Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/941530tqyVXfAyYcrlOyqvuvpgA.roa
File: 941530tqyVXfAyYcrlOyqvuvpgA.roa (raw, json)
Hash identifier: X8+vJIg2EjUctGyrKBCnQDwFDZxLAqyL/aLy5o9G0X0=
Subject key identifier: F7:8D:79:DF:4B:6A:C9:55:DF:03:26:1C:AE:53:B2:AA:FB:AF:A6:00
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 09C4
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/941530tqyVXfAyYcrlOyqvuvpgA.roa
Signing time: Wed 29 Sep 2021 02:36:46 +0000
ROA not before: Wed 29 Sep 2021 02:36:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9244
IP address blocks: 61.56.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2500 (0x9c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 02:36:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F78D79DF4B6AC955DF03261CAE53B2AAFBAFA600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7f:72:f1:ea:6c:43:1c:63:ad:a1:93:a0:f7:
ea:03:f7:d7:6e:8f:b5:cd:1d:5e:33:b2:c3:44:f8:
41:40:12:9a:98:ea:ac:6e:82:97:f0:ec:b4:d0:7a:
e4:cf:3e:84:6c:ef:be:99:3e:7f:de:9f:3e:42:e1:
b8:11:26:05:07:eb:eb:4c:56:64:d3:57:be:a0:5d:
1a:28:9d:71:61:0e:88:8e:4f:a1:b5:d5:b8:e8:3e:
5b:65:8f:36:be:41:f5:c5:9c:cf:87:22:b5:dd:83:
f3:ff:3b:50:43:c3:12:78:86:c6:b5:15:97:1a:a8:
6c:1b:3f:98:40:e3:47:9c:f8:d9:ca:10:fb:75:c4:
6b:ef:80:a6:1c:d1:01:df:9e:73:c4:3f:79:63:c7:
47:49:eb:96:91:3b:8f:aa:97:1d:93:c9:5e:83:8c:
bc:8b:c9:f1:32:a7:a1:0e:1d:37:bb:9c:af:18:b1:
20:41:3e:5e:e6:99:83:cb:71:4a:a8:ec:61:92:97:
74:77:bd:f0:af:85:57:90:84:0f:66:72:ac:95:44:
a7:b6:5a:40:2b:95:17:4f:c8:ba:de:e6:35:21:10:
b6:ed:85:ee:e6:38:97:ab:9b:42:16:79:88:ff:2c:
62:62:87:5d:e1:f6:f8:e5:ec:c2:0a:fc:c8:5f:86:
1b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:8D:79:DF:4B:6A:C9:55:DF:03:26:1C:AE:53:B2:AA:FB:AF:A6:00
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/941530tqyVXfAyYcrlOyqvuvpgA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.65.0/24
Signature Algorithm: sha256WithRSAEncryption
79:1b:78:6d:16:de:fd:26:41:37:31:72:a7:de:e3:84:fc:e7:
33:c3:2a:9a:89:ef:d5:b0:37:2f:85:01:8a:9b:98:16:3d:2f:
1b:8d:de:52:ec:cf:b8:61:90:21:01:7b:72:40:11:d6:b2:62:
90:ac:4a:c3:9f:7c:38:81:cb:f9:74:1a:ba:11:58:c9:9c:97:
90:b2:6a:d7:e7:30:a6:48:3c:45:f9:89:35:a3:86:95:df:e7:
2f:5c:8e:0a:0a:33:90:5c:df:32:1d:a4:95:90:03:41:0b:56:
6a:1d:4a:b8:d3:09:83:98:f3:c0:6a:85:7e:00:27:89:7e:5b:
4b:57:d9:9b:df:bb:90:b4:26:0c:b6:00:c3:50:23:0c:ee:b4:
ee:be:59:29:6d:21:01:4c:be:81:39:2d:49:94:23:cc:e3:8a:
b8:81:67:fb:c3:cd:41:89:40:7f:41:9a:19:4f:1b:21:a4:04:
91:34:ea:e3:f8:5c:3e:0e:8d:d2:1c:be:bb:8a:13:da:bf:24:
36:ee:27:69:11:b9:08:eb:8c:24:f8:68:4c:9a:64:7b:ea:2d:
43:64:fc:7a:54:b2:97:58:66:0d:24:d7:53:4b:e2:ed:76:06:
d9:19:b5:f9:b9:b6:eb:e9:00:d2:91:16:c9:c3:d4:88:44:6b:
e7:bd:e5:07
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCcQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC
M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMTA5Mjkw
MjM2NDZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEY3OEQ3OURGNEI2QUM5
NTVERjAzMjYxQ0FFNTNCMkFBRkJBRkE2MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKf3Lx6mxDHGOtoZOg9+oD99duj7XNHV4zssNE+EFAEpqY6qxu
gpfw7LTQeuTPPoRs776ZPn/enz5C4bgRJgUH6+tMVmTTV76gXRoonXFhDoiOT6G1
1bjoPltljza+QfXFnM+HIrXdg/P/O1BDwxJ4hsa1FZcaqGwbP5hA40ec+NnKEPt1
xGvvgKYc0QHfnnPEP3ljx0dJ65aRO4+qlx2TyV6DjLyLyfEyp6EOHTe7nK8YsSBB
Pl7mmYPLcUqo7GGSl3R3vfCvhVeQhA9mcqyVRKe2WkArlRdPyLre5jUhELbthe7m
OJerm0IWeYj/LGJih13h9vjl7MIK/Mhfhhs5AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU941530tqyVXfAyYcrlOyqvuvpgAwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT
KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU
L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVULzk0MTUzMHRxeVZYZkF5WWNy
bE95cXZ1dnBnQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9
OEEwDQYJKoZIhvcNAQELBQADggEBAHkbeG0W3v0mQTcxcqfe44T85zPDKpqJ79Ww
Ny+FAYqbmBY9LxuN3lLsz7hhkCEBe3JAEdayYpCsSsOffDiBy/l0GroRWMmcl5Cy
atfnMKZIPEX5iTWjhpXf5y9cjgoKM5Bc3zIdpJWQA0ELVmodSrjTCYOY88BqhX4A
J4l+W0tX2Zvfu5C0Jgy2AMNQIwzutO6+WSltIQFMvoE5LUmUI8zjiriBZ/vDzUGJ
QH9BmhlPGyGkBJE06uP4XD4OjdIcvruKE9q/JDbuJ2kRuQjrjCT4aEyaZHvqLUNk
/HpUspdYZg0k11NL4u12BtkZtfm5tuvpANKRFsnD1IhEa+e95Qc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org