Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/i1DmmUTLEfCJ-9fVjiw6Ckvi3B0.roa
File: i1DmmUTLEfCJ-9fVjiw6Ckvi3B0.roa (raw, json)
Hash identifier: zwGnfojs13+753oGcOFnA23ImkGN/HlrslQYc9e44JE=
Subject key identifier: 8B:50:E6:99:44:CB:11:F0:89:FB:D7:D5:8E:2C:3A:0A:4B:E2:DC:1D
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0AB7
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/i1DmmUTLEfCJ-9fVjiw6Ckvi3B0.roa
Signing time: Thu 15 Sep 2022 02:37:44 +0000
ROA not before: Thu 15 Sep 2022 02:37:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9244
IP address blocks: 113.21.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2743 (0xab7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 15 02:37:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8B50E69944CB11F089FBD7D58E2C3A0A4BE2DC1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:31:66:07:61:cc:09:08:39:c2:36:32:c3:55:
8d:20:62:b3:90:93:c3:b1:66:6d:b9:63:a9:d0:26:
ac:fb:04:2d:58:eb:ff:e4:11:53:21:65:90:ef:c8:
9a:f6:d1:02:dc:79:03:ec:01:01:64:1b:e0:15:11:
1e:c9:a1:ea:3b:3f:63:48:8e:6e:06:de:73:f9:cb:
8c:b1:1b:7e:30:10:7f:34:97:70:9e:b7:bd:26:a1:
ab:63:99:4f:9d:d7:51:42:33:5f:c2:63:18:22:b0:
fe:50:ea:c4:4f:c6:90:7b:bd:b9:4b:a8:ce:f8:15:
f1:a5:c5:ec:7e:03:8f:a2:91:ab:fd:3a:0d:dd:98:
73:77:47:a9:2f:29:e5:bf:d8:13:a8:f5:4c:db:62:
1a:30:df:cc:ab:5c:84:7c:f3:1e:44:16:9b:ea:01:
06:11:60:f7:60:6f:a8:75:5a:80:a8:8a:34:83:1a:
5c:1d:54:92:0e:fd:e1:9d:4e:c7:c2:bc:6e:90:14:
c9:84:ff:49:26:d8:17:98:61:ac:2b:e2:87:e1:80:
c6:97:2b:2f:7e:e4:8f:d3:91:45:c1:da:96:98:45:
ad:d5:e5:a6:2b:eb:41:58:da:ce:a3:9e:9d:85:c6:
9f:02:6f:17:e6:0e:b9:72:00:38:8d:a9:b6:28:e2:
ec:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:50:E6:99:44:CB:11:F0:89:FB:D7:D5:8E:2C:3A:0A:4B:E2:DC:1D
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/i1DmmUTLEfCJ-9fVjiw6Ckvi3B0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.176.0/21
Signature Algorithm: sha256WithRSAEncryption
2f:6e:a8:1e:36:46:7a:2a:cf:18:95:c7:60:ea:3b:c9:9e:8a:
4b:68:1c:f2:83:99:7c:44:1d:d0:be:73:a1:7c:02:f6:2c:e8:
55:b6:d1:2d:50:c7:3f:40:fd:d7:10:e4:2a:dd:02:4c:aa:d6:
70:e1:6c:9e:54:03:dd:38:b8:28:66:d2:2d:f4:e3:be:7c:23:
51:2a:0a:91:f0:1b:fb:c1:16:35:e5:28:c4:92:69:d8:35:3d:
d5:91:8c:b1:47:60:65:b4:6e:df:da:07:db:bb:e3:1b:8d:94:
16:4d:d5:f5:44:0b:52:c6:e1:ba:ce:c4:39:86:5b:bb:d6:32:
a7:c4:a4:cc:45:40:76:5e:0c:11:a7:40:a3:9c:18:12:0b:11:
f6:1f:44:20:07:c9:94:a4:14:50:e8:ba:8a:ef:87:af:5f:c9:
24:5a:22:69:19:1a:41:76:83:18:9f:19:8f:aa:c2:6a:dc:7e:
e8:dd:19:cd:ff:5f:57:9e:f7:e3:60:aa:e2:83:a6:46:1f:fc:
03:8e:0a:28:a4:d3:0f:c2:2e:70:08:0e:4b:08:4e:d3:da:14:
5d:8e:fb:33:ad:63:4d:59:fc:b1:fa:46:5a:f5:88:1b:f6:96:
76:b8:59:83:d3:d4:86:f5:dc:7e:27:90:fa:8b:2b:ce:1e:9f:
ca:ff:fe:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org