Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/K4ZQpI3kMrArSLAg-uRFWnMCPJ0.roa
File: K4ZQpI3kMrArSLAg-uRFWnMCPJ0.roa (raw, json)
Hash identifier: RdwVDUeQU8tze+8R4V4Mt8N0REgKb9tLpEHJ0fIgIDk=
Subject key identifier: 2B:86:50:A4:8D:E4:32:B0:2B:48:B0:20:FA:E4:45:5A:73:02:3C:9D
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0A7D
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/K4ZQpI3kMrArSLAg-uRFWnMCPJ0.roa
Signing time: Thu 27 Oct 2022 06:44:20 +0000
ROA not before: Thu 27 Oct 2022 06:44:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17416
IP address blocks: 112.213.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2685 (0xa7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Oct 27 06:44:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2B8650A48DE432B02B48B020FAE4455A73023C9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:93:fd:aa:b0:03:a9:31:8d:ce:42:b5:07:ba:
97:f4:79:6b:03:29:bb:12:1c:52:ea:01:d4:6a:04:
7f:7d:3f:55:66:3d:ff:ee:7b:5a:0a:40:aa:58:cf:
cf:e4:83:54:02:96:ee:d7:52:6c:24:c3:31:47:11:
d9:14:08:ac:69:31:6f:59:76:aa:87:b9:0f:d8:4e:
f0:ce:e4:28:3d:9c:b8:56:1e:d1:56:5a:5a:b9:f7:
a5:bf:6c:b8:b9:8c:3a:c4:ba:d5:f4:5d:21:f6:20:
1a:56:17:2f:9d:30:0c:67:b3:bf:3f:76:c4:b2:14:
cc:be:f8:b9:e2:0e:f8:df:ab:be:6c:a8:51:6e:eb:
95:d3:65:aa:ca:a5:a3:9d:ee:d7:b8:90:57:dc:98:
1d:7c:dd:62:b1:92:6a:5b:73:61:71:2c:51:b5:5c:
eb:53:c1:3e:9a:bd:e1:03:29:84:50:1a:09:f3:17:
71:0f:91:79:b7:31:17:c5:ea:83:d7:ec:8c:03:0b:
e7:bf:8f:16:00:a9:5d:8f:7d:bd:be:74:61:ce:22:
bc:fc:2d:a0:36:62:1a:95:f2:70:4c:5d:83:f8:fc:
a7:db:c8:21:b3:4b:18:20:23:ee:9c:dc:cd:08:72:
68:3b:85:bb:5e:41:98:bd:20:a0:4e:81:50:84:11:
08:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:86:50:A4:8D:E4:32:B0:2B:48:B0:20:FA:E4:45:5A:73:02:3C:9D
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/K4ZQpI3kMrArSLAg-uRFWnMCPJ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
112.213.48.0/20
Signature Algorithm: sha256WithRSAEncryption
13:a4:e1:2c:d8:54:61:b4:e3:35:28:c6:a5:eb:f4:bc:93:7b:
21:9f:d2:e3:23:eb:73:2b:b6:dc:02:12:d6:2b:49:99:47:80:
0d:73:24:b4:2a:c0:e3:99:a1:3a:81:b0:b0:34:7f:eb:b7:89:
dd:44:d0:91:9c:1c:4c:84:f0:84:30:08:6f:d8:f1:7f:d8:31:
e4:ad:3b:59:0c:8e:d2:29:f4:1d:4d:d8:02:81:e4:91:78:22:
3c:b8:8f:57:e0:0f:bb:ab:32:e2:9d:d4:49:e7:be:e5:45:f9:
60:91:3d:0c:b1:d9:11:a6:0f:f5:88:53:6b:5a:90:7c:ff:77:
ee:4b:a3:43:ee:64:03:3f:b4:b9:4a:2d:d8:13:73:07:52:3a:
1b:cf:c7:10:f8:c7:04:8a:dd:1f:f2:a3:e7:53:81:95:ae:cd:
1e:0c:eb:bc:ac:24:36:42:e4:c6:14:a4:69:63:6b:a7:29:65:
89:7e:36:13:57:0a:5a:f8:73:ba:75:9e:cd:fb:4b:02:d0:13:
cb:68:52:56:b9:f3:c6:24:18:06:72:b5:f5:70:c2:0a:be:3a:
44:cd:05:bb:87:f0:8c:aa:8e:98:37:55:04:51:c5:c5:4b:b2:
b7:bc:05:d5:95:8a:93:72:83:60:3c:2b:8c:2b:b8:54:cc:ee:
7b:a8:6c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org