Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/JzhiR9mtzU2rZhgoYBM2CRELWvA.roa
File: JzhiR9mtzU2rZhgoYBM2CRELWvA.roa (raw, json)
Hash identifier: fed40I3eKXm+gKHzGK1xOTXcfY/ckeurGGsaRRqFCUU=
Subject key identifier: 27:38:62:47:D9:AD:CD:4D:AB:66:18:28:60:13:36:09:11:0B:5A:F0
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 09C7
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/JzhiR9mtzU2rZhgoYBM2CRELWvA.roa
Signing time: Wed 29 Sep 2021 02:36:47 +0000
ROA not before: Wed 29 Sep 2021 02:36:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9244
IP address blocks: 61.56.64.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2503 (0x9c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 02:36:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=27386247D9ADCD4DAB66182860133609110B5AF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c3:36:86:cf:fb:db:a3:c3:56:82:fa:90:e1:
22:97:53:20:82:58:a7:27:48:fa:55:b8:d8:1a:7f:
b2:0f:96:ab:ba:d1:c4:5b:5c:63:67:5e:ad:4b:f9:
5e:ca:65:f6:fa:df:9c:f6:bd:97:04:fb:ea:51:96:
02:3c:b7:f3:e5:b0:00:6c:6e:a9:ea:4c:f4:b4:c1:
1d:6a:b4:8a:37:3c:94:ed:87:3e:4c:c2:6d:88:e0:
c0:ab:9a:65:df:82:1b:33:fc:5a:18:6d:16:2d:1c:
db:24:66:b2:fb:fb:6a:18:62:14:f2:bc:8a:8f:83:
ad:a0:e9:69:61:53:e8:67:ed:3d:40:31:91:18:8e:
a1:82:e0:ea:da:49:2e:bf:2d:8d:c6:95:13:90:6b:
1e:e9:7b:0b:8c:e4:1d:af:e1:4d:74:07:75:12:cd:
84:f0:56:79:f1:15:4f:6b:43:b7:72:2f:2a:13:71:
a2:89:a7:5b:74:2d:11:95:0e:39:31:d5:df:11:ab:
a3:4d:b7:c6:61:4d:27:1e:51:fe:b4:3e:8c:d1:5a:
95:56:1d:b1:ff:02:14:fb:65:ec:bc:da:ab:47:f9:
df:ab:1b:8d:a4:7f:8c:21:e6:5a:89:6b:57:d9:af:
3a:84:54:fc:3c:e9:71:a2:f9:69:7e:8e:8e:01:f9:
ec:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:38:62:47:D9:AD:CD:4D:AB:66:18:28:60:13:36:09:11:0B:5A:F0
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/JzhiR9mtzU2rZhgoYBM2CRELWvA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.64.0/20
Signature Algorithm: sha256WithRSAEncryption
bc:95:7a:9b:ee:3a:f2:30:fd:0b:ba:a7:2a:77:cb:62:39:8a:
38:4b:d3:65:ec:89:ec:f2:19:9b:40:b0:84:08:33:f3:6e:f0:
9a:37:20:2e:72:95:94:07:94:ac:81:b5:40:45:27:c6:5e:7c:
9f:37:bf:7c:b3:cb:39:dd:8c:4e:5a:bf:60:91:ab:e0:b8:c5:
8b:7a:1d:44:56:0f:65:f4:4a:ad:56:a2:1e:c7:56:4d:1e:e8:
5b:ff:87:06:2b:ae:a0:8f:29:9f:c4:21:8a:e7:f7:ce:13:70:
73:c8:6d:68:9e:9e:ea:bc:41:57:ff:ca:76:f4:59:da:69:0f:
66:4b:51:98:21:aa:45:fc:db:94:a2:fd:7d:39:ce:63:8c:25:
49:63:13:9a:ea:d3:76:ec:45:3b:cc:d6:aa:65:ff:27:f8:6d:
b9:47:0b:76:5d:38:af:86:3a:ee:7f:2c:cc:13:9c:29:3d:36:
92:2e:4b:8d:1e:94:73:d6:57:df:8f:75:70:09:96:9a:e6:ac:
d5:66:89:d0:4a:79:51:e0:80:25:e3:8a:4e:ec:c6:3e:49:78:
ae:2d:46:65:3b:96:b1:b2:ee:ad:d4:83:17:cd:e0:23:65:48:
ae:71:f1:a5:73:fa:c9:1b:fb:ad:3e:6b:c8:6a:ef:e5:c1:fb:
9c:ac:91:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org