Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/D_SnRZYN8huwV9nial4yw5yDNMM.roa
File: D_SnRZYN8huwV9nial4yw5yDNMM.roa (raw, json)
Hash identifier: demXxYX5K9O2YoNy/GtmP+JFmF1kS8+CFWehP/rbU5I=
Subject key identifier: 0F:F4:A7:45:96:0D:F2:1B:B0:57:D9:E2:6A:5E:32:C3:9C:83:34:C3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 07EA
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/D_SnRZYN8huwV9nial4yw5yDNMM.roa
Signing time: Tue 29 Sep 2020 09:57:32 +0000
ROA not before: Tue 29 Sep 2020 09:57:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 43.240.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2026 (0x7ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 09:57:32 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0FF4A745960DF21BB057D9E26A5E32C39C8334C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:30:2e:b4:84:01:7e:56:8f:62:b7:7f:02:cb:
9f:f6:5d:c6:0c:e5:ab:ba:9b:69:77:53:52:4a:a0:
0d:03:b2:77:dc:e9:4c:f1:25:8e:4f:96:bf:f1:ec:
0e:76:3e:01:7e:2c:33:b8:46:c2:3f:00:7f:01:79:
b5:9e:99:ab:44:12:c4:4e:f6:1a:e1:78:67:4e:f2:
9c:00:61:1c:dd:ed:1b:6e:8f:16:fc:96:49:9e:00:
20:53:a4:5f:3c:54:c3:7f:f1:ba:80:1e:71:83:9f:
10:06:0b:15:0f:4c:94:c4:20:23:02:0e:d0:17:92:
b1:50:72:17:e6:a7:3e:bc:57:00:0e:c3:59:4e:34:
27:1f:3e:ff:82:74:e6:30:50:10:30:62:e5:05:e2:
40:19:46:2d:37:cd:f4:c4:0d:ed:da:02:65:ec:54:
84:5c:d2:c3:56:07:16:52:4e:9b:1e:a6:8f:b3:a6:
98:19:86:9c:51:6b:29:cc:8a:bf:95:be:21:c9:43:
cb:8d:bf:d0:63:27:80:7b:fe:74:e8:f3:47:39:fc:
31:4b:4c:8f:a4:c6:33:7b:9b:69:ab:b2:8a:f0:ae:
07:45:71:15:72:f5:62:6e:70:0e:bc:58:83:89:55:
ec:ea:f8:87:25:95:9c:03:f9:4a:40:d1:cf:98:70:
ea:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F4:A7:45:96:0D:F2:1B:B0:57:D9:E2:6A:5E:32:C3:9C:83:34:C3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/D_SnRZYN8huwV9nial4yw5yDNMM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.240.24.0/22
Signature Algorithm: sha256WithRSAEncryption
59:99:88:c2:51:43:26:e7:85:5a:18:66:da:b2:2f:c6:3a:22:
74:71:47:7d:c5:70:f8:b6:ab:f8:67:44:5e:72:fb:ac:c3:9c:
5a:9b:d0:32:9e:95:6b:d1:ee:3b:26:38:a3:72:dd:ce:87:09:
34:64:dd:5f:ad:0e:dc:de:31:ba:f4:6d:bb:3e:4d:3d:b9:43:
27:1c:8a:0e:92:35:91:2e:83:b6:8e:05:de:36:75:21:93:7d:
33:70:3b:39:b1:9f:f0:39:05:6d:f8:b8:55:33:56:ef:4c:5a:
f0:78:96:aa:9c:7a:88:56:cf:5f:85:7e:0c:2c:9e:bf:f0:e5:
31:2d:5a:88:7e:5b:5c:d3:c9:e2:e5:6b:d9:1c:22:2b:0e:08:
55:d9:27:fc:34:4d:4e:33:f0:3b:93:03:9d:ad:a6:a0:b9:aa:
7d:00:ed:76:30:4c:b6:86:d2:c1:b4:28:3f:60:8f:c3:83:fb:
f4:19:b8:85:17:e0:fd:1f:18:c8:11:90:d2:c2:4d:f4:dc:e7:
39:e6:ca:51:2e:d5:15:73:1d:03:7f:04:1a:06:13:72:d1:fe:
8c:15:18:68:b6:10:4a:6d:9e:38:2d:7d:0a:ca:b1:0a:14:b9:
f8:df:5b:d4:12:71:0a:bc:29:27:75:c1:77:7a:c2:4e:4c:c6:
fc:48:97:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org