Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/I9vkF3gg1EwwG9I53j3Tmb_WlO4.roa
File: I9vkF3gg1EwwG9I53j3Tmb_WlO4.roa (raw, json)
Hash identifier: wWIsGMMeChCN4l2ElbIUrOqEhzysIM+PQQPmaXwh1L8=
Subject key identifier: 23:DB:E4:17:78:20:D4:4C:30:1B:D2:39:DE:3D:D3:99:BF:D6:94:EE
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0D82
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/I9vkF3gg1EwwG9I53j3Tmb_WlO4.roa
Signing time: Mon 20 Jun 2022 08:22:52 +0000
ROA not before: Mon 20 Jun 2022 08:22:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24165
IP address blocks: 203.77.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3458 (0xd82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Jun 20 08:22:52 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=23DBE4177820D44C301BD239DE3DD399BFD694EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9b:bf:e1:73:b7:f9:37:d6:17:54:be:fa:2d:
ed:33:bf:73:c3:99:a1:68:f0:8d:4f:b5:31:96:b7:
c9:1c:6f:e8:74:25:f6:14:0d:aa:03:b6:5b:7e:56:
63:fc:48:97:86:a2:5f:bb:72:b5:2f:4d:66:d0:db:
20:8b:92:5d:15:6a:fc:a2:05:c7:9e:b7:bd:c5:c1:
91:63:d6:06:c1:cf:aa:a9:f9:dd:4b:6d:51:79:ba:
e6:9f:f9:64:14:ad:40:bf:27:cc:7c:6e:a6:44:a5:
37:9c:d7:9f:20:bc:83:cb:7b:3b:e3:10:47:f5:62:
28:81:13:4d:22:6b:4b:fd:b3:03:2b:0f:80:80:da:
59:d8:2b:78:68:42:22:5c:69:de:67:5c:51:83:85:
d3:82:3a:9b:f8:72:6c:1d:fb:96:87:0a:96:b4:2e:
e1:f9:41:72:1d:e0:18:34:7f:7a:a3:68:36:50:a1:
e6:f4:b4:28:1c:3e:17:ac:d6:28:77:a1:0b:b1:33:
bb:82:4e:39:a9:23:95:94:96:68:83:7c:a8:d0:ef:
80:41:8d:51:de:a1:50:88:03:9f:84:a4:c1:4b:35:
23:92:2d:ea:b5:0d:16:99:2a:04:d2:89:34:7b:c5:
91:44:c3:c9:46:f7:31:3a:a5:fd:16:02:ea:1d:c5:
29:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:DB:E4:17:78:20:D4:4C:30:1B:D2:39:DE:3D:D3:99:BF:D6:94:EE
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/I9vkF3gg1EwwG9I53j3Tmb_WlO4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.40.0/22
Signature Algorithm: sha256WithRSAEncryption
28:0d:af:23:df:36:bc:a4:54:0b:6c:75:1e:53:4c:0f:09:84:
a3:5b:6d:56:01:b0:42:32:62:87:91:ed:ab:9e:9e:4a:c6:e9:
3b:7d:7b:a4:63:f9:61:45:34:ea:72:d2:08:f2:2c:d4:b0:98:
2b:84:ab:c1:ba:2c:0c:37:32:94:83:21:0d:79:db:15:2d:e5:
37:8f:42:0f:c3:a7:6f:ff:90:cd:80:57:6f:9a:fb:b4:8d:2e:
69:56:ae:f1:bc:12:59:ab:5c:f4:e2:e6:23:5c:c5:67:a7:08:
4a:1e:1f:26:6e:4e:8d:05:4f:62:cf:ff:73:f5:8d:3c:0d:58:
75:f2:fe:09:f2:26:87:0b:de:c0:b6:b4:21:f2:e0:fd:26:22:
9d:26:c8:84:47:f2:1a:9d:df:39:e0:a9:d7:69:15:9b:03:bc:
89:02:e6:97:79:00:40:21:94:17:82:98:d9:e2:57:66:c9:1b:
24:4a:ad:ef:9d:9a:19:e2:70:b3:04:a5:ef:8b:9f:a1:35:be:
e7:15:59:3e:41:f7:00:6a:b7:02:12:ff:67:88:fb:de:d8:e9:
48:cb:db:95:34:3e:50:d0:4b:73:b3:8e:c9:01:6a:83:1a:f6:
7d:a4:f6:9c:11:4d:54:3c:7f:36:a1:7e:7a:7b:52:50:b4:ab:
28:2e:cf:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:15 2023 by rpki-client on console-fra.rpki-client.org