Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DEDBKLMyzq0zaTGcWF9jfcmMD0I.roa
File: DEDBKLMyzq0zaTGcWF9jfcmMD0I.roa (raw, json)
Hash identifier: Ak63He4aaemG0lYozBdA1RrOpYpCYBqmyrlP7Jah6fs=
Subject key identifier: 0C:40:C1:28:B3:32:CE:AD:33:69:31:9C:58:5F:63:7D:C9:8C:0F:42
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DEDBKLMyzq0zaTGcWF9jfcmMD0I.roa
Signing time: Thu 15 Sep 2022 02:47:31 +0000
ROA not before: Thu 15 Sep 2022 02:47:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 43.240.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0C40C128B332CEAD3369319C585F637DC98C0F42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:a2:b4:ff:dd:bd:93:93:54:cb:ea:3a:b4:05:
b4:61:74:7a:85:f4:60:33:cf:5e:c7:5c:43:3c:ba:
d5:93:82:95:3c:31:36:2b:fe:44:ab:cd:b1:1e:58:
44:fb:5c:fd:b6:c2:15:0a:d4:d5:7b:78:60:4e:a4:
6e:21:7c:6d:af:f1:45:e3:2f:75:39:26:41:d8:84:
27:f4:f6:8c:15:be:f9:53:5f:99:6e:bf:60:0d:f5:
f0:c5:fe:2b:79:aa:44:37:af:59:a2:cc:64:8c:7e:
c4:8e:fe:33:09:27:51:3c:0b:6c:9e:85:c9:0c:16:
1e:19:ae:14:57:4d:ca:7e:ac:fd:b7:6b:48:60:5f:
40:83:5d:d1:99:d9:61:8f:b0:2d:6c:b1:b8:78:5c:
88:3b:d9:b9:84:c1:3c:be:59:61:63:76:e4:e6:6f:
8a:9b:55:6e:72:b2:89:af:b4:96:db:f7:ba:df:11:
57:01:57:a3:3a:5d:27:5f:6a:4a:6b:b6:bc:17:5c:
24:9b:a7:67:7b:14:4d:98:df:98:07:d8:3c:59:31:
14:ca:41:b1:37:ba:12:93:46:84:40:b9:62:79:96:
71:28:f7:8d:e8:e1:ac:44:75:df:44:d9:81:fe:00:
8a:8d:3a:bc:68:7b:b9:53:36:b3:e6:fa:f2:c8:af:
22:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:40:C1:28:B3:32:CE:AD:33:69:31:9C:58:5F:63:7D:C9:8C:0F:42
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/DEDBKLMyzq0zaTGcWF9jfcmMD0I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.240.24.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:44:8a:0e:6f:05:cf:a2:b5:df:0c:1d:7b:b9:66:13:4d:83:
78:94:a7:19:2b:93:c6:a4:a2:79:cc:89:99:59:a8:69:cb:47:
78:50:9f:55:ea:0c:1b:42:1c:4c:06:ff:6e:0c:6d:d5:76:37:
79:e5:7c:c7:27:fb:da:69:38:5d:2b:1e:b5:1b:bf:93:35:2d:
a4:d1:09:6e:10:17:01:dd:f8:8a:e9:e5:a6:15:61:9c:d6:22:
3f:9b:2a:3f:27:fe:39:fe:2d:9a:2f:d0:2e:61:d7:b8:24:26:
aa:41:60:35:4c:2e:53:c8:33:f6:91:78:66:37:c9:06:a0:e4:
78:1a:91:e9:27:3f:07:bf:6e:95:46:cc:f0:50:d5:aa:a9:37:
2e:d2:e4:9f:a7:87:38:f9:1f:da:d6:7b:1f:b2:2a:d1:6d:37:
13:71:60:e6:17:4b:21:f4:83:53:31:ac:64:f3:c9:ce:d1:e1:
f9:d0:91:40:7d:bd:4e:19:9d:15:c8:2e:af:7c:d2:05:3a:12:
bb:10:62:02:94:6b:88:7c:2f:1d:7c:26:40:5a:d9:45:a3:a8:
b5:4e:3b:fd:d1:ad:bd:70:70:80:29:7a:0d:ea:2a:dc:0b:9d:
e8:32:aa:97:3c:5c:ef:4b:1e:10:d9:bf:9a:80:51:6e:3b:58:
0a:0b:49:f1
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ3MzFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDBDNDBDMTI4QjMzMkNF
QUQzMzY5MzE5QzU4NUY2MzdEQzk4QzBGNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDqorT/3b2Tk1TL6jq0BbRhdHqF9GAzz17HXEM8utWTgpU8MTYr
/kSrzbEeWET7XP22whUK1NV7eGBOpG4hfG2v8UXjL3U5JkHYhCf09owVvvlTX5lu
v2AN9fDF/it5qkQ3r1mizGSMfsSO/jMJJ1E8C2yehckMFh4ZrhRXTcp+rP23a0hg
X0CDXdGZ2WGPsC1ssbh4XIg72bmEwTy+WWFjduTmb4qbVW5ysomvtJbb97rfEVcB
V6M6XSdfakprtrwXXCSbp2d7FE2Y35gH2DxZMRTKQbE3uhKTRoRAuWJ5lnEo943o
4axEdd9E2YH+AIqNOrxoe7lTNrPm+vLIryL5AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUDEDBKLMyzq0zaTGcWF9jfcmMD0IwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvREVEQktMTXl6cTB6YVRH
Y1dGOWpmY21NRDBJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AivwGDANBgkqhkiG9w0BAQsFAAOCAQEAfkSKDm8Fz6K13wwde7lmE02DeJSnGSuT
xqSiecyJmVmoactHeFCfVeoMG0IcTAb/bgxt1XY3eeV8xyf72mk4XSsetRu/kzUt
pNEJbhAXAd34iunlphVhnNYiP5sqPyf+Of4tmi/QLmHXuCQmqkFgNUwuU8gz9pF4
ZjfJBqDkeBqR6Sc/B79ulUbM8FDVqqk3LtLkn6eHOPkf2tZ7H7Iq0W03E3Fg5hdL
IfSDUzGsZPPJztHh+dCRQH29ThmdFcgur3zSBToSuxBiApRriHwvHXwmQFrZRaOo
tU47/dGtvXBwgCl6Deoq3Aud6DKqlzxc70seENm/moBRbjtYCgtJ8Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org