Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/HCNlxZVJN65Pq20j5MTrpHt3VQA.roa
File: HCNlxZVJN65Pq20j5MTrpHt3VQA.roa (raw, json)
Hash identifier: akXCB02qkAy+x651qa85ACXNvPkMaqdjVuyktpHZZ6w=
Subject key identifier: 1C:23:65:C5:95:49:37:AE:4F:AB:6D:23:E4:C4:EB:A4:7B:77:55:00
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0792
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/HCNlxZVJN65Pq20j5MTrpHt3VQA.roa
Signing time: Tue 29 Sep 2020 10:03:12 +0000
ROA not before: Tue 29 Sep 2020 10:03:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 61.56.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1938 (0x792)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 10:03:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1C2365C5954937AE4FAB6D23E4C4EBA47B775500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:70:66:7c:c7:89:0a:26:f6:20:fb:9a:fd:3e:
71:a6:d6:a0:29:aa:97:9b:6c:4d:1c:a2:02:9c:cc:
b1:10:ca:5f:6d:1f:89:b6:b6:d3:18:b1:2f:ca:e0:
93:bf:4f:61:63:7f:d7:34:e0:79:35:9e:a4:91:46:
85:a7:fb:d8:24:f5:66:0b:46:d4:76:84:c4:5a:fa:
0e:57:15:58:cf:17:c7:00:a2:87:c8:da:43:d1:7b:
14:ab:57:27:69:02:10:11:2a:d4:ac:00:bc:9d:93:
4d:f2:c7:0f:55:dc:68:82:46:02:ce:fc:c7:35:be:
68:8c:5b:fa:40:c5:0d:e7:dc:17:dd:5b:ec:18:58:
45:27:fb:41:1d:e1:a8:a6:a7:ce:c5:ec:16:c1:45:
27:2c:dc:64:03:af:18:8a:23:a7:03:19:cb:9e:92:
42:a2:2d:58:5e:14:76:0c:09:6f:e7:57:4f:d5:12:
bf:50:7b:bc:c9:11:b9:bf:3c:6a:1d:d8:39:b9:4f:
64:9a:35:7c:13:51:43:b2:77:04:84:17:e2:0b:78:
e0:37:ba:a8:4f:10:da:26:bd:44:6b:7a:c7:6d:e5:
f6:d4:e0:ce:11:de:b0:23:6c:fb:5c:91:04:68:cf:
a8:0a:d6:a6:01:f2:5b:4f:2a:89:aa:20:8f:d5:b8:
2e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:23:65:C5:95:49:37:AE:4F:AB:6D:23:E4:C4:EB:A4:7B:77:55:00
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/HCNlxZVJN65Pq20j5MTrpHt3VQA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.86.0/24
Signature Algorithm: sha256WithRSAEncryption
60:8e:e7:b1:07:b0:a3:9f:a0:ae:5b:6e:45:79:eb:1b:6c:87:
ea:05:30:cd:fc:42:62:e2:aa:1f:ce:a8:4a:34:e6:ed:6f:3c:
cc:60:10:ae:3f:ed:1e:df:3e:03:fb:98:3b:23:ae:b7:c9:5c:
91:ba:d7:c9:b6:c4:ad:06:3b:b5:7f:9f:26:57:4a:b2:8d:a2:
82:71:0c:36:c8:0f:b5:cd:0b:e6:55:14:5a:0b:31:2d:9d:86:
bd:64:31:44:42:95:bd:c2:a5:03:4b:66:26:4c:f3:2e:7c:80:
df:03:85:b1:eb:fe:b9:12:27:b9:69:8e:c6:a1:2d:5d:8b:e0:
58:d3:ba:ed:6c:0e:e6:08:87:bf:d5:05:4a:12:04:b4:85:5e:
97:a6:e9:40:0e:aa:73:fb:70:77:a8:9a:50:e2:13:8c:0e:fc:
9d:43:e5:0d:8d:ae:e8:8f:e3:fd:04:98:cb:e8:77:44:8d:0f:
f5:3b:3d:2e:3d:30:b4:c4:d0:2a:73:d8:bc:74:58:93:12:f5:
cf:d5:b0:8f:61:bf:29:13:b3:47:0e:fc:ec:a0:f8:9d:2e:79:
be:f8:81:97:63:b1:22:c5:e2:16:28:27:f8:4d:f7:aa:57:f7:
33:57:52:cb:15:1d:90:e2:df:99:9a:ea:d2:a9:88:4c:5d:1c:
c0:a7:56:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org