Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/liHsBMr0MiD7KCDtVpOmOtLFN4w.roa
File: liHsBMr0MiD7KCDtVpOmOtLFN4w.roa (raw, json)
Hash identifier: WrIt1JLEW0Lq8U3CH2GLV+Rnc57zhMrd36eLa+XIj24=
Subject key identifier: 96:21:EC:04:CA:F4:32:20:FB:28:20:ED:56:93:A6:3A:D2:C5:37:8C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0AC4
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/liHsBMr0MiD7KCDtVpOmOtLFN4w.roa
Signing time: Sun 07 Feb 2021 11:40:22 +0000
ROA not before: Sun 07 Feb 2021 11:40:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17213
IP address blocks: 60.198.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2756 (0xac4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:40:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9621EC04CAF43220FB2820ED5693A63AD2C5378C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2a:3d:56:2c:bb:7c:b9:2a:ad:a2:5f:4a:74:
a6:bd:91:dc:77:27:eb:56:e8:99:d6:d5:65:41:f8:
48:a1:c3:65:55:5e:d1:65:63:c8:f4:79:d5:ef:5f:
65:2b:9e:4b:94:8b:d3:d6:63:58:32:d1:86:76:52:
f7:95:ea:04:29:ff:59:da:15:1f:23:45:5c:b8:34:
b7:39:7b:72:e9:70:61:b5:47:e2:fe:ab:05:16:f0:
18:5b:c4:44:68:dc:7a:93:9a:09:11:67:78:28:24:
fb:25:5f:f4:27:68:f6:dd:f6:44:5c:f0:e1:2f:d1:
be:26:9d:b8:41:18:ba:d5:8e:b1:bb:b1:4b:58:45:
b8:26:05:53:26:bc:58:2c:d5:2a:d2:7b:a9:cc:a7:
51:ab:86:e5:f1:ef:d3:b9:00:c0:42:a1:a8:2b:d3:
8d:7c:d3:a8:7b:98:4f:12:06:75:0a:26:72:6a:eb:
31:a5:3c:6c:df:a0:f1:f8:9a:d5:3b:36:26:e8:d7:
d7:c8:a5:d1:6d:83:9c:76:cc:51:48:85:51:86:f5:
b1:0e:70:ad:dd:73:6c:1f:4f:4a:7f:e4:8b:6e:68:
c3:16:13:55:0a:08:c1:a2:f4:1c:34:3f:81:31:2c:
7e:38:52:ce:0f:aa:a1:cd:f8:89:2f:c9:3a:2b:be:
aa:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:21:EC:04:CA:F4:32:20:FB:28:20:ED:56:93:A6:3A:D2:C5:37:8C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/liHsBMr0MiD7KCDtVpOmOtLFN4w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.152.0/24
Signature Algorithm: sha256WithRSAEncryption
41:ab:f3:83:61:0b:56:f6:53:41:a9:96:16:24:24:0c:2d:1d:
60:86:3b:4b:e5:a2:59:d7:a3:c8:cd:b3:75:4b:30:2b:28:de:
0e:8f:a3:b6:a7:0b:a3:82:d8:ea:25:93:2d:2b:18:d5:22:da:
10:0b:8a:21:c1:3e:76:72:be:f7:64:aa:98:49:02:97:02:08:
5d:40:e2:09:35:45:1c:7a:58:a5:fd:2a:33:33:11:bd:f1:e9:
be:f7:82:e8:52:1a:15:59:48:59:43:12:ae:5c:05:c8:b4:b5:
28:e5:a8:e4:03:4c:6d:af:79:4d:4b:05:31:c5:27:f2:fc:7e:
29:4c:60:69:c4:79:41:47:e0:eb:27:45:de:50:fb:a7:4a:95:
df:a3:4d:89:ca:b2:25:22:44:d8:78:9e:39:e1:10:72:f9:1e:
e7:0c:67:52:be:66:d8:20:32:14:de:7b:64:43:1c:b7:9f:18:
a4:3c:22:b1:62:ed:3d:ea:a0:5e:57:84:7d:b3:0c:01:4c:1f:
b5:eb:1d:a0:da:df:cd:05:dc:2a:7f:e4:d1:a8:5b:2a:0d:72:
c6:8e:de:0f:c9:62:9e:29:86:02:55:ac:55:a8:28:ee:aa:c5:
98:51:d5:1e:b7:df:47:0b:4b:6d:4e:ce:4b:46:5b:5a:a9:14:
89:2c:4e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org