Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MhdgjSMpz0CWCQ0LHN--LTRYePs.roa
File: MhdgjSMpz0CWCQ0LHN--LTRYePs.roa (raw, json)
Hash identifier: NpqriFNgf7obB1QD0Cd1arHSilnqnfz2zHpnvpChhNI=
Subject key identifier: 32:17:60:8D:23:29:CF:40:96:09:0D:0B:1C:DF:BE:2D:34:58:78:FB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0A60
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MhdgjSMpz0CWCQ0LHN--LTRYePs.roa
Signing time: Sun 07 Feb 2021 11:36:06 +0000
ROA not before: Sun 07 Feb 2021 11:36:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 43.240.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2656 (0xa60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 7 11:36:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3217608D2329CF4096090D0B1CDFBE2D345878FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ca:ae:db:ca:2e:a3:26:aa:a3:3c:fa:f6:ff:
21:96:6d:36:8b:0f:08:73:ae:1b:71:e4:1b:c0:0c:
0a:01:d6:ab:c1:8c:cf:7d:28:39:cf:af:e6:ce:41:
31:ff:06:9a:ae:30:c0:03:82:2a:93:28:02:ca:4e:
cf:5d:a1:0e:90:9a:fe:98:48:20:af:fd:c6:24:e9:
b4:6f:1b:9f:42:f4:d7:5d:67:d9:70:28:6c:ce:2a:
58:a5:74:dc:cd:73:0c:ea:9b:f9:00:f5:0a:bd:9f:
49:46:3f:03:69:da:d6:49:55:a3:bb:37:d1:85:59:
98:e8:f4:79:9f:ba:70:e9:ff:85:4e:11:e9:22:ea:
74:c7:97:7d:58:34:21:39:df:84:f1:3b:6d:80:5c:
4b:56:6e:01:ac:1b:4b:31:11:d0:e0:84:3b:15:c5:
cb:69:8f:71:7c:d9:7c:a5:e3:39:b3:ca:73:aa:a2:
4c:d3:67:33:b7:f0:f7:9b:8a:a9:6c:45:7e:c4:af:
9b:16:72:dd:11:b4:cb:bc:f7:9b:a0:a5:b9:d5:c0:
14:b9:ab:c4:9d:7c:04:4d:43:89:ae:30:80:ee:8d:
c1:53:00:5c:07:2e:88:e8:82:e7:87:e5:1a:41:cf:
b8:72:fd:10:a6:e6:ab:a6:bd:e9:3a:32:0b:e4:d4:
15:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:17:60:8D:23:29:CF:40:96:09:0D:0B:1C:DF:BE:2D:34:58:78:FB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/MhdgjSMpz0CWCQ0LHN--LTRYePs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.240.24.0/22
Signature Algorithm: sha256WithRSAEncryption
30:ba:34:1e:61:ad:89:37:db:63:75:24:b3:96:24:49:fd:a2:
c7:ee:9b:ad:74:bf:de:cf:03:57:7d:73:4e:2b:28:57:20:0f:
7e:78:1a:2d:47:19:11:65:33:95:b1:7a:72:8b:69:5a:15:64:
cc:ca:96:c0:c9:c3:6d:36:da:6a:12:2c:8b:48:66:50:2d:b5:
c5:16:a4:da:d5:7e:a9:9a:40:b0:ed:c2:49:06:5f:49:23:61:
4e:47:a5:70:5c:14:7b:8e:86:72:0e:08:45:0d:9d:83:dc:88:
92:4d:72:f6:29:68:3f:16:f4:27:36:c8:04:9f:ad:1a:0c:a1:
a9:90:64:d7:65:ee:1e:60:c9:f6:35:f1:81:2b:11:90:48:6e:
34:70:30:e6:5c:6c:05:6d:58:26:bb:da:00:be:f8:b6:01:32:
bb:6f:8a:2a:53:9b:30:22:26:1c:59:0e:ce:05:35:42:9d:8b:
23:84:b7:0a:cc:dd:12:33:22:43:34:81:5d:78:24:84:66:fb:
ac:51:b4:c9:25:c3:7d:2e:28:7a:da:5f:07:6f:28:bf:74:54:
d6:16:88:60:de:98:0e:49:de:79:96:6a:c5:08:81:1d:37:9a:
d3:48:16:cb:c0:bc:6e:d3:08:68:44:45:84:05:88:e3:89:b7:
5f:99:0e:32
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICCmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMTAyMDcx
MTM2MDZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDMyMTc2MDhEMjMyOUNG
NDA5NjA5MEQwQjFDREZCRTJEMzQ1ODc4RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDByq7byi6jJqqjPPr2/yGWbTaLDwhzrhtx5BvADAoB1qvBjM99
KDnPr+bOQTH/BpquMMADgiqTKALKTs9doQ6Qmv6YSCCv/cYk6bRvG59C9NddZ9lw
KGzOKlildNzNcwzqm/kA9Qq9n0lGPwNp2tZJVaO7N9GFWZjo9HmfunDp/4VOEeki
6nTHl31YNCE534TxO22AXEtWbgGsG0sxEdDghDsVxctpj3F82Xyl4zmzynOqokzT
ZzO38PebiqlsRX7Er5sWct0RtMu895ugpbnVwBS5q8SdfARNQ4muMIDujcFTAFwH
LojogueH5RpBz7hy/RCm5qumvek6Mgvk1BUrAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUMhdgjSMpz0CWCQ0LHN++LTRYePswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvTWhkZ2pTTXB6MENXQ1Ew
TEhOLS1MVFJZZVBzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AivwGDANBgkqhkiG9w0BAQsFAAOCAQEAMLo0HmGtiTfbY3Uks5YkSf2ix+6brXS/
3s8DV31zTisoVyAPfngaLUcZEWUzlbF6cotpWhVkzMqWwMnDbTbaahIsi0hmUC21
xRak2tV+qZpAsO3CSQZfSSNhTkelcFwUe46Gcg4IRQ2dg9yIkk1y9iloPxb0JzbI
BJ+tGgyhqZBk12XuHmDJ9jXxgSsRkEhuNHAw5lxsBW1YJrvaAL74tgEyu2+KKlOb
MCImHFkOzgU1Qp2LI4S3CszdEjMiQzSBXXgkhGb7rFG0ySXDfS4oetpfB28ov3RU
1haIYN6YDkneeZZqxQiBHTea00gWy8C8btMIaERFhAWI44m3X5kOMg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org