Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/4lKWamy-Zfrhqq8hfJcqw4gfqH8.roa
File: 4lKWamy-Zfrhqq8hfJcqw4gfqH8.roa (raw, json)
Hash identifier: LdH36x7dIEx+ltSH6VAyK44fQ7i2Kl5T38ghu0jR6vQ=
Subject key identifier: E2:52:96:6A:6C:BE:65:FA:E1:AA:AF:21:7C:97:2A:C3:88:1F:A8:7F
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 08FF
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/4lKWamy-Zfrhqq8hfJcqw4gfqH8.roa
Signing time: Sun 07 Feb 2021 11:55:41 +0000
ROA not before: Sun 07 Feb 2021 11:55:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 61.56.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2303 (0x8ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Feb 7 11:55:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E252966A6CBE65FAE1AAAF217C972AC3881FA87F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f4:3e:95:f5:8c:1d:43:d5:ab:63:fe:5b:60:
57:84:4c:b9:1a:61:42:6b:3a:86:0e:94:d3:5b:0b:
f0:53:e0:d8:ad:f1:fe:a1:d8:55:d0:16:c3:fd:6d:
97:f8:5a:a2:c2:ad:8b:cc:d1:9c:d5:b1:43:f8:07:
4c:75:22:aa:23:32:d0:7a:47:ee:07:5a:15:14:57:
a5:00:5a:fa:23:9a:0c:c5:f0:e9:03:05:98:40:85:
b4:f5:47:06:72:9c:86:f6:05:0e:73:39:66:91:04:
9c:97:f6:1b:ca:8e:5d:25:fc:61:a4:ff:41:73:5a:
34:9c:d8:df:31:d9:3c:f6:e5:01:4f:0e:8e:71:d0:
29:c5:31:a0:cf:8b:8c:d6:05:71:5f:9c:be:3e:45:
60:b7:13:7a:6e:b7:df:81:ba:77:aa:fb:a1:52:a6:
05:c0:e9:63:b8:74:10:e0:2d:de:22:3b:dd:25:0c:
45:75:7b:71:60:2a:80:ae:7e:e7:7c:d8:7a:72:4a:
fd:04:6d:17:34:fb:b6:10:28:04:0d:04:f8:2f:8b:
fc:27:78:f9:f8:a8:c5:dc:19:9a:46:a9:57:13:c1:
b4:47:7b:0a:92:a9:7b:4c:fb:90:a3:e4:d6:99:fd:
18:17:cf:f6:ad:8a:7d:10:6e:1f:4a:73:bf:f8:29:
40:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:52:96:6A:6C:BE:65:FA:E1:AA:AF:21:7C:97:2A:C3:88:1F:A8:7F
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/4lKWamy-Zfrhqq8hfJcqw4gfqH8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.65.0/24
Signature Algorithm: sha256WithRSAEncryption
93:03:15:da:f8:98:99:e6:71:ac:f6:24:8f:a6:79:b9:26:55:
29:b5:ed:64:57:69:6b:2b:0e:c4:c6:ed:c6:79:13:09:61:47:
ba:da:99:f3:1e:38:6c:99:98:25:89:57:40:1b:93:5a:70:8e:
88:6d:5d:80:c8:f6:0d:76:e6:41:01:3d:1c:05:8e:02:0f:25:
09:21:1f:14:27:8e:ac:7b:c9:6e:ef:01:59:f4:b8:46:e8:6f:
d9:60:87:eb:61:e9:60:9e:5d:b5:7b:b5:dd:57:df:4c:e8:9d:
4c:4d:ea:be:84:79:e2:40:51:09:4a:f4:c1:6d:2b:4a:a7:d7:
fe:40:37:6f:04:a8:0e:d7:88:c4:8d:3b:7d:c1:03:81:cd:c7:
3e:49:a7:d1:bd:85:90:a8:3b:99:f8:a4:49:bb:53:d8:73:19:
16:b7:f1:8d:55:90:47:4c:e9:ed:13:d0:bb:40:7c:dd:cc:81:
cf:84:ed:41:26:02:9d:de:c4:38:2d:5a:12:09:2e:86:23:75:
9b:c2:81:90:15:51:40:9f:4c:2b:26:f1:d2:25:18:61:0b:4c:
3c:ec:89:6f:b0:73:1a:31:74:07:1b:dd:fc:3b:87:2a:02:ec:
53:6d:df:b2:5d:91:25:5a:e1:70:1b:81:c1:b6:8c:0d:7e:88:
db:18:c0:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org