Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/vNH4EhmdBhCwHJkrE8aKFTbywng.roa
File: vNH4EhmdBhCwHJkrE8aKFTbywng.roa (raw, json)
Hash identifier: Pz8TaOi7kUpJeTKdPhpSgxMKZ+w5U0bZ1oH8g7hGEdw=
Subject key identifier: BC:D1:F8:12:19:9D:06:10:B0:1C:99:2B:13:C6:8A:15:36:F2:C2:78
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 09BA
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/vNH4EhmdBhCwHJkrE8aKFTbywng.roa
Signing time: Wed 29 Sep 2021 02:36:44 +0000
ROA not before: Wed 29 Sep 2021 02:36:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9244
IP address blocks: 113.21.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2490 (0x9ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 02:36:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BCD1F812199D0610B01C992B13C68A1536F2C278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1d:66:8b:ca:f3:e5:44:92:3a:9b:af:ab:d4:
10:69:9e:e1:10:32:39:fb:73:2e:57:12:65:3a:de:
a1:8f:b6:9e:74:a6:61:57:53:df:59:31:86:55:7a:
0a:75:5a:0c:98:b0:63:c3:8a:60:0a:44:00:96:42:
b0:b3:56:c7:0e:70:5c:5f:5a:ae:3a:c5:ba:44:5b:
43:d4:7f:2f:66:a3:97:ae:7e:fc:6a:16:ed:68:46:
26:5f:aa:f0:f8:0d:85:4e:38:b2:e5:cb:5d:03:d9:
6e:88:c2:8d:99:6c:78:3f:43:2e:18:98:43:7d:12:
e8:ff:ba:2a:8e:c8:fb:a6:4b:71:36:6f:bf:45:7f:
59:d4:c0:19:f6:47:66:41:f4:93:ea:03:45:be:54:
7d:6c:e3:ca:ac:35:10:86:97:f3:81:64:ff:0f:35:
06:07:23:f6:9d:42:85:65:1f:5d:60:bf:77:64:d1:
63:f4:28:ae:19:f2:6d:7a:39:42:70:7f:d6:8b:c3:
e9:15:14:77:8b:20:a0:1d:de:6a:6c:04:8b:03:11:
b6:3c:c4:84:b7:c6:cc:d7:a2:39:08:e1:c5:fa:6d:
11:a1:0f:b2:36:ff:2b:75:39:77:67:22:f3:b9:b8:
53:3b:66:1a:9f:31:ef:cc:32:84:87:ec:b6:98:bd:
51:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D1:F8:12:19:9D:06:10:B0:1C:99:2B:13:C6:8A:15:36:F2:C2:78
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/vNH4EhmdBhCwHJkrE8aKFTbywng.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.173.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:42:25:23:a0:d8:ea:d6:6a:76:71:1d:4c:96:30:90:a8:de:
d4:cf:14:ff:d7:ab:8b:52:64:6c:c6:46:38:ba:aa:e4:ff:83:
67:80:92:48:45:56:0c:09:6c:5c:f0:90:21:58:34:e4:a3:cd:
fa:0b:c8:cf:05:7d:60:78:c0:46:f3:48:b0:d5:0a:e4:64:b1:
41:73:c3:58:ab:11:4f:7d:12:b7:56:0d:48:35:7f:97:2f:df:
d2:f2:fb:72:31:88:e2:d2:2c:10:cd:42:10:b8:d7:4b:4c:97:
f5:c1:1e:9c:b5:04:dc:e7:91:d2:83:11:06:3f:bc:5c:3c:53:
4b:1b:24:2e:89:8d:1a:c7:45:6a:fb:ca:9a:db:0b:55:f0:1d:
24:1e:a6:89:e7:2b:0b:90:9f:7a:45:e3:f4:46:c5:d6:8c:70:
64:a7:48:d8:9a:6c:8a:54:45:f0:8b:6d:a7:cc:60:70:fb:62:
b6:4a:d1:8f:d7:d0:f9:22:57:cc:3a:17:f3:a2:e3:a6:03:0d:
cf:11:f0:8a:13:53:f5:99:83:6b:91:6c:a0:10:c1:e3:e2:4c:
82:51:25:ab:1c:9f:37:9e:84:18:e0:9c:74:5e:52:da:b9:91:
9c:22:5e:c5:b4:02:2c:31:07:d7:56:5d:60:71:a7:64:79:37:
7e:36:a8:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org