Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/2NRT6gYGjulkayIH9a6CeyCJUkg.roa
File: 2NRT6gYGjulkayIH9a6CeyCJUkg.roa (raw, json)
Hash identifier: GxG0Ef72ofgXMaNqM2FamEgurEUFEjrJw63E0vHHsaY=
Subject key identifier: D8:D4:53:EA:06:06:8E:E9:64:6B:22:07:F5:AE:82:7B:20:89:52:48
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 09D6
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/2NRT6gYGjulkayIH9a6CeyCJUkg.roa
Signing time: Thu 10 Mar 2022 04:33:44 +0000
ROA not before: Thu 10 Mar 2022 04:33:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 138915
IP address blocks: 43.224.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2518 (0x9d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Mar 10 04:33:44 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D8D453EA06068EE9646B2207F5AE827B20895248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:34:e7:3e:8e:b4:fa:3d:64:30:26:35:ce:82:
a8:d6:75:76:e5:ce:15:8b:3e:7c:a6:c0:70:85:b5:
d9:66:bc:65:a6:0a:88:ea:e7:83:57:ff:7d:23:7b:
c4:0f:65:0e:b3:f5:42:68:ab:f0:63:da:c4:b4:17:
db:d1:e6:26:31:9c:cf:ac:fc:df:a0:0e:7c:91:e7:
f1:56:99:67:3f:b7:16:95:c6:ca:c4:dc:75:b6:b3:
e4:e4:de:89:d4:e9:f7:d1:e8:00:01:11:b4:ea:a1:
e7:65:8e:90:f9:fc:2d:41:5d:38:c3:64:25:99:7e:
64:e0:56:76:82:27:9d:89:f0:c8:2d:e3:77:f4:c7:
02:bd:f8:9d:c3:c7:fe:7b:6c:e8:01:78:41:31:4e:
2f:28:43:4f:8f:48:89:49:65:45:14:ae:6b:1d:91:
18:41:de:0a:c9:fb:d7:75:92:61:97:83:2f:f1:e4:
9a:f1:06:c4:dc:9a:b7:a6:25:9b:14:22:97:44:b6:
2d:b4:61:a9:92:af:5e:94:81:d5:e9:7f:b5:a5:b3:
f5:12:64:63:8a:dc:36:84:9a:46:f4:39:2b:a1:b0:
cd:f8:3a:d3:92:f3:2d:31:35:e3:7c:2c:f8:25:a6:
38:fe:6f:f8:9d:76:3b:ee:17:57:23:7d:17:b8:04:
d4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D4:53:EA:06:06:8E:E9:64:6B:22:07:F5:AE:82:7B:20:89:52:48
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/2NRT6gYGjulkayIH9a6CeyCJUkg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.20.0/24
Signature Algorithm: sha256WithRSAEncryption
51:e3:69:07:a7:fd:90:86:ad:fb:80:a9:b3:75:b4:84:14:1a:
f5:b0:31:3f:8c:6f:a2:eb:f4:6f:2e:ed:ea:5a:fb:0d:bf:f2:
33:ac:26:fe:1b:f3:32:53:09:3f:ca:f0:81:cb:bc:d7:ad:49:
e6:ed:ea:9d:23:7f:7f:b0:40:26:76:5a:ce:d4:ba:6f:55:1a:
95:05:d8:9c:04:0b:3c:02:01:52:f8:74:14:f3:62:23:e5:de:
b2:af:60:04:97:9c:a6:8e:70:31:92:14:7c:55:91:79:c2:35:
4f:db:78:54:69:a6:dc:09:a5:01:39:58:26:a5:66:bb:9e:7b:
cc:6a:40:9d:2b:b3:36:4a:0a:b6:a9:7b:51:b8:48:48:bf:7f:
be:d9:2b:2d:f3:1d:85:2c:a4:3a:3a:13:20:b8:cf:ac:97:a6:
82:8b:fc:4f:f2:8d:6d:c0:66:5d:79:6c:f3:8e:80:29:90:67:
84:11:88:ea:a2:73:d3:12:ae:30:d8:9e:ac:b1:82:eb:4b:2e:
dc:07:07:94:95:9d:ae:4d:90:1c:e5:9d:fd:c5:72:5e:4a:60:
e7:12:98:dc:75:f7:01:05:6d:ab:a7:43:33:8b:e4:63:66:18:
3f:82:55:43:7c:5f:51:4a:c7:12:3b:1c:ec:84:e0:4e:83:a1:
33:b6:94:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:00 2023 by rpki-client on console-fra.rpki-client.org