Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uY7MA3oipoY50ZlXH4vcJzCkGc0.roa
File: uY7MA3oipoY50ZlXH4vcJzCkGc0.roa (raw, json)
Hash identifier: 3z/BbJvjPETRYr05WAPAu6eOqnyRTcmUughSpksn/u0=
Subject key identifier: B9:8E:CC:03:7A:22:A6:86:39:D1:99:57:1F:8B:DC:27:30:A4:19:CD
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uY7MA3oipoY50ZlXH4vcJzCkGc0.roa
Signing time: Wed 29 Sep 2021 02:50:16 +0000
ROA not before: Wed 29 Sep 2021 02:50:16 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 60.199.168.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3273 (0xcc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:16 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B98ECC037A22A68639D199571F8BDC2730A419CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:66:44:94:27:08:e1:a5:41:7a:1a:5b:80:9d:
d0:ce:d3:de:d1:96:ab:f5:b5:58:5b:71:57:99:91:
41:7a:11:d9:4d:a0:32:c8:12:1d:39:e1:2b:7f:6f:
29:6e:7f:83:33:b7:b5:73:1f:ba:5d:01:be:32:dc:
52:a4:bb:5e:21:d7:af:56:e6:90:6c:a6:73:1c:fe:
4c:80:81:e2:89:23:f9:97:f4:c7:5e:f8:8e:64:3f:
a5:6a:16:dc:03:2d:23:80:fc:68:a4:0b:c7:a7:94:
86:fe:20:4e:e0:b1:bd:de:44:14:f3:e4:68:78:c5:
ea:91:d8:54:84:e0:b5:d5:ae:13:86:ee:da:ef:89:
78:88:65:a3:0b:d7:cf:dc:37:f2:77:a4:70:50:89:
44:94:97:87:05:98:42:85:60:81:4e:e5:c5:ca:ec:
a6:43:4a:a3:a2:af:0e:57:4c:13:1d:c4:b4:c1:71:
30:be:34:98:f9:db:43:c7:35:ba:16:ba:97:c0:b2:
bf:d4:70:b1:81:c1:4b:92:00:91:97:5a:22:3a:ea:
bc:87:96:41:6a:82:7a:65:c0:31:ad:fc:e0:50:2d:
54:23:58:72:cd:05:66:f9:f1:0f:32:40:b9:c5:e3:
32:74:e8:aa:38:6c:ad:af:11:b8:7d:e8:c0:74:63:
18:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:8E:CC:03:7A:22:A6:86:39:D1:99:57:1F:8B:DC:27:30:A4:19:CD
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/uY7MA3oipoY50ZlXH4vcJzCkGc0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.168.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:23:bf:13:e0:c9:3c:55:b3:76:ab:bf:a1:90:fc:46:59:eb:
c8:a4:c9:ac:82:a6:49:bf:be:72:98:5c:06:75:74:fc:db:a3:
6b:d5:09:a3:b6:97:66:2c:8a:9c:80:47:4a:dd:53:c2:13:59:
0d:ad:d3:4d:f0:ef:bc:12:bd:3e:af:97:16:6a:b2:07:ec:bd:
6c:e0:02:2c:02:94:d5:c8:a7:c1:a2:87:5d:6f:6d:8b:72:07:
48:5f:20:56:be:0f:85:44:ce:eb:63:1b:17:73:1b:ec:b4:ca:
5b:24:78:87:8b:0c:ec:52:bd:27:40:73:ae:0c:15:72:84:48:
6a:4b:40:5c:71:04:76:1a:d3:80:f3:b3:6f:26:68:5a:24:3e:
f7:7f:99:ae:b4:1c:07:5a:ab:c8:6c:cd:85:a2:fd:cd:f4:b6:
70:a2:d4:db:c4:f8:91:37:86:0f:da:7f:46:89:6d:28:0b:81:
a5:ea:f9:2c:3b:fd:d6:80:32:c9:49:87:03:fb:8f:ff:83:86:
da:87:d8:dc:4e:58:1e:1d:39:3c:a5:3e:7d:16:04:11:b3:0b:
6d:83:c8:d1:cf:9c:a4:7e:8f:d8:1a:a3:67:69:f0:61:14:69:
61:e1:54:0c:48:0f:88:50:53:22:fe:48:f1:ae:6f:5c:bc:a3:
44:62:df:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org