Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/-vM3IBCZndGeYv5j1HJN49idk3M.roa
File: -vM3IBCZndGeYv5j1HJN49idk3M.roa (raw, json)
Hash identifier: ++SI3kp0JyXFBROWWP7W7R3XWbY54xssBE5ARDmMrxY=
Subject key identifier: FA:F3:37:20:10:99:9D:D1:9E:62:FE:63:D4:72:4D:E3:D8:9D:93:73
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0A55
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/-vM3IBCZndGeYv5j1HJN49idk3M.roa
Signing time: Thu 15 Sep 2022 02:40:47 +0000
ROA not before: Thu 15 Sep 2022 02:40:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 137263
IP address blocks: 43.224.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2645 (0xa55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Sep 15 02:40:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FAF3372010999DD19E62FE63D4724DE3D89D9373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:da:6b:3e:b1:dd:65:0c:73:94:d5:65:34:10:
48:4d:bf:90:49:c5:9f:f1:d8:51:bb:4b:8f:49:54:
09:83:ea:0d:40:89:cd:b9:4c:a6:60:1c:a4:53:8e:
b5:b8:de:ba:cf:7c:2e:ea:b1:f9:53:4b:7b:6e:1c:
1f:81:f5:61:2b:55:1b:e8:35:d7:31:9e:e7:6a:61:
7b:58:91:b5:88:ea:08:c3:64:c1:5c:6d:d9:1b:d3:
91:ee:91:89:72:04:78:f4:62:f8:61:fa:25:3d:d8:
d7:f3:8f:bb:52:21:0d:6a:f0:cd:46:df:04:f9:3d:
e6:f8:15:a3:0b:4d:2d:9d:6b:96:c0:ec:70:3a:55:
62:51:77:80:f9:2d:4b:a5:86:8b:c1:f7:3b:aa:0d:
63:2e:94:02:b8:f0:b6:0d:38:fe:83:d4:bf:cb:ba:
70:76:eb:09:88:b1:e4:b6:74:85:24:92:cf:c3:08:
5e:ed:72:9d:ae:6a:e0:31:4c:a2:05:24:a1:60:08:
ea:2b:03:4b:82:27:43:7f:b6:11:05:d3:97:2d:01:
34:97:ed:02:49:58:ec:14:5b:e4:31:89:9c:f7:44:
97:53:e2:6c:06:e8:c7:7b:22:39:d5:8b:53:d0:d0:
51:27:d4:25:54:46:9e:6a:a6:6b:00:8c:82:5b:b4:
3c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F3:37:20:10:99:9D:D1:9E:62:FE:63:D4:72:4D:E3:D8:9D:93:73
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/-vM3IBCZndGeYv5j1HJN49idk3M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.22.0/24
Signature Algorithm: sha256WithRSAEncryption
17:77:51:5d:80:89:78:6b:9c:d7:4a:a9:e3:cc:e5:08:e5:33:
e1:88:08:b7:e4:3d:d0:3f:4d:62:03:3e:7d:51:14:1a:af:ad:
e7:75:dd:a6:9e:e1:4f:e0:8e:a6:8b:5a:1b:a7:05:2b:39:8d:
0e:12:72:c5:59:5f:64:ea:62:42:70:69:c3:30:62:39:d8:d7:
d4:60:bc:68:ed:06:7a:58:3a:89:06:1e:29:15:ed:7c:26:b6:
56:95:86:e7:8d:0d:3a:7e:b8:a9:e1:ad:e4:32:87:6f:a7:81:
59:4e:a0:f7:84:9f:9c:99:92:fa:f5:75:b3:10:30:9a:15:98:
f3:c1:a8:6a:c3:b8:38:3f:24:12:aa:84:37:a7:39:08:bb:dd:
d1:0d:dc:26:07:ed:77:3d:7e:7a:dd:db:a9:e7:b5:f7:7c:5c:
e4:df:4f:73:29:74:16:8a:c6:ee:2f:6d:4b:b8:a1:e9:ec:a5:
f2:b1:e4:6c:a6:56:20:ef:3e:08:8d:31:33:ac:1b:73:48:9c:
b1:63:2c:e2:d2:1e:2a:b6:a7:e1:97:09:72:3d:d6:e1:6a:1b:
6b:34:62:22:e9:87:cc:1e:1f:6c:50:13:7f:b8:30:fe:ae:6c:
bd:be:46:64:68:ac:76:05:0a:c4:f5:67:f2:05:55:f6:54:db:
f9:db:83:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org