Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/PsNiMrpXTNhWYm7BM2kLt06bO3k.roa
File: PsNiMrpXTNhWYm7BM2kLt06bO3k.roa (raw, json)
Hash identifier: pfQdIyI/2nxDZaxQ0DmNGscNZHAKyoNr5h7wCQoWpM4=
Subject key identifier: 3E:C3:62:32:BA:57:4C:D8:56:62:6E:C1:33:69:0B:B7:4E:9B:3B:79
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0AB8
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/PsNiMrpXTNhWYm7BM2kLt06bO3k.roa
Signing time: Mon 16 Jan 2023 11:03:14 +0000
ROA not before: Mon 16 Jan 2023 11:03:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 136173
IP address blocks: 43.224.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2744 (0xab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Jan 16 11:03:14 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3EC36232BA574CD856626EC133690BB74E9B3B79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a4:9e:d9:1f:fc:e0:c6:12:14:5c:63:9a:74:
88:f8:26:b6:03:05:51:2a:d6:2f:a8:9a:04:40:8f:
b3:81:e7:a2:76:1f:21:f4:e8:e1:f6:13:7e:f2:3b:
5b:73:18:81:10:41:e1:36:e6:68:ec:8c:0f:4d:fa:
cd:6a:1a:5b:99:15:dd:5a:36:30:08:78:40:44:41:
12:68:74:8c:e6:2f:60:2c:5a:d3:3a:ab:08:68:5b:
8a:55:47:3c:7a:a1:91:39:83:a4:e0:60:b7:0d:20:
01:e4:47:ca:d3:7f:1f:e1:c4:38:14:4f:18:a9:0f:
08:b5:f8:83:17:54:7f:b0:cf:1c:0a:40:47:a2:57:
be:37:f9:5f:10:1f:77:0e:72:fe:20:34:3c:64:ac:
1d:8d:c2:c6:bd:5b:a4:37:d0:e9:13:99:c8:89:30:
4b:b9:a8:08:ce:dd:b3:88:09:21:06:23:c5:c4:3d:
4a:e5:da:e5:15:df:ed:00:db:95:0b:8a:7f:d8:bf:
71:6d:93:62:12:a6:4c:59:e2:47:40:72:c1:d4:bb:
c1:2f:8c:ba:55:a6:0d:63:16:de:ed:6b:6f:2b:25:
b6:c0:bf:ae:cd:14:77:15:7c:a3:24:1e:db:51:3c:
64:70:80:e6:a6:f3:63:22:ad:c8:db:7d:c3:69:7d:
e8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C3:62:32:BA:57:4C:D8:56:62:6E:C1:33:69:0B:B7:4E:9B:3B:79
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/PsNiMrpXTNhWYm7BM2kLt06bO3k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.22.0/24
Signature Algorithm: sha256WithRSAEncryption
17:dc:b9:2f:be:70:1d:68:b5:fb:37:aa:db:42:08:7e:0e:2a:
67:8d:4c:68:c1:7d:9b:34:59:d9:20:3f:b0:b9:eb:2a:72:b7:
47:e9:18:cf:8e:71:7a:56:bd:17:eb:04:c3:6a:a3:28:8c:ca:
dc:90:a0:c3:34:39:7b:68:99:f7:82:aa:e0:3d:a9:82:a6:ce:
1c:86:95:67:a8:50:55:3b:34:6b:f7:28:60:17:33:d5:b5:ca:
98:11:42:b3:48:f4:9d:b0:72:93:62:b6:fc:1c:4c:6e:5f:7d:
d6:78:b9:3b:f4:6e:1c:44:aa:5b:df:3d:08:59:6a:82:7d:ea:
fd:bf:59:07:90:18:3d:d7:98:4a:89:95:5f:f6:4a:b1:93:3c:
b2:4d:fb:70:37:02:e5:f5:ec:9f:69:db:6f:70:fe:d9:35:89:
8c:9c:5e:3a:35:79:90:f5:05:f8:fe:01:03:89:bc:54:42:62:
1c:8c:81:73:0f:62:5c:a5:f0:07:64:e1:69:c0:32:92:fb:b1:
75:93:54:96:26:5f:18:5e:62:d9:77:5b:02:49:b7:95:57:83:
91:87:e3:8e:79:ad:c6:fb:ae:a6:99:0f:fa:71:6a:1e:77:27:
67:67:d4:34:c3:92:6e:f2:c5:06:fc:38:5d:68:d6:be:08:e8:
6a:ac:ae:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org