Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ldq3oJ7LweMNu7vHnvkN9zSuE9s.roa
File: ldq3oJ7LweMNu7vHnvkN9zSuE9s.roa (raw, json)
Hash identifier: bA8XO6Po2CtrfCVAZfIPsjUhq8Ex2zl2m72TojNzp1M=
Subject key identifier: 95:DA:B7:A0:9E:CB:C1:E3:0D:BB:BB:C7:9E:F9:0D:F7:34:AE:13:DB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CC7
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ldq3oJ7LweMNu7vHnvkN9zSuE9s.roa
Signing time: Wed 29 Sep 2021 02:50:15 +0000
ROA not before: Wed 29 Sep 2021 02:50:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 60.199.176.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3271 (0xcc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=95DAB7A09ECBC1E30DBBBBC79EF90DF734AE13DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ed:77:89:5b:09:2b:29:8e:ad:6b:03:76:d8:
5f:4c:1e:5a:ff:69:ea:b5:eb:00:a0:cb:e7:bc:ad:
2e:39:22:e7:7a:cc:a5:f4:b2:33:d5:ec:1e:d0:b2:
24:b6:c7:44:62:5d:c8:58:57:f1:6b:60:02:c3:8a:
69:c6:dd:44:92:a6:e4:28:fd:9d:78:cc:47:49:a4:
d1:5e:b6:b8:e1:a1:0c:63:23:37:52:2a:93:cb:14:
23:37:cc:d5:8d:90:39:07:63:3f:2e:0d:d8:b2:37:
a7:4c:e2:a3:8c:94:b1:06:bb:e7:0a:9e:df:25:0a:
53:2f:00:40:ba:ec:36:67:72:f8:08:a6:79:2e:0f:
10:a2:37:00:49:98:2c:a5:de:2d:e7:44:97:78:8d:
e2:d0:b4:ac:aa:d2:34:39:f6:a8:49:e4:6d:87:67:
61:4f:58:ab:9c:db:c7:73:10:c5:70:33:8c:ed:91:
65:53:8a:33:24:d7:f5:54:cd:53:da:06:29:da:bf:
da:a7:27:6f:6a:d9:25:74:8e:17:54:97:ef:71:e4:
e0:0f:55:77:c0:91:2d:ae:4a:61:63:52:af:46:18:
9e:19:bd:dd:68:1e:a3:aa:62:06:f3:43:ce:08:94:
cb:e8:20:fa:44:2f:81:cb:a3:8b:a6:a6:e4:6a:9e:
96:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DA:B7:A0:9E:CB:C1:E3:0D:BB:BB:C7:9E:F9:0D:F7:34:AE:13:DB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ldq3oJ7LweMNu7vHnvkN9zSuE9s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.176.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:92:29:cf:f5:67:64:1e:15:e3:08:02:d2:72:43:c3:03:d5:
59:5e:59:9a:72:69:82:52:95:d4:c4:d4:17:94:6c:60:da:06:
4d:5c:cd:ad:43:7c:9c:a2:66:f6:ac:65:2a:bf:d8:43:94:ca:
32:1f:fc:3a:6c:d9:cd:eb:37:f6:52:c2:15:f7:03:7e:42:d4:
ff:a3:10:ee:45:50:fc:72:c3:96:54:94:c1:f4:53:32:f9:16:
82:5c:a7:98:ba:27:67:7e:5e:ad:b4:10:d9:3a:81:12:7d:e7:
6f:bf:08:b8:ff:b2:4f:77:6a:bc:cb:ed:c0:51:5f:e9:03:21:
57:5c:35:c8:07:cf:41:66:f5:60:76:25:91:fb:d1:98:f6:6b:
b9:ef:2c:3c:38:3f:62:a5:fd:40:ff:56:88:a6:69:39:18:ed:
72:d3:27:df:44:82:ea:93:e5:d6:ad:69:74:f3:49:a7:09:1c:
01:dd:91:29:ae:92:32:ca:b4:5d:ad:12:09:d7:a0:c5:65:05:
80:4f:14:12:25:b1:a5:7d:0d:64:17:e2:55:7c:6f:d2:19:17:
07:51:66:82:d9:ad:83:3b:af:ff:6f:00:14:48:ab:f1:f9:00:
04:04:e8:b6:2f:ad:13:e4:ef:a0:bd:44:bd:3b:6b:f1:6b:5e:
96:09:59:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org