Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/guGImd05M2wIpqmewzzs6nHjkH4.roa
File: guGImd05M2wIpqmewzzs6nHjkH4.roa (raw, json)
Hash identifier: 6wWFoEz9e63pTKLn61dDIZy9CqzKwaxWBamB8KwSzEY=
Subject key identifier: 82:E1:88:99:DD:39:33:6C:08:A6:A9:9E:C3:3C:EC:EA:71:E3:90:7E
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0E0C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/guGImd05M2wIpqmewzzs6nHjkH4.roa
Signing time: Thu 15 Dec 2022 10:17:40 +0000
ROA not before: Thu 15 Dec 2022 10:17:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 60.198.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3596 (0xe0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 15 10:17:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=82E18899DD39336C08A6A99EC33CECEA71E3907E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:39:be:17:2f:94:8b:7d:e7:84:6f:56:14:5b:
49:95:f4:52:e8:e0:ef:67:71:ff:c1:8d:dd:1b:6c:
62:62:e6:59:eb:7c:c0:0c:e3:11:68:71:43:9a:b8:
a4:a6:7e:0b:cc:c1:fa:91:de:40:a3:b3:e7:2a:b5:
53:db:45:4b:ae:4e:5a:a0:75:b0:ff:27:c7:5c:18:
66:7d:93:fb:23:1a:54:a7:ab:e8:98:05:cd:c1:59:
a2:19:17:7a:48:b6:79:c3:70:6f:94:c7:05:03:d9:
da:02:7e:b5:fd:65:61:9c:46:77:ac:6c:e5:0a:8a:
e8:e0:8d:d8:27:af:22:15:21:20:29:33:21:a6:94:
57:92:cd:97:22:3a:42:28:3b:90:9b:47:c8:87:43:
9a:25:d0:af:b3:ca:ca:aa:45:4e:6b:cf:2b:c9:86:
cc:15:0f:76:18:2b:eb:7b:10:ea:64:d5:32:9c:d9:
50:40:e5:de:b3:dd:3a:b0:bf:a7:79:53:d8:26:45:
cf:b8:5b:8e:20:26:58:fa:cb:28:0a:16:b4:a0:46:
19:32:e2:79:96:0c:2a:55:03:1a:49:eb:d2:5e:d9:
51:ec:c8:bf:06:a0:c3:a7:ef:c4:60:1d:a1:d1:54:
14:9f:2b:c4:92:1d:2a:7a:6e:b2:92:bd:38:ab:92:
6e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E1:88:99:DD:39:33:6C:08:A6:A9:9E:C3:3C:EC:EA:71:E3:90:7E
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/guGImd05M2wIpqmewzzs6nHjkH4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.36.0/22
Signature Algorithm: sha256WithRSAEncryption
46:e5:df:68:8f:a4:df:0d:db:47:78:52:7d:5d:d2:45:94:55:
45:3e:84:bc:8c:0c:cd:d4:e8:9d:d4:e8:e3:f8:6d:3c:7e:87:
00:a6:48:1d:de:91:88:d3:87:69:82:85:0e:f6:a9:82:d7:96:
c1:6e:d2:9f:9d:f2:e9:98:77:a7:1d:24:52:c1:be:84:bd:16:
88:e7:5d:cd:22:bd:07:e0:1d:b9:2c:5b:46:e9:65:5c:e5:3d:
d7:e7:8a:50:b0:1d:04:94:1e:42:1e:47:f3:e8:17:24:a2:8b:
15:db:3e:fd:07:02:70:bc:28:d6:61:16:c3:07:1f:cf:9e:eb:
e5:61:d8:04:e8:08:15:98:2f:34:1f:9c:0f:be:03:8a:fb:09:
51:89:12:74:ff:8e:d0:ef:4e:6f:7d:a1:e0:9c:a5:49:e3:5d:
30:d0:c3:00:1e:5e:4e:d6:4a:0f:4b:9d:90:78:f6:55:4d:03:
90:6f:ea:ca:87:95:d7:70:f0:c2:3b:ce:45:9c:72:43:a8:50:
97:fb:4f:d0:2b:6e:ca:96:47:41:f0:a4:b5:c2:88:f9:fe:ee:
7c:e3:8f:6b:66:5e:3c:87:83:98:1d:5e:96:84:28:1e:88:3b:
5f:ec:09:64:53:3c:fb:06:38:e1:89:4a:ef:f0:44:7b:47:fa:
34:1d:a5:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:18 2024 by rpki-client on console-ams.rpki-client.org