Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/qitagvnwHZA25iVT7trqWnMmRgc.roa
File: qitagvnwHZA25iVT7trqWnMmRgc.roa (raw, json)
Hash identifier: B0k5M3Ca/jcs705cE0WTDeOdkc7eN4cq8K9J26gCxR4=
Subject key identifier: AA:2B:5A:82:F9:F0:1D:90:36:E6:25:53:EE:DA:EA:5A:73:26:46:07
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 08F7
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/qitagvnwHZA25iVT7trqWnMmRgc.roa
Signing time: Sun 07 Feb 2021 11:55:36 +0000
ROA not before: Sun 07 Feb 2021 11:55:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 61.247.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2295 (0x8f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Feb 7 11:55:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AA2B5A82F9F01D9036E62553EEDAEA5A73264607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:19:d0:fc:fc:db:ee:a3:c2:0e:71:d7:ff:e9:
2e:00:f7:f1:ad:a3:92:c0:d9:c5:07:02:5a:54:77:
d5:0e:2f:75:e8:2c:a3:c8:f1:ff:fd:b5:37:95:c0:
99:c4:03:84:3a:b3:94:2d:b2:14:c6:0e:fe:3c:15:
12:8e:95:fc:5b:52:86:5e:db:15:69:48:97:ff:fe:
03:ac:0c:ec:71:c0:c5:61:8f:54:e5:59:90:95:84:
ff:33:54:fa:09:2c:c1:21:37:cb:f0:2d:a8:70:d8:
a5:49:37:8c:20:8e:63:bf:af:59:75:bc:a6:52:8c:
51:88:63:0a:12:c6:76:4a:39:33:b4:a6:39:56:19:
9f:98:43:6f:86:d5:78:1a:31:52:1b:07:a5:eb:af:
d5:52:58:34:f3:25:68:a0:00:dc:82:3f:7d:b6:4e:
e9:24:7f:a9:5f:ab:06:e0:cf:2c:de:42:e4:f2:87:
ad:97:9d:83:63:80:27:6f:f5:69:3a:9b:6a:6a:4c:
0b:c0:cd:cb:2c:16:41:35:78:e4:a9:c6:53:41:76:
ab:ed:d7:eb:76:c5:91:1f:cf:20:61:40:09:d9:e3:
4c:27:a2:9d:be:e1:59:4c:fb:21:88:83:f3:bd:7f:
e7:15:43:94:08:ad:e1:6b:9b:8c:ba:d9:95:04:61:
44:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:2B:5A:82:F9:F0:1D:90:36:E6:25:53:EE:DA:EA:5A:73:26:46:07
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/qitagvnwHZA25iVT7trqWnMmRgc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.247.160.0/20
Signature Algorithm: sha256WithRSAEncryption
91:35:94:55:54:66:7c:f7:dc:55:05:89:3c:bd:90:9d:45:08:
dc:41:ed:6d:78:18:94:4d:97:2c:1d:ef:a5:f4:6b:69:7e:43:
ba:99:c0:d3:f1:95:23:6a:ea:48:d7:83:56:09:d4:fe:1c:19:
b6:64:ee:d9:37:20:a9:d4:30:06:8e:78:5d:3b:7c:22:3f:ec:
b3:ac:10:44:59:24:6e:d0:38:84:ce:d5:f7:d0:00:f9:10:a1:
ec:ef:bb:ae:40:e3:da:c4:01:9e:2c:14:84:d1:bb:d3:3a:58:
f5:f3:9c:08:4b:64:60:b6:ec:36:49:af:28:79:98:60:62:cf:
d6:f1:81:9a:c7:44:71:9b:6d:de:00:52:e5:11:68:66:84:ea:
6a:0e:24:6e:b1:27:62:f1:a4:fb:50:40:4c:da:10:74:60:90:
63:a8:1d:15:ce:7e:c8:ee:fe:bf:a0:47:24:3a:f2:4c:d3:cd:
5d:b0:38:78:18:b5:b0:af:3c:0e:a9:0b:59:52:c2:30:e9:bc:
e8:6b:fe:1d:9c:83:72:9c:4f:50:3c:f6:a6:87:ed:22:5e:b9:
cd:89:32:d0:5f:46:8c:d4:e5:c6:69:56:7b:f3:01:91:33:e6:
86:a6:41:75:30:3b:c3:e4:c2:d4:2d:fa:63:7f:66:ed:40:3c:
04:89:56:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org