Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jg2DBiuNXxt67D19SBxzIMlNQfM.roa
File: jg2DBiuNXxt67D19SBxzIMlNQfM.roa (raw, json)
Hash identifier: 6pK59PHpBCvJ7fOuWDgEocnXBCutdtmS3wlmmn5gsMo=
Subject key identifier: 8E:0D:83:06:2B:8D:5F:1B:7A:EC:3D:7D:48:1C:73:20:C9:4D:41:F3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0964
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jg2DBiuNXxt67D19SBxzIMlNQfM.roa
Signing time: Wed 16 Dec 2020 01:59:25 +0000
ROA not before: Wed 16 Dec 2020 01:59:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 60.199.212.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2404 (0x964)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 16 01:59:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8E0D83062B8D5F1B7AEC3D7D481C7320C94D41F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ed:96:63:74:0b:a5:d8:fd:5a:86:f3:e0:9e:
5b:b2:bf:3a:ba:d8:85:a8:09:ef:4e:be:7b:9c:3d:
f1:80:ec:9e:c9:96:ba:74:4c:f0:59:20:de:e7:38:
cc:18:21:b7:68:e9:18:a5:28:14:e3:f7:dc:5a:e9:
4c:cc:88:31:cd:98:66:90:a3:f1:96:54:59:5d:90:
17:c8:7f:bb:76:e0:9d:44:41:df:95:e1:ea:63:83:
50:cc:c6:72:be:34:63:a6:06:e9:3f:24:f6:9a:ad:
e8:71:03:05:50:4a:64:9d:60:9c:06:ef:5b:67:d3:
ee:c5:a5:e7:07:82:14:ed:00:b0:dc:e5:eb:a0:7f:
dd:93:f4:d4:ea:a0:ce:9c:d3:2f:a0:4e:ae:f4:f2:
6b:2f:6f:26:ad:fc:fc:dc:83:d6:b7:83:ee:37:54:
2d:5d:0f:6b:18:d2:28:cf:4a:f8:e9:17:14:55:5e:
70:5a:da:ee:53:34:77:87:15:ae:75:6b:c1:b6:cf:
42:1b:be:d3:45:3b:58:a3:dc:84:6b:0a:f0:ad:14:
de:24:65:ea:40:c3:df:6a:93:c6:0b:8d:64:48:e4:
fa:4b:23:72:57:8d:38:08:e9:49:90:d5:c9:c2:ce:
b0:b9:91:aa:55:fa:e6:e4:1d:84:a7:28:06:5f:f2:
36:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:0D:83:06:2B:8D:5F:1B:7A:EC:3D:7D:48:1C:73:20:C9:4D:41:F3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jg2DBiuNXxt67D19SBxzIMlNQfM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.212.0/24
Signature Algorithm: sha256WithRSAEncryption
23:ed:4d:fd:1c:be:f8:25:46:02:bc:b0:27:b8:73:2e:6b:15:
30:b1:19:54:d0:61:a8:4e:a2:82:fc:46:4c:d3:84:e0:28:1c:
8e:8f:96:f6:c7:f3:ba:11:47:c1:0a:30:cb:cc:37:6e:1e:54:
44:fb:77:34:6f:b3:ab:d7:9d:f4:a3:be:01:46:42:83:5c:04:
b3:ea:d3:c3:f8:b5:3c:78:84:44:22:a2:dd:c6:03:61:59:a7:
fa:07:24:a4:86:1d:46:96:c2:df:b9:83:78:ae:68:b2:ab:0a:
56:27:56:1a:67:f6:94:33:a0:de:6a:31:5a:18:8a:f1:aa:12:
d1:a9:35:98:8a:28:ee:3c:49:12:78:fa:e6:06:59:5a:9d:ed:
5b:8e:88:fd:90:23:44:1f:6f:8b:ad:38:19:81:7b:4f:ce:fd:
ed:5a:c2:2a:90:a8:f5:9b:07:ed:8b:19:7c:b3:13:7a:71:a0:
11:ce:7e:66:87:5f:4c:ca:69:6e:44:b3:c0:fd:c7:ee:95:11:
d7:37:79:49:f9:62:4a:a6:9a:cf:be:1f:bd:c5:4c:9e:06:33:
62:fb:7b:b8:8a:81:20:a3:0c:2a:68:66:99:d1:18:0d:3f:bf:
60:21:82:a5:91:14:72:c5:1c:f1:9f:53:60:5e:81:24:d7:5e:
f2:05:d3:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org