Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/qb9jPCd8m6DJtnN5rPRyBOmp32M.roa
File: qb9jPCd8m6DJtnN5rPRyBOmp32M.roa (raw, json)
Hash identifier: sztX+6HshzN6Uiw0GKTLnY4gWOs5cWtSM1jKEr+BzSY=
Subject key identifier: A9:BF:63:3C:27:7C:9B:A0:C9:B6:73:79:AC:F4:72:04:E9:A9:DF:63
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 086E
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/qb9jPCd8m6DJtnN5rPRyBOmp32M.roa
Signing time: Mon 16 Nov 2020 04:55:20 +0000
ROA not before: Mon 16 Nov 2020 04:55:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 21859
IP address blocks: 43.224.20.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2158 (0x86e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Nov 16 04:55:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A9BF633C277C9BA0C9B67379ACF47204E9A9DF63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8a:2f:ce:3e:15:ed:57:66:29:00:9e:d2:7e:
89:8e:02:77:f4:e3:7a:cf:94:29:ff:fd:63:24:4f:
c8:c0:71:74:bd:6f:14:61:1a:9a:79:1c:71:41:c0:
c5:dd:61:c8:02:9e:f6:86:f2:65:5a:36:fe:91:c2:
97:39:44:c7:a0:e5:14:af:bf:dc:d2:51:26:fc:19:
a3:9b:44:97:72:49:f2:ae:85:7a:17:06:c2:f0:d9:
2f:b1:b2:f9:df:42:6b:05:d6:61:6b:04:8b:0e:72:
a9:70:a3:fd:48:c0:47:4e:88:a8:7a:3a:96:b7:14:
69:65:c1:b5:56:a0:06:61:a4:b8:89:68:c4:f9:9d:
47:9c:ec:5f:7a:ce:d7:a0:e9:ab:1a:d8:fd:b1:a2:
fc:1b:44:cb:39:cb:22:3b:f6:33:14:ef:7b:f8:06:
e4:d9:6b:87:5d:dd:6d:fe:e7:f5:f4:53:90:6c:58:
3e:c6:96:7e:9a:28:04:1c:91:e0:71:d8:39:94:bd:
e1:75:87:ae:02:47:fe:91:1c:3a:9a:50:90:c1:ff:
29:80:a6:79:be:0b:da:a1:1e:9d:e6:b6:b7:cd:b8:
b9:76:7f:b8:a8:95:40:f2:33:a7:2b:47:65:8c:e2:
21:7a:04:46:67:61:c2:cf:59:8b:26:04:c5:a5:87:
e7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:BF:63:3C:27:7C:9B:A0:C9:B6:73:79:AC:F4:72:04:E9:A9:DF:63
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/qb9jPCd8m6DJtnN5rPRyBOmp32M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.20.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:8c:92:1f:26:6b:84:b7:b1:10:37:0f:9c:f6:8d:bc:e7:89:
72:22:f1:02:37:53:81:f8:d3:a2:32:11:41:22:b6:3b:ec:0c:
bd:f3:f5:05:fe:76:b4:38:07:fb:2f:2b:f6:a3:95:b7:7d:9b:
79:44:3b:66:b2:9e:3f:fc:9d:7e:f7:7d:3c:58:b8:ba:8a:d8:
96:52:43:da:08:ef:61:6a:8c:2c:cb:19:42:a7:5c:f5:e6:07:
7c:0c:5e:3a:7e:1f:b8:0d:1f:55:7f:94:3d:df:2d:9a:60:23:
be:06:f4:9d:f5:79:76:e9:b9:2c:7f:2e:15:f4:92:ca:0d:06:
56:3e:68:0e:27:2a:38:da:fd:3d:37:9e:48:22:90:6c:11:89:
54:e8:ff:3d:69:64:4d:49:e6:bc:2e:86:29:19:1a:dc:00:c5:
6f:e6:4d:b4:b9:af:00:1a:4a:56:17:c0:f5:62:91:ec:1f:f7:
6d:66:a6:ec:8a:e8:b9:66:f0:9d:3a:65:52:18:08:c9:39:0c:
45:a9:77:d1:c9:52:7a:32:d3:a8:92:ba:29:86:0b:e8:88:1e:
cb:f7:1d:16:f5:d4:62:2e:fd:fd:3e:d9:06:61:65:49:c1:1b:
4d:42:35:7f:86:72:15:37:d1:6e:c7:6b:13:93:3a:4a:2c:b1:
4b:7b:db:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:00 2025 by rpki-client