Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/IOkYD22V15RsIDTDHMy_2YrUoU0.roa
File: IOkYD22V15RsIDTDHMy_2YrUoU0.roa (raw, json)
Hash identifier: /I1l9UQxc/y8bobPsoEbTfQ+gOK/KqLajqb2LZXcaaA=
Subject key identifier: 20:E9:18:0F:6D:95:D7:94:6C:20:34:C3:1C:CC:BF:D9:8A:D4:A1:4D
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0A7B
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/IOkYD22V15RsIDTDHMy_2YrUoU0.roa
Signing time: Thu 27 Oct 2022 06:44:20 +0000
ROA not before: Thu 27 Oct 2022 06:44:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17416
IP address blocks: 2405:4d00::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2683 (0xa7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Oct 27 06:44:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=20E9180F6D95D7946C2034C31CCCBFD98AD4A14D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:52:32:44:ab:ec:46:f9:3b:e7:78:2d:ad:ab:
fe:b7:0c:ad:c5:33:41:3a:cd:be:65:1b:f6:28:93:
2b:a8:d0:e6:d5:85:d1:9d:be:ba:81:f4:37:d9:75:
a4:1a:98:80:1a:f3:21:f6:62:d1:da:25:3d:eb:e3:
21:a3:bb:5d:b6:f8:2f:46:8a:02:7f:5d:93:bb:95:
71:95:76:9f:a4:65:ec:2e:c7:0f:a8:02:dd:ad:6b:
73:cd:82:a6:4b:c9:b2:11:3e:66:53:45:44:5f:64:
80:f0:5c:eb:d4:1d:59:b2:f4:d0:6f:bd:11:3e:8b:
91:b1:7b:03:a1:77:da:85:93:27:68:c1:de:7c:dd:
1b:19:b4:8d:85:44:f6:45:6b:4b:84:6f:5f:37:03:
fc:b8:01:67:21:fe:59:a1:27:d9:31:3f:34:ef:5e:
a2:a1:20:17:9e:b4:04:ae:44:5b:b2:da:f7:79:34:
09:17:13:53:c6:0d:1f:ba:c6:fd:5f:c3:2c:7e:54:
be:9d:41:8b:f7:af:5b:c6:bf:b4:14:21:74:79:b7:
24:99:be:98:5f:8f:da:73:ae:bf:0f:cb:5e:79:b5:
a2:56:86:19:36:b2:db:37:aa:02:da:d1:8c:97:22:
59:11:c7:17:e2:dc:5e:df:a0:d1:3b:97:5d:7f:c1:
30:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:E9:18:0F:6D:95:D7:94:6C:20:34:C3:1C:CC:BF:D9:8A:D4:A1:4D
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/IOkYD22V15RsIDTDHMy_2YrUoU0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:4d00::/32
Signature Algorithm: sha256WithRSAEncryption
51:08:c9:61:4b:21:a4:33:43:96:00:98:b4:ba:2a:82:7b:e8:
45:58:98:5a:e2:b3:a0:23:b9:84:c6:5e:30:a0:ca:e6:29:60:
de:ce:b4:43:cc:d7:26:dc:e6:58:4a:24:7b:4b:af:14:0c:b5:
1a:ad:8f:db:7a:ac:8d:5b:0e:3f:6f:2e:96:9e:dd:5f:ab:9f:
32:3d:f8:44:d1:65:b1:7e:57:19:59:a7:26:db:6e:c1:86:82:
dc:a6:1c:fd:82:76:40:91:65:ce:2e:f8:2e:b3:ba:de:0d:2c:
12:3c:07:af:c8:c6:25:d4:47:0f:74:4d:14:fa:6b:b8:c6:54:
45:77:02:7d:d3:31:50:4e:17:8f:5f:17:d8:89:40:fb:99:74:
45:de:72:8c:e5:00:a2:bb:73:a4:b9:eb:f0:80:17:45:ae:3f:
5a:35:64:0c:71:83:ec:fa:97:5d:0d:55:4e:2e:5f:1f:e6:5e:
c4:b6:64:9d:f5:ae:43:f5:f2:f1:14:48:ef:19:d7:3f:22:80:
69:f5:aa:cd:11:4c:a4:19:2c:c2:52:2d:db:08:dd:75:bd:91:
32:10:ee:7a:a8:7d:c0:1e:ba:a1:29:e3:f4:b8:c8:8d:6b:70:
3d:68:9d:7e:2f:16:41:ff:9f:73:e3:af:6d:6f:01:5b:df:0d:
48:12:54:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org