Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/faz9Lk19gvY-C4gmsV4Qz7wHiHg.roa
File: faz9Lk19gvY-C4gmsV4Qz7wHiHg.roa (raw, json)
Hash identifier: dhPQzF2dmWICDzijYgNyXM/MSyJvhD+O5686X/gYc3k=
Subject key identifier: 7D:AC:FD:2E:4D:7D:82:F6:3E:0B:88:26:B1:5E:10:CF:BC:07:88:78
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 09A3
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/faz9Lk19gvY-C4gmsV4Qz7wHiHg.roa
Signing time: Tue 28 Dec 2021 10:02:02 +0000
ROA not before: Tue 28 Dec 2021 10:02:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 138915
IP address blocks: 43.224.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2467 (0x9a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Dec 28 10:02:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7DACFD2E4D7D82F63E0B8826B15E10CFBC078878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:57:dd:ba:ce:e7:2f:be:09:22:45:f5:6b:b7:
6d:ac:71:94:9d:d3:28:5f:b9:37:3c:20:f7:70:ca:
1c:0f:a3:fb:a4:87:bf:d8:f4:d2:04:a4:f9:12:9d:
d4:73:17:78:0c:88:b6:69:04:b5:d7:97:0b:74:d2:
5c:89:83:43:02:82:e7:36:b8:58:76:ca:af:10:ba:
60:57:dd:83:fe:b3:14:e0:22:00:bf:a5:57:8b:e4:
9a:50:97:a8:3c:73:e6:d4:73:76:79:43:60:c2:58:
d6:23:56:2b:dd:a2:6b:a3:4a:97:97:bc:2b:54:b4:
3d:e9:1b:89:d9:13:ae:f9:22:68:8e:dc:fa:c4:2e:
67:b8:4c:f1:b8:a4:2f:50:03:3f:a8:95:33:f1:b2:
b8:3a:a6:40:54:89:d0:c8:93:09:d8:59:cb:8f:85:
fb:b0:1f:56:e1:31:a8:38:38:8e:9a:cf:92:23:af:
e2:fc:d3:31:e7:a6:68:02:e7:cf:2b:8f:01:37:3a:
f5:91:28:62:ef:4b:5d:f0:35:23:6d:bc:5d:2e:9f:
16:e0:c1:d5:c5:80:69:d5:38:8f:67:34:04:91:6e:
2f:65:a4:b9:a7:72:c7:9c:b8:54:c6:f4:2b:56:ec:
0a:e1:a8:4b:ba:f8:c3:7b:44:27:b0:5c:b6:bf:3b:
c6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:AC:FD:2E:4D:7D:82:F6:3E:0B:88:26:B1:5E:10:CF:BC:07:88:78
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/faz9Lk19gvY-C4gmsV4Qz7wHiHg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.20.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:e6:a5:7a:c2:ab:c5:6d:21:3a:61:ce:28:6c:c4:6c:11:b4:
05:e0:e9:a0:b0:9d:0a:04:07:2c:35:8a:29:9e:11:4d:ab:7b:
92:bf:73:32:38:99:ac:5d:24:b5:c6:ba:99:c4:c7:42:7d:51:
66:67:1a:39:d6:e8:02:af:eb:5d:f3:4e:62:42:a5:79:17:12:
61:cc:ac:f4:df:6a:be:27:39:2a:23:83:9b:e0:fb:12:fc:0a:
f0:6a:30:72:93:76:c6:af:e2:69:4c:1f:62:65:8b:92:f4:76:
a9:a8:d1:68:76:f3:f9:a0:3b:0e:9c:0e:3f:b0:4f:f3:a7:ec:
42:09:2c:af:5d:94:a0:7e:59:13:5b:c8:27:31:06:53:b9:aa:
68:71:e1:57:10:4e:ee:6a:89:2b:50:d6:59:48:b6:66:cd:1d:
b1:3f:dd:89:b1:6f:01:5d:8e:33:87:d9:f8:15:6e:59:97:e2:
30:6a:b9:64:e8:16:e2:5a:2c:ab:ab:63:9a:27:6e:67:91:59:
4e:6d:bf:ea:52:96:6f:d5:6c:91:c3:4c:6d:d6:3e:ca:e1:50:
ba:65:16:01:1b:f1:0b:04:8d:4f:4b:14:3e:87:87:34:1a:63:
51:d1:a4:d3:78:3b:63:df:52:3a:2d:b5:8d:85:18:38:43:07:
11:9f:ab:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org