Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/v56CsyaPsRop494msfuVtxUdDoM.roa
File: v56CsyaPsRop494msfuVtxUdDoM.roa (raw, json)
Hash identifier: jaY8Q8PxzYe4ZIjGqnPHxGCtkY4VJeT040071RRj3Tw=
Subject key identifier: BF:9E:82:B3:26:8F:B1:1A:29:E3:DE:26:B1:FB:95:B7:15:1D:0E:83
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0C7D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/v56CsyaPsRop494msfuVtxUdDoM.roa
Signing time: Wed 29 Sep 2021 02:49:54 +0000
ROA not before: Wed 29 Sep 2021 02:49:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17213
IP address blocks: 60.198.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3197 (0xc7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:49:54 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BF9E82B3268FB11A29E3DE26B1FB95B7151D0E83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b5:71:7e:56:ee:c9:84:80:5e:d1:fb:07:f6:
ed:70:eb:5f:d4:3e:40:bd:f3:e6:1b:e3:a4:c0:fe:
b6:51:68:49:6a:3f:2e:9b:a0:27:f7:da:3d:f8:6a:
ad:19:c7:53:fd:be:2a:26:ac:eb:db:c8:a5:e8:0a:
0c:d7:ac:bd:fe:5b:c1:45:ab:44:cc:59:55:bf:74:
3e:12:a3:f1:19:d7:cf:04:ad:30:77:d0:7b:cb:7f:
3c:dd:88:20:33:20:21:12:46:be:17:dd:02:84:14:
b3:39:de:0a:18:5b:d6:45:8d:f1:f5:7a:9b:98:53:
36:88:df:c5:9c:06:be:ae:4c:25:b4:68:b4:7c:88:
7f:c8:b2:02:31:c1:81:66:3c:b4:1c:5e:96:b7:33:
3e:ee:06:6c:1e:23:4e:f7:eb:14:df:e6:22:a3:6c:
a6:f8:f4:a5:fd:13:34:e8:0b:a5:48:02:61:b3:16:
ae:07:7e:22:40:bc:92:c4:bf:73:05:ee:87:c0:f9:
67:c4:e0:9c:bc:21:f4:84:7a:51:3a:84:09:00:0a:
13:40:48:c4:51:5d:8c:d7:f9:20:b2:6d:33:e5:95:
be:36:4e:45:98:25:46:62:b3:41:b2:16:34:6d:0a:
9c:f7:1f:fe:86:e4:0d:80:63:87:9b:3e:66:69:ce:
b3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9E:82:B3:26:8F:B1:1A:29:E3:DE:26:B1:FB:95:B7:15:1D:0E:83
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/v56CsyaPsRop494msfuVtxUdDoM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.152.0/24
Signature Algorithm: sha256WithRSAEncryption
81:1c:ad:a6:2a:eb:d6:1b:04:42:97:92:4a:94:0a:c4:21:19:
5e:db:2b:88:7c:6f:ce:ad:07:e7:f8:ee:f4:e5:e0:62:d5:e8:
9c:e9:ba:44:c9:f2:15:18:bb:fb:fe:b1:e9:be:07:23:b4:a0:
8e:31:80:2d:17:86:66:8f:28:ec:59:ed:c0:64:6e:18:91:f6:
85:3b:ca:6c:b7:df:21:b9:dd:7c:fe:88:e7:5f:a3:5d:e0:52:
95:c6:41:26:2c:f6:5a:3e:91:ad:03:5a:93:c6:fe:de:95:88:
e8:1d:a1:0a:df:2f:4c:24:02:5d:31:7d:16:b3:f7:39:15:35:
c2:e1:cb:73:24:1a:61:15:d1:83:be:19:61:e6:ac:5d:da:4c:
b1:e9:a8:cf:14:be:1e:f0:8f:69:11:ac:41:03:69:3c:c5:6d:
d0:32:eb:2f:0d:44:89:4c:85:3d:e0:0a:35:1d:f1:7b:57:21:
65:84:be:ff:cc:71:1f:6a:46:c1:b6:ed:63:09:6e:31:94:87:
e2:b5:ef:ad:16:d7:f0:4f:f0:23:bb:80:83:50:aa:80:b7:b0:
b8:6e:99:10:75:8e:31:cc:82:42:e2:da:05:93:00:fc:b0:d7:
cb:22:c5:09:f6:76:23:2b:69:13:0c:6e:3c:19:bc:de:5b:f6:
f2:73:8e:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:03 2023 by rpki-client on console-ams.rpki-client.org