Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/ll0Hcz1eGhlmj5wsbDrCWXTOAQo.roa
File: ll0Hcz1eGhlmj5wsbDrCWXTOAQo.roa (raw, json)
Hash identifier: OypBsB9wy4iDJ6LB6rzZy3JCcgxsKXw8oBBpZWfDiNQ=
Subject key identifier: 96:5D:07:73:3D:5E:1A:19:66:8F:9C:2C:6C:3A:C2:59:74:CE:01:0A
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0870
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/ll0Hcz1eGhlmj5wsbDrCWXTOAQo.roa
Signing time: Mon 16 Nov 2020 05:00:12 +0000
ROA not before: Mon 16 Nov 2020 05:00:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 137263
IP address blocks: 43.224.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2160 (0x870)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Nov 16 05:00:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=965D07733D5E1A19668F9C2C6C3AC25974CE010A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d9:dc:0b:e1:a7:86:e0:14:6f:e7:7e:5b:a7:
0b:4a:2c:5b:a7:53:e9:66:cd:43:05:4d:41:0d:c9:
6d:b5:ae:6f:bc:0f:aa:fc:3f:7b:81:bb:35:6f:81:
6c:39:27:8a:0d:e7:b4:48:02:6b:93:d2:10:2e:1c:
35:0e:81:a1:be:9a:94:bf:d6:26:01:97:3a:17:ab:
dd:bb:f3:5f:0c:65:09:ae:c5:f5:95:ac:3a:47:14:
27:21:f5:64:13:0c:d6:4b:d9:d4:1a:d7:f0:a5:7e:
20:6a:0d:4a:23:75:c5:22:ac:44:73:40:a9:5c:96:
79:1b:78:e1:82:0d:da:54:a7:53:21:01:bd:a3:28:
1d:a9:af:32:34:ca:c8:e8:2e:0d:e1:a1:b2:7e:3e:
43:18:b7:64:b7:19:0b:cd:e7:8a:ed:58:56:56:15:
bd:d0:33:ec:de:4e:a5:92:7d:09:10:bf:5c:67:b7:
53:2e:33:85:92:3c:7a:c2:f5:ee:cb:18:d3:26:55:
d8:3b:e0:2a:0b:5e:f0:e4:29:d8:e9:e0:6f:af:ba:
85:45:98:46:a9:bf:4c:ec:90:21:bd:19:d9:45:56:
80:42:89:f8:38:7e:aa:8f:d6:ae:5f:71:21:7a:ae:
6e:01:93:db:9e:3f:92:3a:37:10:5a:a8:ed:d5:f1:
1a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:5D:07:73:3D:5E:1A:19:66:8F:9C:2C:6C:3A:C2:59:74:CE:01:0A
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/ll0Hcz1eGhlmj5wsbDrCWXTOAQo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.22.0/24
Signature Algorithm: sha256WithRSAEncryption
30:1a:30:26:52:54:8f:83:28:5e:c0:35:6a:a7:1a:c0:98:69:
a3:ff:8f:03:49:40:14:9a:c1:30:4e:8c:7c:ac:75:18:eb:11:
43:7d:de:15:b4:c4:24:3f:03:f0:98:04:cd:cc:b4:fd:ab:25:
6b:65:cc:4e:5e:7a:ff:5e:ea:7e:32:16:d1:f6:2e:31:23:eb:
0f:95:eb:cc:9f:70:3e:c3:59:6d:2c:c2:2f:4b:ab:52:74:f8:
43:5c:72:12:83:4d:2c:6d:5e:ba:43:c9:4b:33:8f:70:39:5f:
0e:0f:ff:d7:16:19:39:b2:a5:78:df:88:42:73:14:e4:c3:de:
a5:dd:5a:dd:ac:d5:52:ec:40:26:0e:f6:6e:2b:3b:43:d9:d5:
c3:9d:ac:dc:08:5f:e3:f2:e7:2e:9a:dc:e2:cb:1b:4a:7b:d0:
c9:5e:86:79:f3:50:7f:a1:0f:10:b9:02:3f:ad:1b:3d:8d:18:
4f:51:24:9a:fc:f0:21:29:b8:3a:cb:ef:51:f8:b4:4c:90:2e:
f2:db:b8:0b:c6:f7:3a:b7:94:d9:38:4f:b4:d3:f0:85:7e:33:
9f:19:cd:69:04:33:9c:32:9b:d0:f9:47:74:d2:25:9b:f6:77:
1a:c3:53:74:26:33:46:9c:09:ff:37:22:e2:4c:0a:c2:56:fb:
1b:45:cc:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:00 2023 by rpki-client on console-fra.rpki-client.org