Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qQQIdkFmZJIRA0u1KZpipkdxJ6g.roa
File: qQQIdkFmZJIRA0u1KZpipkdxJ6g.roa (raw, json)
Hash identifier: MSw9TWQ5fMjHhSvvQ3rANeujhNwW9oBslhbpVg2g/mU=
Subject key identifier: A9:04:08:76:41:66:64:92:11:03:4B:B5:29:9A:62:A6:47:71:27:A8
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0827
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qQQIdkFmZJIRA0u1KZpipkdxJ6g.roa
Signing time: Tue 29 Sep 2020 09:57:49 +0000
ROA not before: Tue 29 Sep 2020 09:57:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131611
IP address blocks: 60.198.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2087 (0x827)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:49 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A90408764166649211034BB5299A62A6477127A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ce:8c:d7:f3:62:f8:e4:d9:83:28:39:81:66:
f7:d7:71:69:1d:78:69:de:65:2e:ee:6e:41:6a:a7:
fa:55:2e:35:a8:e9:d4:11:5c:52:b0:f0:8b:33:66:
3b:66:d9:65:f8:5c:0d:e0:ae:75:5b:b5:f2:7c:bb:
c0:1d:b5:e8:b4:05:79:6f:c2:fb:33:e0:7b:d4:71:
67:e3:c7:ea:f0:26:b8:a3:8d:b0:bf:24:12:9f:85:
c0:c7:04:da:13:fc:5d:4f:d3:78:70:63:3d:cb:05:
84:6e:47:0c:84:07:ba:d2:b5:0c:48:69:c7:b4:e0:
5c:06:25:54:56:89:38:1d:3b:b5:5f:23:04:d7:ee:
64:97:1c:94:2c:2a:2e:5e:c1:90:7b:07:40:12:fd:
e7:9e:9b:b6:d2:80:a2:6b:c9:76:18:89:9d:cf:35:
f0:8d:8b:60:70:05:fe:52:57:be:27:f5:f4:fe:ce:
f5:5f:fb:f4:9f:fd:2d:14:78:62:ba:9f:1c:b9:8b:
5d:dd:ee:4f:33:01:73:58:2a:c3:f3:c3:14:2b:9a:
27:c6:0e:ab:ac:6b:c2:61:1a:3d:79:e2:20:97:2f:
38:65:97:4a:5a:6e:7f:82:eb:b4:84:03:7c:b7:b0:
48:7f:73:61:e7:10:b3:df:fe:92:11:c5:65:ba:31:
14:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:04:08:76:41:66:64:92:11:03:4B:B5:29:9A:62:A6:47:71:27:A8
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qQQIdkFmZJIRA0u1KZpipkdxJ6g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.160.0/19
Signature Algorithm: sha256WithRSAEncryption
1e:90:28:ef:a4:cf:20:04:2a:50:e7:c6:d9:b8:b8:bd:7a:c4:
93:4b:13:a8:3f:09:4c:37:bd:55:c0:75:4f:36:13:b9:80:d3:
0e:f5:9a:7d:d5:79:11:ea:c3:a3:98:49:40:e5:ca:79:1e:8c:
55:68:31:42:fe:c8:16:e5:c7:e0:09:0c:ce:fd:0f:42:48:ef:
b9:38:79:aa:d6:69:28:ef:5b:2f:22:0b:df:09:9f:1c:8f:18:
40:a3:77:3a:cf:0a:0c:7b:83:e1:74:48:0f:f7:1d:a3:d4:38:
d0:67:69:ff:a4:74:a0:ad:44:5b:ca:7b:7c:48:9d:96:33:89:
d9:6c:1a:88:c1:78:d7:3a:85:de:ca:5f:c5:8c:c1:a6:e7:a9:
5f:1a:36:ae:6d:46:f9:a2:b6:02:13:d4:54:d7:74:7d:92:b3:
4e:67:75:16:e2:f5:76:d3:97:bd:ca:cc:aa:97:3a:b8:5a:d5:
ce:e4:58:af:47:0a:66:57:a4:4c:3e:12:c6:bd:8b:d5:e4:57:
ed:64:9d:20:77:ef:60:e1:92:f0:e5:e4:d1:2b:a2:b8:a3:f6:
c2:fa:05:d8:e6:9b:c0:c8:9a:2f:45:07:48:30:51:90:74:50:
9a:f1:71:e3:41:81:8e:24:48:37:ad:b0:a2:2d:a7:74:fe:cd:
33:1a:4c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org