Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/gn9zzRm5OFU_DYUZiPWislWR2kk.roa
File: gn9zzRm5OFU_DYUZiPWislWR2kk.roa (raw, json)
Hash identifier: C2i2AGs4bCcp7d/Blv0TpzzMJDlyDFJPQHKrtNfNAYI=
Subject key identifier: 82:7F:73:CD:19:B9:38:55:3F:0D:85:19:88:F5:A2:B2:55:91:DA:49
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 09B9
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/gn9zzRm5OFU_DYUZiPWislWR2kk.roa
Signing time: Wed 29 Sep 2021 02:36:43 +0000
ROA not before: Wed 29 Sep 2021 02:36:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9244
IP address blocks: 113.21.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2489 (0x9b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 02:36:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=827F73CD19B938553F0D851988F5A2B25591DA49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:55:0a:30:5a:a4:65:05:57:be:8a:b1:b1:5e:
56:d2:e8:04:62:48:0c:11:48:cc:c2:8e:4e:b8:97:
8a:3d:da:8d:08:cd:47:91:15:ae:29:de:da:06:ce:
1d:7c:45:ff:ba:f0:c6:ee:4a:06:a6:10:83:9b:cc:
64:33:5c:5c:db:d7:5a:8e:16:57:6b:0f:33:33:27:
dc:17:c8:63:cd:c8:98:13:b4:8f:57:03:b9:6e:27:
0e:50:0c:d7:29:70:ff:7b:b6:c2:b8:e0:ee:0d:95:
fd:c8:5f:fc:bd:b5:22:2e:43:9e:d5:42:e7:4b:a8:
69:a5:60:ac:29:a7:90:30:bb:2f:30:ed:9f:ed:08:
e9:50:21:ec:ae:83:88:18:3f:eb:29:6c:72:58:6d:
73:8a:de:2c:b1:d6:10:a8:a0:36:07:9d:a9:91:42:
5b:22:41:22:5f:fb:73:37:98:56:a1:92:f6:44:44:
03:15:dd:28:29:4b:73:21:2b:49:b9:f4:26:94:ca:
78:5b:7e:ca:97:16:d7:2b:49:fc:4b:07:39:40:fa:
6b:b4:c5:a3:22:f7:2c:68:87:5c:30:8b:95:98:bd:
ff:2d:10:6e:0f:00:ee:bf:72:a6:51:ac:6f:a2:7a:
ba:9a:14:61:1e:44:4e:9f:64:74:57:7a:d6:db:c3:
9d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:7F:73:CD:19:B9:38:55:3F:0D:85:19:88:F5:A2:B2:55:91:DA:49
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/gn9zzRm5OFU_DYUZiPWislWR2kk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.175.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:f9:b9:7e:67:aa:fc:6e:ed:52:31:fd:05:90:37:d3:56:50:
2c:1f:ca:4b:66:04:ab:89:3b:78:a0:bb:fe:17:06:e2:c9:24:
b9:85:70:30:fe:fd:c8:f0:72:b7:74:6a:8b:2d:ba:ea:36:b7:
88:a7:83:8b:a9:2e:7b:45:08:85:de:29:1c:48:aa:8e:36:b3:
15:d5:87:d3:5f:c0:70:12:64:13:2d:04:81:1c:73:99:16:53:
14:e8:a2:52:97:66:7b:31:9a:c1:f5:39:5d:9c:24:32:29:f2:
dc:b0:d2:07:5c:cc:cc:96:df:bc:8a:60:67:2b:1d:1d:02:e8:
e4:1c:0e:eb:eb:8b:a4:ef:ba:e5:52:1e:a8:f8:bb:8a:23:30:
0d:92:a3:48:06:0a:e3:5a:59:17:49:16:92:80:28:17:2b:0a:
3d:8c:59:4e:75:26:22:f5:5f:9c:c6:1c:1e:16:5d:b1:dc:d4:
a5:bc:3e:01:50:a4:c0:24:a4:f5:29:f5:5c:c4:f7:51:e9:4f:
e9:4b:3b:9b:b8:71:85:70:25:90:c3:26:bd:ac:04:3a:50:d6:
c4:7b:d3:9f:ce:a4:80:5d:ee:8e:b6:e1:6c:83:bc:ca:b1:d9:
71:3d:75:35:fd:42:54:37:b1:22:f2:79:59:39:fd:8a:c5:ff:
c9:95:ca:85
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC
M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMTA5Mjkw
MjM2NDNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDgyN0Y3M0NEMTlCOTM4
NTUzRjBEODUxOTg4RjVBMkIyNTU5MURBNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCoVQowWqRlBVe+irGxXlbS6ARiSAwRSMzCjk64l4o92o0IzUeR
Fa4p3toGzh18Rf+68MbuSgamEIObzGQzXFzb11qOFldrDzMzJ9wXyGPNyJgTtI9X
A7luJw5QDNcpcP97tsK44O4Nlf3IX/y9tSIuQ57VQudLqGmlYKwpp5Awuy8w7Z/t
COlQIeyug4gYP+spbHJYbXOK3iyx1hCooDYHnamRQlsiQSJf+3M3mFahkvZERAMV
3SgpS3MhK0m59CaUynhbfsqXFtcrSfxLBzlA+mu0xaMi9yxoh1wwi5WYvf8tEG4P
AO6/cqZRrG+ierqaFGEeRE6fZHRXetbbw52tAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUgn9zzRm5OFU/DYUZiPWislWR2kkwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT
KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU
L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL2duOXp6Um01T0ZVX0RZVVpp
UFdpc2xXUjJray5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABx
Fa8wDQYJKoZIhvcNAQELBQADggEBAD35uX5nqvxu7VIx/QWQN9NWUCwfyktmBKuJ
O3igu/4XBuLJJLmFcDD+/cjwcrd0aostuuo2t4ing4upLntFCIXeKRxIqo42sxXV
h9NfwHASZBMtBIEcc5kWUxToolKXZnsxmsH1OV2cJDIp8tyw0gdczMyW37yKYGcr
HR0C6OQcDuvri6TvuuVSHqj4u4ojMA2So0gGCuNaWRdJFpKAKBcrCj2MWU51JiL1
X5zGHB4WXbHc1KW8PgFQpMAkpPUp9VzE91HpT+lLO5u4cYVwJZDDJr2sBDpQ1sR7
05/OpIBd7o624WyDvMqx2XE9dTX9QlQ3sSLyeVk5/YrF/8mVyoU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org