Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/NWRsozakQ6FB9RIuenmZsP-HmDU.roa
File: NWRsozakQ6FB9RIuenmZsP-HmDU.roa (raw, json)
Hash identifier: 2l9kDeOo5UuZ2eucIc4VsvpqhoeVYIUtboftkpCbFT4=
Subject key identifier: 35:64:6C:A3:36:A4:43:A1:41:F5:12:2E:7A:79:99:B0:FF:87:98:35
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 090F
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/NWRsozakQ6FB9RIuenmZsP-HmDU.roa
Signing time: Sun 07 Feb 2021 11:55:52 +0000
ROA not before: Sun 07 Feb 2021 11:55:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 61.247.168.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2319 (0x90f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Feb 7 11:55:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=35646CA336A443A141F5122E7A7999B0FF879835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:dc:e2:b9:26:0f:e6:57:f1:9b:ef:e8:dc:ea:
8d:f5:18:da:41:39:20:0d:51:fe:0a:76:d3:33:54:
c4:6d:d7:11:5e:0c:8a:4b:3b:f0:e5:be:93:45:28:
c1:3b:95:da:c6:5c:f3:b2:7b:c1:fd:ec:60:84:ed:
de:17:d2:cc:45:1f:02:24:e6:1a:38:28:43:e5:4b:
ec:18:17:f5:fc:e7:ce:7c:87:8b:62:28:5c:98:ad:
8f:72:2c:6b:ef:95:f4:71:83:3c:d8:82:2b:17:15:
ac:06:12:68:f5:c9:04:66:00:f0:bc:ac:b4:a5:6f:
55:76:3f:6e:08:5d:ab:91:7b:1a:b9:29:21:a0:83:
41:aa:d3:57:a1:a6:46:a1:c5:e4:64:3d:40:a7:44:
79:78:c0:0a:34:7b:3f:79:10:6e:c2:6e:24:a5:a2:
65:9f:fa:02:bb:2d:a5:ff:6d:00:97:4a:bd:04:e3:
6c:96:30:56:a4:41:fa:df:a7:15:0d:c2:6a:9f:50:
e8:9f:a3:c3:78:ea:fb:33:28:78:fd:16:07:36:2b:
46:26:b3:a8:0d:f2:d7:7d:8c:1b:dc:c1:b1:8c:0e:
ad:3e:68:a0:4b:bf:65:ce:57:a3:6a:8d:26:71:96:
a4:1c:d3:7b:d4:57:d6:33:82:86:14:3b:f3:15:6a:
6e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:64:6C:A3:36:A4:43:A1:41:F5:12:2E:7A:79:99:B0:FF:87:98:35
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/NWRsozakQ6FB9RIuenmZsP-HmDU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.247.168.0/21
Signature Algorithm: sha256WithRSAEncryption
a3:3d:04:51:f1:c1:dc:94:66:64:ae:74:c1:27:66:a8:1a:93:
8f:d6:b0:fc:44:62:e3:90:c5:49:59:02:da:4b:5a:1a:7b:b6:
2a:32:28:59:61:e5:3a:84:22:45:a3:38:4d:9b:40:13:98:9d:
61:44:44:ec:23:ae:51:c3:ee:34:b4:b4:25:9c:b5:53:e0:92:
e8:eb:31:2c:21:ef:0c:38:b6:85:db:bb:2f:cf:56:52:d6:0c:
44:a4:46:70:b2:25:ef:26:dd:d6:b0:2f:fc:85:25:2e:68:45:
80:55:65:57:36:10:b0:8d:51:25:6f:a5:a4:44:82:72:57:65:
4e:ca:d8:08:db:60:44:bb:2e:51:0f:6b:c8:3e:5d:eb:f4:15:
83:98:0c:ab:ff:32:a6:7e:ab:96:91:21:83:ef:f2:b6:af:d0:
77:c2:b3:56:f2:af:7b:e9:b9:da:26:d1:fd:1b:66:e5:36:80:
81:88:18:0e:e1:9a:22:1f:ab:80:cf:2d:85:19:74:39:b1:d2:
09:ba:40:4d:6f:e0:b9:37:2c:ee:fb:dc:17:d8:c0:c1:ae:df:
d9:f5:d2:fc:3b:7b:21:c5:bf:d5:09:6b:c5:1d:44:73:8e:4f:
6a:0a:8b:d9:6e:d3:7a:50:9f:28:cb:63:df:af:02:45:85:e8:
eb:05:89:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org