Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/fN5VBHx7TQ12BskbYOLOUw5Rp3o.roa
File: fN5VBHx7TQ12BskbYOLOUw5Rp3o.roa (raw, json)
Hash identifier: UtTs9kb9c+05lqTrE47qsg2FRb3vGKto7v+sqcTB4hU=
Subject key identifier: 7C:DE:55:04:7C:7B:4D:0D:76:06:C9:1B:60:E2:CE:53:0E:51:A7:7A
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0962
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/fN5VBHx7TQ12BskbYOLOUw5Rp3o.roa
Signing time: Wed 29 Sep 2021 02:40:52 +0000
ROA not before: Wed 29 Sep 2021 02:40:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 137263
IP address blocks: 43.224.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2402 (0x962)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Sep 29 02:40:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7CDE55047C7B4D0D7606C91B60E2CE530E51A77A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:54:f5:89:06:0c:5b:fd:41:85:ae:d3:c5:1d:
59:4d:ed:c6:11:5f:b1:8d:b3:e1:62:c3:3e:19:9a:
da:cb:bb:aa:65:bb:fb:e1:1a:e9:9c:1b:10:37:7a:
80:a2:7d:2a:26:e3:95:2c:fb:ee:16:a4:1a:26:86:
1a:60:29:9e:54:f3:d4:08:75:0a:57:7f:52:8b:a4:
56:01:00:c8:87:43:2c:bc:15:12:ca:22:ec:ec:dc:
2c:23:ed:12:45:51:86:44:e1:64:75:27:9a:e5:e1:
1c:d5:b1:4f:b0:a3:6d:70:b5:ba:5c:4a:e2:5d:09:
55:09:1a:ed:8a:c8:e1:86:af:86:1a:a3:ca:36:e3:
52:eb:87:2c:7a:70:2f:f3:c2:fb:f1:a9:ff:4d:6a:
6e:76:ba:8a:97:cc:b2:52:6b:ef:c9:bd:fc:ae:9c:
56:4a:28:66:f2:70:ca:4c:30:4c:6c:02:78:13:28:
5f:5f:cf:34:04:59:cc:93:96:46:8f:c2:83:33:6b:
58:ee:28:54:da:a6:34:51:2b:7e:87:c5:8e:b5:3e:
6b:21:e3:a3:76:b5:14:47:47:54:8a:21:db:2e:57:
e4:1d:11:00:e9:4e:ba:cd:5f:51:63:40:67:f8:78:
d5:83:97:8d:c9:00:32:e8:bf:ea:41:39:fe:e6:82:
74:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:DE:55:04:7C:7B:4D:0D:76:06:C9:1B:60:E2:CE:53:0E:51:A7:7A
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/fN5VBHx7TQ12BskbYOLOUw5Rp3o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.22.0/24
Signature Algorithm: sha256WithRSAEncryption
56:31:22:df:60:4c:f1:ea:15:9d:87:ea:0d:3d:7b:3e:85:26:
94:72:2f:b8:91:37:13:0b:01:79:43:48:c4:44:f2:01:58:89:
26:c3:34:9d:85:28:c9:af:54:ec:36:d5:9f:58:38:7f:89:89:
8f:b6:9c:54:8e:66:ac:b2:43:c7:d5:11:a8:93:20:69:e7:02:
f3:5a:11:8f:a2:73:b0:fe:c7:df:39:f7:1a:44:c8:ad:f8:2a:
62:3e:1f:63:e6:a7:c5:34:33:39:ff:19:09:b2:c2:4e:e6:1b:
8b:b0:c0:ff:fe:2f:b2:8d:b3:24:f0:38:b4:c3:cf:10:5c:18:
93:f3:36:8d:ea:14:6c:31:6f:84:20:eb:2e:5e:66:83:5c:12:
8e:eb:0c:9a:e6:49:5f:02:80:19:97:70:95:b8:e9:5d:4c:b8:
35:69:55:ad:21:e1:b7:05:b3:07:5b:a6:27:26:b1:09:2b:0e:
ad:d2:9b:af:c0:bb:3d:96:6b:60:44:29:df:ee:50:8b:32:9e:
6c:3e:3b:c9:81:00:c7:83:61:d0:d3:8c:00:d8:62:e9:5c:20:
de:43:ab:36:89:b9:9b:62:08:8b:5b:1c:fe:8a:b1:e6:f9:51:
87:45:0f:48:0f:aa:a0:fe:32:f1:31:3d:56:8f:3a:2d:ba:4b:
3c:2e:28:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:52 2023 by rpki-client on console-ams.rpki-client.org