Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/j5OTJ74jgFSGetP7Y7He6bBi6ro.roa
File: j5OTJ74jgFSGetP7Y7He6bBi6ro.roa (raw, json)
Hash identifier: r9avKOkzFOMYxWVX5RwhH9XhGzhhY4GU8/aBDIWmX5I=
Subject key identifier: 8F:93:93:27:BE:23:80:54:86:7A:D3:FB:63:B1:DE:E9:B0:62:EA:BA
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CC3
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/j5OTJ74jgFSGetP7Y7He6bBi6ro.roa
Signing time: Wed 29 Sep 2021 02:50:14 +0000
ROA not before: Wed 29 Sep 2021 02:50:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 60.199.235.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3267 (0xcc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8F939327BE238054867AD3FB63B1DEE9B062EABA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a2:4e:35:8b:bd:c5:a2:3d:2f:c1:f7:46:80:
fc:27:cf:2f:db:23:8e:31:ee:f7:b3:8d:b2:c0:73:
01:a2:47:c3:e7:20:7d:3f:2e:f2:a7:04:0c:69:c4:
e3:b8:d6:b1:1b:4b:89:e2:e4:09:9f:47:2b:4a:2e:
fb:0c:06:cc:b5:dc:ca:37:4c:65:45:da:b1:7b:04:
a1:59:0b:2c:f5:52:71:32:a4:cf:5a:5d:d0:b2:c2:
51:9e:15:a2:f1:7d:99:0f:68:c2:85:da:86:39:42:
e3:d4:6b:1c:1d:36:27:7a:d7:4f:6b:4d:bb:e6:ca:
3f:f2:2c:4c:e5:b8:d2:b2:e0:22:b6:91:87:ad:63:
8a:fc:f9:01:0e:5d:ff:40:f7:2a:5e:08:99:cf:04:
3a:aa:10:56:52:56:28:16:e9:d9:f2:7e:25:81:44:
84:8d:14:7f:b4:01:64:b2:2b:72:ac:29:ca:99:5b:
83:e3:4a:72:83:97:d4:ae:3d:14:77:b6:de:26:1b:
f9:44:88:8a:c9:92:96:28:c0:fc:80:7c:23:37:cf:
09:0d:7f:06:80:65:39:45:d7:92:c2:7f:de:f7:fa:
61:20:3f:1a:ba:de:f9:7c:5a:d8:57:78:85:36:21:
46:aa:ad:7a:66:6e:73:e9:72:51:6e:00:6a:4a:a4:
21:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:93:93:27:BE:23:80:54:86:7A:D3:FB:63:B1:DE:E9:B0:62:EA:BA
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/j5OTJ74jgFSGetP7Y7He6bBi6ro.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.235.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:56:45:49:31:21:9f:2e:1e:98:c1:a4:34:6d:16:1a:ee:10:
a6:8a:9d:2b:0f:5d:c9:e4:f7:0d:d1:79:dc:4a:76:09:57:22:
b5:09:d3:4f:68:63:0b:0c:68:84:f4:63:43:fa:e1:d9:9f:c1:
ea:08:5e:13:d3:89:49:79:e2:76:60:b5:50:e4:95:20:36:70:
f3:ea:7e:d2:d0:d6:2b:6f:85:7f:3e:8b:3c:8c:71:44:7b:41:
37:a2:1f:c4:f6:c1:ea:78:10:5d:20:2f:bf:6f:5d:c6:ea:36:
fa:95:31:6b:7c:a3:a1:d8:2d:87:52:d4:b8:25:b7:c4:4d:d3:
34:aa:16:f4:c7:0f:79:bc:8a:92:14:aa:79:f8:50:84:66:34:
b7:34:a0:aa:85:62:12:08:e3:89:9e:c1:56:ed:a7:17:3a:56:
47:45:55:9b:31:33:35:eb:31:ad:6e:d2:d5:52:52:eb:17:3d:
99:c1:74:cd:f6:cd:ca:2d:ce:d4:f4:df:78:06:13:9a:40:95:
8f:7c:83:65:e1:af:05:05:7f:fa:b2:32:dd:a5:4d:ae:a2:2d:
9d:67:72:dc:3d:54:0b:55:76:05:a1:f5:92:67:66:a4:12:cf:
70:3e:57:0d:a9:76:fd:3a:8e:20:46:4f:8b:ab:c4:8c:e2:56:
71:db:40:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org