Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/R2FFnTdq5JiwW0dmOMMWl8uUYv0.roa
File: R2FFnTdq5JiwW0dmOMMWl8uUYv0.roa (raw, json)
Hash identifier: XdFf8msFeoLI1i14irYMNsXi/h1Om7dlV+ltXTT6sqU=
Subject key identifier: 47:61:45:9D:37:6A:E4:98:B0:5B:47:66:38:C3:16:97:CB:94:62:FD
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0915
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/R2FFnTdq5JiwW0dmOMMWl8uUYv0.roa
Signing time: Sun 07 Feb 2021 11:55:56 +0000
ROA not before: Sun 07 Feb 2021 11:55:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 113.21.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2325 (0x915)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Feb 7 11:55:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4761459D376AE498B05B476638C31697CB9462FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ac:41:b5:00:eb:cb:cf:b6:fb:18:d1:fe:fc:
b6:c4:ba:48:bf:dc:14:fd:ed:d6:e4:ac:c4:f7:25:
22:9d:59:4b:86:ed:35:42:1c:60:88:54:e5:8f:60:
ae:d9:32:a7:ff:38:8d:a2:86:c0:1a:83:78:a5:4c:
d5:63:9e:dc:72:77:f2:fd:0d:c4:e6:e1:9a:65:15:
d9:9f:ab:3c:68:06:12:fa:9b:86:0c:4d:50:63:03:
cb:a5:03:90:57:3c:a7:96:68:c3:bd:04:c9:20:0d:
e7:4f:b8:8c:73:60:c9:6a:ca:27:74:74:8b:08:0e:
28:ad:20:79:76:5a:be:3e:33:76:de:e7:bf:29:27:
7c:e9:df:1d:98:9a:e2:ce:64:b3:ba:c7:97:df:0b:
fb:04:e6:66:3f:1d:fb:c9:8d:ef:3b:f0:5c:87:96:
26:56:be:28:0c:98:47:a1:c1:9d:7f:10:5a:30:87:
b3:20:33:69:a0:93:32:0f:16:02:c7:52:9f:42:74:
53:58:13:6b:9b:f1:76:c6:6d:58:7e:df:f9:11:3d:
9f:da:74:08:1d:8b:25:c4:b7:f6:bc:b6:7c:0a:07:
d3:3d:53:24:7f:c8:c7:cb:0e:d1:fd:c9:18:e8:8f:
b2:f9:2e:25:2c:73:e4:e9:2a:61:09:9a:18:71:70:
38:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:61:45:9D:37:6A:E4:98:B0:5B:47:66:38:C3:16:97:CB:94:62:FD
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/R2FFnTdq5JiwW0dmOMMWl8uUYv0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.175.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:91:ee:57:de:1c:32:2c:61:08:05:ba:9a:70:a4:4e:b8:54:
75:cc:f1:84:b1:74:54:40:5a:50:48:cc:79:f3:95:43:da:f3:
90:18:97:77:e1:5b:29:28:5e:60:7e:f4:e6:5f:60:f7:7c:09:
5a:99:5b:75:f3:d4:2e:58:d3:2f:fb:aa:74:af:2b:1a:bd:76:
7a:64:17:4d:ea:98:08:c1:11:41:9f:88:46:ad:26:a1:31:11:
f6:00:9b:53:b6:b5:85:10:32:dc:39:f0:55:2e:bb:3b:45:e0:
aa:28:a1:77:3f:d4:78:2b:d1:4f:a6:4a:f5:0c:26:69:56:8c:
24:8e:60:70:6f:a6:8a:34:9a:01:03:c0:e2:10:23:4a:da:c0:
33:1b:a6:d5:af:ed:0f:23:c5:32:29:2b:89:83:a2:92:47:a7:
2c:b6:e4:67:35:f3:e6:02:a4:98:93:0e:4b:65:8f:5e:c6:1f:
bf:c1:60:25:86:a7:6e:65:11:24:40:a9:84:07:2f:8a:ff:08:
e7:71:77:ed:cd:fb:74:1b:33:96:f2:bb:38:ee:c1:da:01:13:
fe:b3:cd:13:42:5d:19:b5:e0:83:4b:b4:6a:7a:2e:31:f3:a6:
19:c7:e9:a9:b3:bc:14:79:89:0a:00:bf:3e:e9:4f:6b:67:f6:
6c:9b:af:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org