Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/IexsYua3XjOEUla8buDq56eZVgQ.roa
File: IexsYua3XjOEUla8buDq56eZVgQ.roa (raw, json)
Hash identifier: y2Au+P09b2ISDetV9skHj4wbpBEauiUJukdRI1Wrm9E=
Subject key identifier: 21:EC:6C:62:E6:B7:5E:33:84:52:56:BC:6E:E0:EA:E7:A7:99:56:04
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 09C8
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/IexsYua3XjOEUla8buDq56eZVgQ.roa
Signing time: Wed 29 Sep 2021 02:36:47 +0000
ROA not before: Wed 29 Sep 2021 02:36:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9244
IP address blocks: 61.247.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2504 (0x9c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 02:36:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=21EC6C62E6B75E33845256BC6EE0EAE7A7995604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:93:a9:18:96:30:77:a4:0c:6b:14:1d:de:c4:
86:5a:d3:b2:fa:ff:54:f3:98:6a:1c:2a:40:93:bb:
fa:d5:a9:f0:57:c0:9e:12:f2:18:38:74:f0:89:3f:
f3:21:ce:e9:da:a2:4b:71:4d:0a:2f:ca:e7:ed:80:
56:bd:b9:3d:14:ad:d5:8f:4d:15:35:52:81:b9:62:
aa:1e:05:8e:86:cb:e9:d9:37:e8:3d:8b:07:8e:6e:
2a:b2:5d:f2:ee:1b:d0:c2:95:bb:58:cd:21:18:50:
67:6d:84:95:55:ab:38:d4:87:fd:ec:47:f8:29:36:
92:90:77:9a:86:12:47:f6:cd:35:be:80:18:96:a7:
32:38:ef:30:23:cf:55:bd:1d:5a:ba:7f:ad:a5:9c:
5a:bb:6f:20:7f:96:df:1b:a0:b7:76:96:ac:f8:9e:
50:d7:df:12:8d:e6:e9:e1:8f:e5:19:52:cb:5e:0f:
a5:17:06:00:0a:85:12:5a:3d:31:d1:17:62:c0:cc:
df:84:e5:2b:98:de:ad:07:84:4c:01:d0:ba:db:06:
fd:0e:fd:61:1a:42:dc:8c:12:39:05:9e:51:f6:1f:
32:0e:e1:c4:24:07:82:ad:b1:e1:28:22:e4:8e:b6:
bc:71:8d:f2:6e:b9:a2:95:10:ce:c4:80:83:d4:50:
19:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:EC:6C:62:E6:B7:5E:33:84:52:56:BC:6E:E0:EA:E7:A7:99:56:04
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/IexsYua3XjOEUla8buDq56eZVgQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.247.160.0/20
Signature Algorithm: sha256WithRSAEncryption
76:d9:5d:9f:73:f7:62:d0:c6:d9:9b:0d:77:11:e7:19:b7:a0:
ed:79:e2:9b:75:2b:64:d2:e5:27:a0:9d:45:15:48:e3:28:1f:
78:93:5a:1f:e0:32:7e:0c:6e:f4:2f:32:6e:b4:dd:97:3b:a7:
6d:c4:14:4d:c8:2d:7a:a3:aa:8f:ef:75:36:fe:62:94:f7:7e:
1c:bb:9f:7a:7e:67:7c:f4:6b:85:ca:7a:e2:18:4a:51:fc:6b:
c6:d4:ed:a5:92:c2:30:d8:2d:a1:41:c4:21:aa:ba:2d:c4:90:
a7:e1:c8:06:b6:7d:21:79:dc:b1:8c:24:78:2b:9d:99:dc:55:
77:da:91:71:10:9c:db:12:f8:39:4b:4f:84:c9:71:8b:db:55:
7d:36:46:6b:dc:77:bc:1e:f2:e1:dc:38:48:f4:4f:14:1e:7f:
58:a7:ff:d7:eb:e3:c8:14:18:80:e4:63:2a:78:14:a7:31:43:
4d:f1:d4:d4:9e:f2:d6:25:4b:2c:15:ab:71:b7:e4:a6:16:b8:
4d:d4:e6:9b:fc:27:3c:b4:90:93:a8:a4:5b:d0:53:c4:3c:e0:
30:08:fb:ac:5d:b2:42:24:95:09:09:44:10:bc:7a:21:57:0a:
59:77:9b:95:6f:b5:77:83:c0:b1:b7:5d:79:be:9d:50:24:4e:
21:47:75:84
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCcgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC
M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMTA5Mjkw
MjM2NDdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDIxRUM2QzYyRTZCNzVF
MzM4NDUyNTZCQzZFRTBFQUU3QTc5OTU2MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9k6kYljB3pAxrFB3exIZa07L6/1TzmGocKkCTu/rVqfBXwJ4S
8hg4dPCJP/MhzunaoktxTQovyuftgFa9uT0UrdWPTRU1UoG5YqoeBY6Gy+nZN+g9
iweObiqyXfLuG9DClbtYzSEYUGdthJVVqzjUh/3sR/gpNpKQd5qGEkf2zTW+gBiW
pzI47zAjz1W9HVq6f62lnFq7byB/lt8boLd2lqz4nlDX3xKN5unhj+UZUsteD6UX
BgAKhRJaPTHRF2LAzN+E5SuY3q0HhEwB0LrbBv0O/WEaQtyMEjkFnlH2HzIO4cQk
B4KtseEoIuSOtrxxjfJuuaKVEM7EgIPUUBn1AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUIexsYua3XjOEUla8buDq56eZVgQwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT
KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU
L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL0lleHNZdWEzWGpPRVVsYThi
dURxNTZlWlZnUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9
96AwDQYJKoZIhvcNAQELBQADggEBAHbZXZ9z92LQxtmbDXcR5xm3oO154pt1K2TS
5SegnUUVSOMoH3iTWh/gMn4MbvQvMm603Zc7p23EFE3ILXqjqo/vdTb+YpT3fhy7
n3p+Z3z0a4XKeuIYSlH8a8bU7aWSwjDYLaFBxCGqui3EkKfhyAa2fSF53LGMJHgr
nZncVXfakXEQnNsS+DlLT4TJcYvbVX02Rmvcd7we8uHcOEj0TxQef1in/9fr48gU
GIDkYyp4FKcxQ03x1NSe8tYlSywVq3G35KYWuE3U5pv8Jzy0kJOopFvQU8Q84DAI
+6xdskIklQkJRBC8eiFXCll3m5VvtXeDwLG3XXm+nVAkTiFHdYQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org