Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/pZxzrN47kmtPQ7oCqemDewj6DCc.roa
File: pZxzrN47kmtPQ7oCqemDewj6DCc.roa (raw, json)
Hash identifier: VU1BxCF0ymyCo79pzDhYO3Yi0UdZMXUf0HGRruwcuVk=
Subject key identifier: A5:9C:73:AC:DE:3B:92:6B:4F:43:BA:02:A9:E9:83:7B:08:FA:0C:27
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0961
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/pZxzrN47kmtPQ7oCqemDewj6DCc.roa
Signing time: Wed 29 Sep 2021 02:40:51 +0000
ROA not before: Wed 29 Sep 2021 02:40:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 21859
IP address blocks: 43.224.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2401 (0x961)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Sep 29 02:40:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A59C73ACDE3B926B4F43BA02A9E9837B08FA0C27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:87:30:bc:05:0c:da:42:60:5a:a5:dd:18:be:
c7:00:db:ba:62:43:d2:3e:38:50:66:44:89:0d:fe:
fb:11:a2:4a:3f:53:34:69:66:47:54:8d:7c:06:cb:
db:f5:4e:43:c3:b3:95:a6:d0:16:8d:ef:24:2d:04:
3a:10:e9:b0:f7:c0:76:9a:76:d5:a9:16:44:66:42:
83:f7:ea:e7:4c:29:fe:e0:cf:24:71:70:16:4a:72:
23:2b:ac:14:16:dc:08:84:f0:90:a3:59:33:6a:5f:
ad:1f:20:cb:30:9c:bd:9f:d0:49:d4:36:6d:ef:fe:
48:a7:19:f4:d0:5c:44:7e:fc:9c:42:79:c7:97:f4:
5a:97:af:da:09:f4:2b:69:19:a1:c2:09:3d:b8:74:
99:a4:3c:15:63:7a:cc:bd:65:c9:5b:b7:1a:22:43:
aa:19:16:4a:22:0d:e8:00:15:a3:bb:d3:9d:d6:5b:
be:3c:54:58:aa:5c:c0:f3:81:cb:db:94:20:65:23:
e9:a3:ba:6c:98:df:2a:cd:ec:03:64:52:62:5d:4a:
cc:b0:9d:ab:9b:0e:d2:16:73:a1:cf:22:9b:c4:db:
0d:9f:a4:7c:96:c8:50:c4:56:53:f2:70:47:c1:57:
20:3d:b7:7b:2e:cb:96:ab:0c:07:68:41:51:18:75:
bb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:9C:73:AC:DE:3B:92:6B:4F:43:BA:02:A9:E9:83:7B:08:FA:0C:27
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/pZxzrN47kmtPQ7oCqemDewj6DCc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.21.0/24
Signature Algorithm: sha256WithRSAEncryption
40:d4:39:04:c7:dd:24:99:e2:5e:e6:41:31:c5:71:94:2c:92:
ae:c5:c8:79:16:47:c5:af:c8:23:0b:50:99:7b:95:a6:aa:5a:
ce:a5:65:14:92:2d:53:a0:bc:c4:3b:12:9b:53:23:aa:bf:3d:
f5:95:b6:7f:2f:42:ea:76:81:fc:ff:b9:8e:f7:27:d3:d2:fc:
d9:d0:3f:c7:e0:55:03:dd:dc:cf:03:10:b6:7f:7c:ab:96:c2:
9d:d5:b5:0f:5d:bf:21:52:28:4c:44:3d:e5:28:8d:ac:48:18:
35:28:9e:47:8d:b4:32:6a:ff:67:c8:6a:36:60:77:96:73:e9:
d1:18:bd:c8:2f:8e:ec:b0:b0:a1:85:9a:b8:16:07:25:f3:ef:
e7:96:06:8d:05:63:5a:f6:74:0e:00:ad:13:a6:5f:2a:22:96:
05:c6:28:ef:40:97:61:64:9d:5a:49:11:b5:38:fe:57:03:c3:
cd:c2:b6:0a:c9:04:fe:e7:0a:1e:ee:57:ad:bc:71:9c:9b:e1:
3c:f5:12:b0:aa:57:35:8e:8e:0d:ca:b3:21:58:f7:44:76:0e:
61:1a:9d:3c:cd:9c:5e:72:be:09:c5:2c:0b:09:ae:2d:6c:25:
ae:63:a0:2a:b6:c1:05:53:4a:8e:34:21:c0:fa:7d:98:96:75:
6d:be:c1:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:00 2023 by rpki-client on console-fra.rpki-client.org