Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/5WKzud1veoRfZ4vQ4eZ-LL6cgOc.roa
File: 5WKzud1veoRfZ4vQ4eZ-LL6cgOc.roa (raw, json)
Hash identifier: CAvJJOe/wHLpnbph3VW3itT/hprp6Pt720i4GPHirUk=
Subject key identifier: E5:62:B3:B9:DD:6F:7A:84:5F:67:8B:D0:E1:E6:7E:2C:BE:9C:80:E7
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0776
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/5WKzud1veoRfZ4vQ4eZ-LL6cgOc.roa
Signing time: Tue 29 Sep 2020 10:03:06 +0000
ROA not before: Tue 29 Sep 2020 10:03:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17416
IP address blocks: 2405:4d00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1910 (0x776)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Sep 29 10:03:06 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E562B3B9DD6F7A845F678BD0E1E67E2CBE9C80E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:db:e2:1a:85:f8:72:0c:94:4d:a4:d0:6c:73:
e4:31:6d:bf:0f:6a:81:93:8e:40:1f:1f:7a:65:a0:
55:3c:10:74:f8:9f:41:b6:5a:1c:b8:8e:27:ac:a3:
0a:ab:87:94:05:f5:0d:ff:7e:e3:12:57:83:8a:18:
73:34:4e:00:17:34:b2:25:0e:32:e1:46:14:d5:fa:
81:c2:a9:99:f2:d9:25:a7:d8:16:a6:e9:dd:23:73:
09:79:51:73:8f:60:a5:72:fa:df:bc:a1:99:bb:60:
44:59:01:24:89:57:30:13:d9:17:5d:b3:18:cd:ce:
bd:7a:ae:47:78:97:52:e5:65:36:f3:8a:cc:28:72:
33:9a:78:f4:13:23:ba:41:cd:09:37:75:85:06:24:
ec:94:af:69:a8:a6:d2:51:53:9f:fd:9e:ff:14:21:
58:7a:7c:91:45:ec:20:28:c6:94:ff:dd:2d:d0:c1:
af:c5:c5:6d:87:ef:42:d6:17:fd:31:ad:01:ad:fe:
62:d4:57:a6:b9:f2:51:f7:06:1f:a9:44:50:eb:dd:
dc:30:0c:49:08:a6:ae:a4:a0:ba:c7:bb:8f:45:f5:
2c:77:25:e6:bf:ee:b0:b4:c5:f2:6d:20:ff:3d:75:
d5:97:98:0e:3f:0c:c4:97:e3:7b:f0:39:5a:97:64:
d7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:62:B3:B9:DD:6F:7A:84:5F:67:8B:D0:E1:E6:7E:2C:BE:9C:80:E7
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/5WKzud1veoRfZ4vQ4eZ-LL6cgOc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:4d00::/32
Signature Algorithm: sha256WithRSAEncryption
4a:f8:47:96:fd:56:7d:3c:c8:ad:a7:59:8a:7b:84:f2:38:ca:
d8:ab:5e:6d:c4:8f:a1:24:22:90:43:f9:f6:67:53:af:4d:3c:
bf:8e:21:01:b6:2a:fa:ee:00:3e:ff:56:a1:18:b3:02:a4:05:
35:c8:f6:88:02:92:c7:69:b4:32:8e:38:8e:b9:7f:12:68:47:
61:85:83:e3:34:f5:4e:c1:c5:ef:24:ec:47:37:54:9f:ea:c8:
f1:c0:44:ce:bc:60:62:ef:30:9c:cd:38:48:cc:7c:b7:e0:5e:
4f:66:03:1e:d5:31:20:cb:29:d1:70:4f:4f:ae:30:0d:88:4a:
a1:73:2c:69:2d:ee:d2:5e:a9:9d:62:b6:3a:8a:77:1c:d7:2b:
6f:a6:dd:05:3f:5a:76:2d:00:12:da:09:24:37:f0:9e:00:6e:
0f:ca:98:7b:bc:13:f1:39:48:39:2b:df:aa:f4:c1:b1:8a:98:
8b:3b:33:2c:dc:0e:5d:85:04:07:f1:a7:c9:d6:9f:0b:c5:84:
89:89:7c:59:25:c5:74:a0:94:77:c9:0f:c4:54:9c:1d:ef:f9:
e5:a3:ef:ab:d6:67:29:ad:6c:31:ea:35:85:9a:77:21:a8:ba:
9f:10:30:44:1d:da:0b:34:f0:8d:51:89:a1:fe:a7:5f:88:d4:
9a:ac:f9:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:00 2023 by rpki-client on console-fra.rpki-client.org