Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/j4ALhuAZYJwfv-ZMHuiYSLmkeEM.roa
File: j4ALhuAZYJwfv-ZMHuiYSLmkeEM.roa (raw, json)
Hash identifier: h6u+pSmR2tIPuYdqNJkck2f1GKbxHxeBo1h8lWLG2Ns=
Subject key identifier: 8F:80:0B:86:E0:19:60:9C:1F:BF:E6:4C:1E:E8:98:48:B9:A4:78:43
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 096C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/j4ALhuAZYJwfv-ZMHuiYSLmkeEM.roa
Signing time: Wed 16 Dec 2020 02:07:23 +0000
ROA not before: Wed 16 Dec 2020 02:07:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.199.168.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2412 (0x96c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 02:07:23 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8F800B86E019609C1FBFE64C1EE89848B9A47843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3c:32:11:17:3a:7d:4d:82:89:82:35:4b:af:
87:69:27:1f:26:27:1b:c2:b9:43:be:6c:81:76:29:
f4:8d:cb:60:e8:66:a6:81:2a:c3:15:d8:4a:58:55:
f6:dc:d1:9a:77:1a:c8:3a:04:82:ab:e0:80:74:2f:
3b:2d:be:88:3a:f9:7f:0b:29:ab:55:c3:64:b0:c5:
57:b1:0f:f5:b6:ce:43:e8:a9:1f:1e:55:26:30:31:
40:61:97:86:2b:f6:e3:32:17:76:89:81:50:1e:22:
ca:cd:4d:95:59:c3:5d:ac:2a:61:63:54:83:88:4c:
3d:d0:0a:58:c1:d9:75:9f:9a:72:40:91:e7:9f:21:
55:a1:99:51:e9:3d:37:6f:91:17:4c:d4:48:6a:fb:
54:86:bc:a5:c7:a3:34:ae:5f:82:f1:0c:8f:92:7f:
48:17:ec:de:ea:71:a2:7e:53:07:03:ff:ac:e7:9e:
86:30:2e:5d:a1:8b:2a:41:14:94:cd:61:90:d0:2e:
1f:6f:8b:c3:cd:d0:0c:0f:f1:dd:05:e4:d2:92:72:
81:28:56:ee:52:ed:b4:64:47:a1:d9:6c:99:f9:71:
8c:22:4b:82:9a:32:d9:65:bc:bc:53:55:7b:ae:91:
78:37:b0:84:57:b3:34:78:6a:36:52:b9:99:2d:b4:
a2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:80:0B:86:E0:19:60:9C:1F:BF:E6:4C:1E:E8:98:48:B9:A4:78:43
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/j4ALhuAZYJwfv-ZMHuiYSLmkeEM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.168.0/24
Signature Algorithm: sha256WithRSAEncryption
29:70:89:cb:02:a6:5d:c6:7d:24:a4:f7:0d:de:05:64:9e:8f:
f0:42:b1:38:81:52:61:68:aa:ee:e7:ca:66:9d:13:89:a4:5c:
c4:b1:53:01:fa:15:66:c3:1a:1d:ef:78:40:be:89:96:74:3d:
cb:9c:b1:04:d7:01:4a:5e:5f:53:32:34:a7:c2:32:08:6e:db:
57:94:07:61:a9:0b:7f:9d:30:f5:8d:ce:9c:48:60:6b:df:ba:
ba:ec:2a:ab:6c:e9:da:0d:90:d0:a1:61:d4:8e:70:dc:c4:c4:
90:dc:72:c2:69:6c:51:a3:8a:c2:cf:fd:b2:d9:b3:46:cc:be:
67:85:f5:a4:e7:92:59:e9:02:8a:b0:36:ea:bb:44:ee:f1:85:
a2:ea:18:09:a4:01:ff:d5:c5:20:6a:4d:06:29:0b:4a:b6:ae:
a2:05:68:f2:cb:0a:e7:ba:12:48:81:e1:25:2e:14:0c:b9:56:
eb:e1:df:af:12:cd:59:d0:3c:cf:80:be:fa:55:37:47:23:6e:
20:af:f0:1d:6d:f7:15:f7:5a:dd:f2:ab:c7:11:58:fb:8f:d7:
3e:cf:e8:d2:7c:c9:f9:da:b3:e6:b9:ff:11:7d:10:ea:ee:45:
a2:b9:ec:6c:12:03:ac:8c:29:03:2b:73:8c:bf:65:96:92:c9:
7a:a4:ba:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:53 2025 by rpki-client