Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/dMzc2-JQtOhEeDzttYVv0Y23PeM.roa
File: dMzc2-JQtOhEeDzttYVv0Y23PeM.roa (raw, json)
Hash identifier: vrauJCKHjdpV0xgY4QAS2JfUB5Neo3fmcYpkSjOM770=
Subject key identifier: 74:CC:DC:DB:E2:50:B4:E8:44:78:3C:ED:B5:85:6F:D1:8D:B7:3D:E3
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 079D
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/dMzc2-JQtOhEeDzttYVv0Y23PeM.roa
Signing time: Tue 29 Sep 2020 10:03:14 +0000
ROA not before: Tue 29 Sep 2020 10:03:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 61.56.64.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1949 (0x79d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 10:03:14 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=74CCDCDBE250B4E844783CEDB5856FD18DB73DE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:41:c1:35:df:f7:3f:b0:c2:73:d2:37:39:21:
7d:01:74:fc:2c:b5:ae:eb:53:9c:b8:a3:8b:7c:1a:
ec:c1:14:b0:90:ab:e7:14:1d:87:e2:33:7c:d4:cf:
b7:2a:4d:35:95:21:b5:ec:26:de:70:7f:b0:3f:2f:
db:63:a9:2e:2e:77:94:32:35:7a:ab:59:7a:59:7a:
2d:f7:71:a5:45:5e:96:4d:33:5d:85:f0:11:7f:bb:
e6:ae:fb:f4:47:7e:09:22:85:b1:da:c3:27:94:8c:
ae:a6:56:a4:d6:fb:66:78:27:06:a3:ec:f5:e7:78:
e2:c9:c4:56:89:10:f3:98:c5:78:2d:95:bd:d3:35:
d1:3d:1b:b1:f6:50:59:db:b1:4c:87:38:37:d6:15:
ea:d4:db:ab:c4:25:2d:7c:22:74:77:fa:b3:ad:96:
7e:64:47:2c:ae:80:3c:67:08:1b:f0:c3:44:60:70:
47:40:52:23:b6:23:b4:03:7a:f1:88:29:4d:00:93:
d8:bf:4e:57:be:32:c4:01:90:a6:3a:fa:02:93:3a:
6c:bb:1e:9b:d4:b8:1c:14:24:40:00:12:e7:67:a0:
b5:01:89:76:37:5a:71:0f:84:19:fd:58:04:f1:69:
57:8e:ba:07:e1:81:f2:d5:f6:35:27:af:bb:e8:65:
57:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CC:DC:DB:E2:50:B4:E8:44:78:3C:ED:B5:85:6F:D1:8D:B7:3D:E3
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/dMzc2-JQtOhEeDzttYVv0Y23PeM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.64.0/20
Signature Algorithm: sha256WithRSAEncryption
91:e8:3b:ed:27:b3:45:54:aa:b1:0d:aa:c3:c7:3e:bd:ef:3f:
18:9b:6f:99:e6:b1:21:34:dd:ae:82:12:e6:a6:c2:73:06:89:
36:3e:0b:7c:b7:71:f9:79:35:92:c0:ea:c4:ab:59:45:b6:2d:
0b:58:be:ca:11:0f:9b:b6:9f:d2:02:78:ea:25:15:69:68:ea:
d4:db:52:0e:a5:77:82:f5:42:01:ec:69:4b:d8:aa:26:f8:38:
7d:90:74:0f:09:8d:2c:15:a6:c6:d6:ab:e3:3b:42:3e:13:72:
18:e4:a8:28:0d:5e:b5:5c:2f:fe:31:2d:22:b9:c5:a7:79:34:
f1:90:f7:54:14:63:03:09:51:6f:49:a9:94:e2:33:de:b9:22:
98:ed:1f:91:66:94:32:25:87:a4:e3:b2:66:04:b1:05:e7:3c:
4d:00:b2:c8:e1:4f:0d:dc:72:27:3b:11:75:59:a6:d7:7a:65:
4e:fc:89:42:d6:34:a9:fa:e1:28:9f:bf:f3:9b:10:74:10:3a:
92:bf:c7:39:3b:c8:ee:a7:6b:51:6e:5c:52:c5:06:63:a7:25:
af:9e:45:61:7c:3b:07:48:5a:95:ab:33:bf:19:9c:6b:41:6e:
4b:bf:47:1c:22:4c:09:29:37:9e:99:1d:81:97:eb:47:7a:2e:
86:b3:e0:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org