Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/Ce3KsIm7Crjugt2aO-tKYr-UW6Y.roa
File: Ce3KsIm7Crjugt2aO-tKYr-UW6Y.roa (raw, json)
Hash identifier: xC820M5q28AKN4+1lvk8q6qs+kvaIx4RQs92vbCOMps=
Subject key identifier: 09:ED:CA:B0:89:BB:0A:B8:EE:82:DD:9A:3B:EB:4A:62:BF:94:5B:A6
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 096A
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/Ce3KsIm7Crjugt2aO-tKYr-UW6Y.roa
Signing time: Tue 05 Oct 2021 11:34:51 +0000
ROA not before: Tue 05 Oct 2021 11:34:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 137443
IP address blocks: 43.224.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2410 (0x96a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Oct 5 11:34:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=09EDCAB089BB0AB8EE82DD9A3BEB4A62BF945BA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ee:46:76:a0:fb:9c:8b:52:10:f3:fc:07:02:
20:2d:bd:d1:b1:ad:bd:7e:88:9a:34:4e:b2:ee:80:
01:ca:8e:0c:a6:00:cf:84:07:bb:dc:61:cc:b1:4e:
dc:40:28:a3:24:ed:0a:c4:68:de:ff:ac:9b:c5:ba:
bd:5e:9a:29:43:49:86:c5:0b:01:64:28:ab:be:71:
a9:3a:c6:ad:4f:fc:4a:9e:0b:58:49:95:75:bb:69:
d9:fa:02:01:26:65:c0:00:2a:be:7f:21:38:9e:f3:
20:3d:d1:c9:24:09:f8:20:19:13:e7:31:6d:84:d7:
c3:bd:01:2d:5d:16:ee:d6:24:4d:d4:1f:e6:5f:dd:
4f:57:8a:ba:48:28:82:21:cb:e3:da:3b:f7:1e:12:
ec:07:ae:f8:c1:de:ae:2f:cc:4c:c2:87:67:b5:9e:
ff:ff:96:6c:ac:f6:a8:49:1a:b9:40:92:15:be:8f:
f8:63:b0:7d:e7:85:13:9e:96:2c:df:da:c7:8a:f6:
77:f3:28:de:c1:3e:f5:a9:0e:2e:97:eb:a2:96:68:
8e:d3:c0:13:ac:b8:c4:da:18:f1:9e:59:e2:93:dd:
46:b0:0c:e6:29:cb:fa:37:a4:2d:12:3b:72:d2:10:
aa:5e:35:2d:0f:c1:64:1f:6a:2d:35:0a:e5:d7:c5:
63:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:ED:CA:B0:89:BB:0A:B8:EE:82:DD:9A:3B:EB:4A:62:BF:94:5B:A6
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/Ce3KsIm7Crjugt2aO-tKYr-UW6Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.23.0/24
Signature Algorithm: sha256WithRSAEncryption
06:40:0f:ed:0e:06:60:a2:23:91:79:5c:68:a1:0e:6a:12:f3:
8b:96:c9:25:af:ae:6b:62:4b:b9:12:73:5a:30:20:7b:1d:97:
e7:d0:3a:cd:f7:70:4f:9f:9e:0d:40:4a:bc:84:53:b3:06:cf:
eb:01:26:b5:08:72:16:ff:16:4f:7b:82:7c:33:7a:a3:a5:ac:
85:dc:92:64:9e:3d:c5:fa:31:6b:05:82:14:bb:5e:48:c4:92:
05:08:bb:72:48:41:a7:06:c5:d0:19:70:fa:9b:d6:47:c4:ef:
76:3f:cc:05:ac:6d:72:27:f9:9b:ad:71:3d:25:85:de:07:ca:
ae:28:b4:4c:7a:ef:96:5c:d4:ce:98:02:b3:1b:02:26:43:78:
6f:9d:38:9d:88:ac:f9:4f:33:33:4f:31:f8:99:0c:c8:6f:30:
ec:a1:d1:f1:7f:2d:c9:fd:51:92:42:36:85:a2:9d:ba:1b:d6:
a2:0c:2f:6f:2d:48:a4:92:38:a7:e4:39:60:08:23:85:d2:46:
a2:43:04:47:5f:3d:db:76:33:75:b7:5a:ef:4f:33:ec:9a:70:
63:ff:2c:21:65:d2:ec:77:d3:1b:5b:26:01:bb:0f:bb:58:c1:
99:ed:77:9a:75:8f:f2:d8:41:23:ba:89:89:eb:66:fc:54:ee:
68:16:f0:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:44 2025 by rpki-client