Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/N8hO_wRbjHmVI1H3VN9NwQriEZw.roa
File: N8hO_wRbjHmVI1H3VN9NwQriEZw.roa (raw, json)
Hash identifier: rWJkmRCyiseMbL+l33pGW4vCyhdNKsn2NEFtT6W7CMw=
Subject key identifier: 37:C8:4E:FF:04:5B:8C:79:95:23:51:F7:54:DF:4D:C1:0A:E2:11:9C
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0AB7
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/N8hO_wRbjHmVI1H3VN9NwQriEZw.roa
Signing time: Thu 15 Sep 2022 02:37:42 +0000
ROA not before: Thu 15 Sep 2022 02:37:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9244
IP address blocks: 210.67.96.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2743 (0xab7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 15 02:37:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=37C84EFF045B8C79952351F754DF4DC10AE2119C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8b:97:6a:b9:f7:d5:a2:b6:37:3d:7a:2a:3d:
f7:8d:a5:7b:bc:7c:c8:e1:3b:b8:b3:47:b1:96:64:
de:cf:a0:f9:fe:25:04:28:4c:3a:da:62:82:b6:3c:
87:3b:a4:cd:c7:ed:3b:f7:16:73:89:34:00:a7:09:
26:15:6c:58:99:4c:0f:f6:7e:02:94:35:2f:35:a4:
71:f6:e7:41:79:7d:79:92:70:37:76:86:ef:c2:1e:
29:7f:a6:17:59:58:be:b8:23:5d:86:b7:68:b0:a2:
9d:1b:aa:a2:fc:b4:04:49:7c:d1:f3:4f:24:63:88:
e7:f8:01:07:56:68:b7:26:a1:5e:df:6f:b0:59:30:
b0:1a:5c:10:93:20:3a:84:62:dd:bc:1c:c9:d5:b8:
04:4a:93:e5:b7:7c:de:0b:1e:26:7c:fc:9a:d8:77:
41:58:5f:63:58:69:b6:30:9b:d1:12:38:33:25:23:
c0:9e:64:b0:5f:14:c8:9b:b9:6c:b3:9b:8d:1a:54:
ca:e4:cd:86:26:51:ab:70:5f:5a:97:8e:17:21:12:
76:3d:f6:44:ec:8a:68:d6:14:bd:6d:99:c2:4f:f8:
bc:54:d2:45:95:8a:d8:92:2b:26:bd:31:92:c1:ad:
da:8d:aa:89:c9:cc:84:45:b3:ab:e5:c2:20:b6:f9:
89:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C8:4E:FF:04:5B:8C:79:95:23:51:F7:54:DF:4D:C1:0A:E2:11:9C
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/N8hO_wRbjHmVI1H3VN9NwQriEZw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.96.0/20
Signature Algorithm: sha256WithRSAEncryption
4e:df:3a:1b:5b:0a:cb:25:a2:93:cd:3d:ad:fb:d2:94:33:02:
ea:c5:3b:58:be:65:9e:97:00:bb:96:e1:77:13:5e:9d:09:ef:
54:be:5a:6e:e2:56:cb:81:e0:86:a4:6c:24:26:ad:d9:32:99:
91:34:b9:ca:e5:c4:82:93:85:39:db:8a:e1:0b:31:37:f3:71:
48:f8:6a:16:61:2b:aa:de:15:b4:d1:4f:8b:a6:8f:a7:66:77:
64:3f:0e:9c:b7:2d:87:e0:01:ed:f9:3a:9b:68:1e:1b:22:5a:
df:8c:99:f6:48:c5:d2:69:80:84:ea:cf:98:42:c4:53:11:c6:
bf:88:88:6d:cf:b8:99:cd:13:92:8c:2b:07:c9:92:3a:4f:2b:
ae:d7:9d:27:76:ce:26:87:8a:5e:77:e5:03:51:97:54:00:93:
3f:e9:a1:bd:06:c5:2e:c7:72:94:0e:c7:56:4f:0c:80:76:eb:
37:cd:45:93:5f:04:7d:00:e1:38:53:b6:e0:d0:5b:18:96:54:
83:db:c8:b2:f3:c1:3e:bd:55:7b:57:39:5e:a2:27:89:4f:a7:
f0:00:b2:2a:4b:a0:55:87:b7:c5:09:ed:70:7a:01:59:0e:0c:
ed:0c:44:b1:fa:4d:67:6b:04:31:cb:4f:47:e9:c8:83:c9:f2:
04:34:8c:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org