Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/pUqx-IJcJZmciH5eIXizYBGrfiY.roa
File: pUqx-IJcJZmciH5eIXizYBGrfiY.roa (raw, json)
Hash identifier: 7uIajj8I2kl49WL0JtDZJpSDbmjQH+jxUpd9SSMMWkw=
Subject key identifier: A5:4A:B1:F8:82:5C:25:99:9C:88:7E:5E:21:78:B3:60:11:AB:7E:26
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0913
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/pUqx-IJcJZmciH5eIXizYBGrfiY.roa
Signing time: Sun 07 Feb 2021 11:55:54 +0000
ROA not before: Sun 07 Feb 2021 11:55:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 113.21.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2323 (0x913)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Feb 7 11:55:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A54AB1F8825C25999C887E5E2178B36011AB7E26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:1b:44:96:38:ec:64:43:49:e1:de:8d:24:1c:
14:3d:be:fc:a7:99:16:d9:15:e4:62:5d:ff:1a:ee:
cb:7c:2d:1e:66:72:15:46:26:4d:09:b5:5c:be:1e:
46:38:8b:6e:79:21:6d:b2:3a:19:2f:70:8b:0e:a2:
c2:4c:46:33:4b:60:70:1c:5b:e4:d8:d2:ce:73:78:
db:3d:b1:9a:4c:05:dc:3f:ea:a1:28:0c:d9:04:d2:
fe:8d:a6:26:62:e3:54:8f:db:2e:6e:1f:dd:08:bd:
e1:49:07:60:0b:f0:8c:b8:da:98:6d:0b:08:b7:24:
70:fa:fd:5f:55:ea:df:f2:63:63:be:d2:75:26:de:
b1:3c:f1:48:aa:0f:34:82:61:b9:82:2b:d6:15:1d:
01:42:e9:bd:03:8c:05:75:3b:00:18:7d:08:f2:20:
fc:f5:41:5f:cd:c0:2c:2c:df:c6:a1:36:f4:d8:a3:
33:95:41:9d:c5:e5:5a:68:ad:e9:fc:b6:d2:bc:8b:
bc:c9:7b:f9:93:2e:b8:72:16:79:b4:51:1c:b0:4c:
85:83:43:f8:ee:6f:8d:96:65:3a:2b:0c:ec:39:2f:
2b:00:74:96:09:20:ea:5d:bf:df:92:b4:0e:41:02:
74:81:0d:51:3d:98:64:fd:6f:dc:c2:07:75:26:5f:
2f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:4A:B1:F8:82:5C:25:99:9C:88:7E:5E:21:78:B3:60:11:AB:7E:26
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/pUqx-IJcJZmciH5eIXizYBGrfiY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.173.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:fe:fc:c3:6f:34:69:7b:65:5b:c3:32:b5:39:1a:d7:a3:0c:
67:22:1d:39:56:4e:da:ac:cc:5a:7a:ea:1f:04:4f:bc:21:83:
f8:44:ba:c6:85:32:20:9a:34:45:85:8e:52:5d:10:a4:c5:f7:
c6:96:c2:9c:d6:1b:7a:df:29:2b:00:94:9c:18:53:92:6f:2e:
c0:a7:ff:bd:68:02:4c:38:86:8c:5c:fe:7c:f3:aa:be:83:59:
01:2f:fa:ed:82:14:b9:98:b4:04:e6:2c:f2:91:63:09:d2:3a:
ce:ac:96:05:2d:a9:9f:92:a5:b1:6a:49:9a:cb:e8:69:db:c8:
26:68:5d:a8:4f:0a:a9:e3:70:77:2e:00:1e:47:b1:22:f7:a8:
ca:22:2b:a8:49:a4:53:5a:05:03:4c:dc:ee:12:3e:a8:ab:dc:
d2:ba:50:25:f3:94:22:fd:cf:3d:4d:b3:53:ed:eb:45:50:f7:
4f:75:86:72:b4:72:07:39:34:ac:8c:74:c0:6c:03:83:ff:8d:
c1:db:7e:06:02:4b:a9:a6:f7:b9:f6:a0:38:c9:a6:c7:64:e8:
c7:f4:e7:3c:4b:a5:c0:a8:65:af:5e:b3:41:65:01:27:90:5f:
fb:6a:af:74:84:50:ee:fa:f1:27:2c:4f:9a:06:5d:29:84:b9:
a2:9c:75:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org