Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/3qGZEyC40igKP8krWgP_2VkyUyQ.roa
File: 3qGZEyC40igKP8krWgP_2VkyUyQ.roa (raw, json)
Hash identifier: C7Rkg8wE6hKyOmWfNi/BaW9Esn5fH3Vi1cW/apVHVxk=
Subject key identifier: DE:A1:99:13:20:B8:D2:28:0A:3F:C9:2B:5A:03:FF:D9:59:32:53:24
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0907
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/3qGZEyC40igKP8krWgP_2VkyUyQ.roa
Signing time: Sun 07 Feb 2021 11:55:47 +0000
ROA not before: Sun 07 Feb 2021 11:55:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 61.56.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2311 (0x907)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Feb 7 11:55:47 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DEA1991320B8D2280A3FC92B5A03FFD959325324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3f:78:61:d0:9c:d9:3b:c1:8c:f6:ab:b2:3c:
18:4e:e1:12:8b:81:cf:61:16:7a:83:b7:15:92:0f:
f3:1d:c5:36:ba:5b:cb:e1:bf:70:5f:84:7e:b2:2d:
b4:21:70:6a:e6:99:fe:b2:76:d8:6a:31:a4:f1:0a:
7d:7d:95:46:2a:6c:67:9a:1a:bd:20:e5:f6:8d:4a:
ef:5d:3c:ab:e3:ef:41:44:b2:90:d0:f0:25:27:bc:
95:87:0d:34:f7:4d:ce:f5:48:87:46:37:83:da:95:
e6:98:59:4f:81:3d:f7:17:96:94:05:3b:cd:b4:03:
b6:60:3d:44:e7:20:7b:fe:f2:8d:01:93:70:75:92:
c4:bb:c2:a9:19:cd:93:69:4c:e9:84:45:c8:58:7c:
d0:b0:41:ca:13:0e:3d:53:90:70:69:2f:94:3e:7e:
90:13:af:f4:cb:e1:22:fa:f7:d6:85:6d:54:2d:8a:
97:0f:78:b0:33:4d:27:c6:08:2a:5c:b5:34:0f:c2:
96:d8:48:ea:60:ce:f5:92:3a:e2:96:70:1c:ee:7a:
5f:5b:7c:76:c5:7a:13:7e:0b:01:21:2c:df:e6:35:
fb:c7:15:d0:86:e8:7a:8b:af:18:fa:23:49:3a:c0:
f4:c7:fb:60:9e:6e:22:e1:0f:39:1d:b3:4f:90:44:
9b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A1:99:13:20:B8:D2:28:0A:3F:C9:2B:5A:03:FF:D9:59:32:53:24
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/3qGZEyC40igKP8krWgP_2VkyUyQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.86.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:08:2b:ea:23:ee:eb:17:d3:6a:5a:77:a8:32:45:f6:6b:c3:
52:fc:ad:f6:59:28:58:6e:d1:4b:ed:d1:eb:46:f5:f3:4b:58:
3c:2d:b5:2f:f3:b2:8e:2f:b5:5c:75:bf:38:c4:fa:be:a1:1c:
27:d4:88:73:0b:75:9c:1b:6b:e7:54:00:6a:72:08:bf:6d:a2:
ed:ad:50:b4:73:ff:a3:6e:90:73:24:c4:dd:76:8a:3d:83:f3:
a6:14:f3:1b:bd:ac:83:85:95:e8:b6:3b:14:06:28:eb:0e:20:
e5:5f:63:5c:c2:d7:8d:79:e6:7d:4b:da:80:4e:bb:c8:5b:8d:
7e:fa:25:24:ac:69:67:e5:8a:42:45:77:d1:da:91:5e:42:ae:
65:12:e0:39:47:0a:1a:66:62:50:d2:30:3a:c9:d3:98:e0:74:
87:f4:7d:48:a8:97:8a:eb:18:cc:0e:cf:26:da:5a:fe:cf:f8:
fa:0b:45:fd:9d:24:db:1c:52:ce:14:05:2a:ca:24:b2:bd:ee:
6f:99:33:cd:c5:10:37:56:f9:31:4d:c6:60:98:df:f7:bd:a4:
3b:b4:e6:be:25:4e:3a:81:76:01:65:10:05:da:22:30:c2:de:
6b:f7:21:3e:bf:96:3d:25:97:b3:22:d2:45:07:88:72:1f:62:
47:95:f8:d5
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCQcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC
M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMTAyMDcx
MTU1NDdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKERFQTE5OTEzMjBCOEQy
MjgwQTNGQzkyQjVBMDNGRkQ5NTkzMjUzMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYP3hh0JzZO8GM9quyPBhO4RKLgc9hFnqDtxWSD/MdxTa6W8vh
v3BfhH6yLbQhcGrmmf6ydthqMaTxCn19lUYqbGeaGr0g5faNSu9dPKvj70FEspDQ
8CUnvJWHDTT3Tc71SIdGN4PaleaYWU+BPfcXlpQFO820A7ZgPUTnIHv+8o0Bk3B1
ksS7wqkZzZNpTOmERchYfNCwQcoTDj1TkHBpL5Q+fpATr/TL4SL699aFbVQtipcP
eLAzTSfGCCpctTQPwpbYSOpgzvWSOuKWcBzuel9bfHbFehN+CwEhLN/mNfvHFdCG
6HqLrxj6I0k6wPTH+2CebiLhDzkds0+QRJvhAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU3qGZEyC40igKP8krWgP/2VkyUyQwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT
KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU
L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULzNxR1pFeUM0MGlnS1A4a3JX
Z1BfMlZreVV5US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9
OFYwDQYJKoZIhvcNAQELBQADggEBACoIK+oj7usX02pad6gyRfZrw1L8rfZZKFhu
0Uvt0etG9fNLWDwttS/zso4vtVx1vzjE+r6hHCfUiHMLdZwba+dUAGpyCL9tou2t
ULRz/6NukHMkxN12ij2D86YU8xu9rIOFlei2OxQGKOsOIOVfY1zC14155n1L2oBO
u8hbjX76JSSsaWflikJFd9HakV5CrmUS4DlHChpmYlDSMDrJ05jgdIf0fUiol4rr
GMwOzybaWv7P+PoLRf2dJNscUs4UBSrKJLK97m+ZM83FEDdW+TFNxmCY3/e9pDu0
5r4lTjqBdgFlEAXaIjDC3mv3IT6/lj0ll7Mi0kUHiHIfYkeV+NU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org