Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/21Q2Xe4vOHYucKY3iLHKjoQDqrg.roa
File: 21Q2Xe4vOHYucKY3iLHKjoQDqrg.roa (raw, json)
Hash identifier: wmCNjafHQPTmzQLjEj6k8HMajmb1oEKK8LfbyIRO3Hg=
Subject key identifier: DB:54:36:5D:EE:2F:38:76:2E:70:A6:37:88:B1:CA:8E:84:03:AA:B8
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0AB7
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/21Q2Xe4vOHYucKY3iLHKjoQDqrg.roa
Signing time: Thu 15 Sep 2022 02:37:45 +0000
ROA not before: Thu 15 Sep 2022 02:37:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9244
IP address blocks: 61.247.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2743 (0xab7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 15 02:37:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DB54365DEE2F38762E70A63788B1CA8E8403AAB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:76:66:0d:2a:fb:51:ff:a3:fd:2b:b9:be:22:
74:69:34:1a:7f:dd:e8:af:b2:0d:cb:68:c9:f9:77:
d4:d2:81:cd:3b:d9:7a:12:b8:a5:fb:0b:9e:51:e2:
bb:7d:d7:d1:4a:26:fa:e4:70:a6:11:5a:51:36:1c:
93:f7:51:6e:22:d1:5f:c9:40:d7:a9:d3:aa:10:6c:
96:ee:54:6c:f0:6e:10:70:eb:67:84:ef:cd:54:a1:
74:6f:af:fa:67:c3:8c:a1:2e:6c:34:72:e6:78:96:
e4:76:b5:5a:04:b9:e8:2d:d2:5d:5b:bd:b8:dc:6c:
2e:42:1c:40:09:81:eb:40:35:8f:9c:d4:e0:11:fb:
4c:b5:18:d8:01:82:e4:9f:7a:11:0a:d9:88:b0:c4:
b2:15:04:9f:96:c0:d1:71:ba:2c:b3:7d:1c:77:5d:
cf:65:65:ce:25:6e:cf:4b:b5:27:9d:ff:ab:0e:47:
3b:a1:9f:6b:cf:e2:6f:60:11:71:a8:90:e7:f1:b0:
63:4b:fd:5c:d9:a1:18:6a:1f:9c:3a:55:d5:c7:57:
8d:98:3f:5c:94:c6:37:3f:d2:43:e7:45:88:fd:48:
7d:73:02:f8:b9:91:7d:5e:7b:45:57:2b:e8:85:42:
0c:16:3d:96:ed:2d:2c:58:2a:bc:87:d3:86:93:6c:
5f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:54:36:5D:EE:2F:38:76:2E:70:A6:37:88:B1:CA:8E:84:03:AA:B8
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/21Q2Xe4vOHYucKY3iLHKjoQDqrg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.247.160.0/21
Signature Algorithm: sha256WithRSAEncryption
c1:d0:23:58:43:70:30:6a:07:ed:96:20:d9:e4:52:30:74:92:
c9:47:12:75:dc:bb:62:6e:6e:da:6c:f8:2d:cd:ef:2d:66:0f:
ae:e7:ac:a4:5d:08:8a:55:75:ec:f7:b9:55:c2:36:05:77:5d:
92:56:d7:f1:92:d1:ff:61:8c:ac:74:c3:64:db:bb:f2:bb:10:
02:5c:67:89:be:27:b8:e4:65:ba:89:7a:36:c6:dc:55:0a:7a:
1c:aa:d4:eb:d7:4e:4f:61:b2:d3:ca:67:38:1f:7a:1c:a1:ab:
4e:31:bd:cf:0d:85:f2:e0:77:9d:65:e1:b3:5f:6e:1b:49:60:
ed:7b:1c:1a:fa:8d:fc:16:28:8a:c2:c8:0f:b1:0b:a5:3c:1b:
cd:6f:7d:eb:3e:a7:ba:7e:26:b6:65:1d:04:f4:30:62:b6:47:
7f:a6:54:1b:26:16:2a:a8:d3:e5:8d:cb:9d:cb:ef:e5:8d:5b:
d3:88:33:b0:7b:c3:f5:7c:42:5f:c5:dd:ee:e4:29:b9:e1:59:
0b:67:63:c6:83:f4:d4:eb:2e:01:45:e8:94:0d:e0:94:04:18:
54:31:55:d0:7b:05:68:ed:93:8a:46:95:97:05:31:fa:70:18:
c3:a6:4e:9c:50:83:eb:3f:b7:dd:df:f4:dc:f0:4f:22:e4:a1:
08:77:57:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org