Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/rb4Lhj3Iu0M7yZo4jgoZsYtKaK4.roa
File: rb4Lhj3Iu0M7yZo4jgoZsYtKaK4.roa (raw, json)
Hash identifier: LtLR0HfvDK+qZrBXf/wKmhR1Oc19dz7hiRP5ElGUbuw=
Subject key identifier: AD:BE:0B:86:3D:C8:BB:43:3B:C9:9A:38:8E:0A:19:B1:8B:4A:68:AE
Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Certificate serial: 0A55
Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/rb4Lhj3Iu0M7yZo4jgoZsYtKaK4.roa
Signing time: Thu 15 Sep 2022 02:40:46 +0000
ROA not before: Thu 15 Sep 2022 02:40:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 138915
IP address blocks: 43.224.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2645 (0xa55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791
Validity
Not Before: Sep 15 02:40:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ADBE0B863DC8BB433BC99A388E0A19B18B4A68AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1a:8a:32:15:5e:d7:82:4c:f5:b3:f8:94:e6:
45:75:b5:5c:20:0f:59:81:fe:52:16:1d:df:31:ef:
23:92:bb:7f:5f:b2:94:90:c8:b6:7b:b6:2c:21:5e:
cb:31:0f:0c:2e:8b:d4:b4:e9:5b:de:b6:5a:af:54:
12:d6:01:10:b0:9d:47:db:1f:ad:56:c7:ef:07:c0:
11:99:ca:3f:e2:55:71:8c:fb:74:00:4e:cb:90:8b:
aa:83:92:c8:c6:ab:95:d6:2a:04:4c:f1:e3:03:f5:
7d:b4:ae:f9:ae:55:61:9b:18:9a:0a:c2:6a:f6:b5:
24:5b:2b:c4:38:7c:85:e6:b5:ab:f7:bf:ff:30:d4:
6e:89:f3:9e:04:6e:23:da:a8:16:1d:f8:59:2f:76:
30:1d:59:fe:e9:10:8e:33:6a:87:dd:1d:db:2d:dc:
44:68:ba:8d:5a:82:a7:10:96:91:cf:7c:2a:14:84:
f1:9e:1b:48:71:bc:76:84:01:41:6d:5c:c9:c0:20:
b3:ec:b2:99:14:4d:e9:7f:15:72:9a:e2:d9:33:32:
6c:5d:ab:c7:04:95:dc:95:95:e2:fb:6b:93:7b:05:
cc:16:9b:94:f6:30:ce:e1:5f:43:c5:cb:7d:d7:5f:
97:d1:3b:99:7a:d1:29:a5:c4:8f:7d:3c:85:3f:12:
92:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:BE:0B:86:3D:C8:BB:43:3B:C9:9A:38:8E:0A:19:B1:8B:4A:68:AE
X509v3 Authority Key Identifier:
keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/rb4Lhj3Iu0M7yZo4jgoZsYtKaK4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.20.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:aa:38:89:5c:d5:2d:00:51:3d:d3:b6:eb:6c:56:2f:46:95:
52:f9:5b:59:90:70:2d:6e:74:a8:ec:c3:62:d0:dc:b5:4d:5e:
a2:d4:a1:ce:f0:14:e6:9a:c6:77:45:02:f9:06:88:a8:08:94:
c6:1a:96:c7:32:dc:b4:2c:8c:e2:42:99:c7:b5:d9:1e:75:3a:
29:06:a8:2b:cd:06:91:b8:6d:bf:ce:1b:7d:23:ad:ab:a7:ad:
b0:3a:14:7f:32:bb:9f:c7:fb:55:c1:82:87:45:3d:81:dc:e6:
7a:4f:22:32:eb:16:e9:ac:b1:9f:17:14:db:d6:11:9b:33:bc:
ca:60:ef:e3:a0:ed:72:69:84:ea:c5:38:e9:7e:a1:d3:cc:37:
d6:4b:e4:70:30:98:f2:85:9c:69:a9:66:cc:8e:a9:57:f1:c3:
62:3b:41:03:db:6c:bc:6c:fc:49:a6:54:6f:12:37:5c:a3:54:
9a:55:90:ab:5e:35:bf:51:2e:97:75:4e:66:a1:b9:7e:46:8c:
88:1a:a9:6c:e4:07:aa:83:6f:73:76:93:04:62:43:9a:eb:c4:
f8:0f:fb:78:28:05:b5:62:39:bd:aa:a7:2b:f2:c2:88:f7:3b:
a6:86:0e:48:b1:42:d0:13:54:e2:26:ff:2a:6b:2b:e6:be:c4:
7d:d8:8c:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org