:bd:25:62:55:fa:
01:14:45:86:c0:a1:fe:d7:d4:e1:f7:71:9e:55:cd:6d:d1:9f:
4a:50:4a:83:bb:80:ec:4e:2a:d8:3d:88:b9:9f:be:b6:05:ed:
2a:f9:1a:14:51:05:3f:1a:d3:79:14:28:8d:13:e7:8e:58:df:
52:a4:94:fb:4c:c9:a6:05:33:b2:01:85:37:98:b7:0b:9c:b1:
9b:32:2b:a5:b2:62:77:a4:91:b2:da:2e:bf:3d:fc:6d:e7:a0:
c9:de:e8:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org