Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Ub8KBMAPjBYb1bCKn_Rg9OPHPTE.roa
File: Ub8KBMAPjBYb1bCKn_Rg9OPHPTE.roa (raw, json)
Hash identifier: u6KmGypK2MNSVb5xnDe+Ls/YmToh01zZFt5FOqEwtkg=
Subject key identifier: 51:BF:0A:04:C0:0F:8C:16:1B:D5:B0:8A:9F:F4:60:F4:E3:C7:3D:31
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0795
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Ub8KBMAPjBYb1bCKn_Rg9OPHPTE.roa
Signing time: Tue 29 Sep 2020 10:03:12 +0000
ROA not before: Tue 29 Sep 2020 10:03:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 113.21.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1941 (0x795)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 10:03:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=51BF0A04C00F8C161BD5B08A9FF460F4E3C73D31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ab:e5:34:bb:13:dd:86:c3:ec:4a:97:68:ff:
fe:ba:2f:db:a6:b4:f8:c0:89:28:fe:17:84:29:75:
4c:83:1c:8e:f2:a7:7a:05:4d:ec:44:d7:aa:94:b1:
59:61:6f:6b:6c:e3:71:34:2c:61:54:10:5d:0e:bc:
eb:02:ca:14:4b:28:bf:52:62:33:08:5d:7d:c8:72:
02:8f:4d:9f:1c:3a:df:e7:3a:b4:b0:87:bc:38:ef:
7e:d0:33:1f:3c:59:46:11:a0:7c:22:8b:99:f1:5e:
23:65:a4:03:8f:95:7e:de:b6:07:4f:63:82:f0:30:
a1:9a:34:aa:3c:78:da:3c:91:9b:a2:7b:45:06:ea:
6f:e4:82:b7:5b:0a:21:92:58:dd:c2:bb:b6:c2:76:
13:81:9a:8b:90:91:b4:b0:ad:95:54:18:09:02:5b:
13:3b:b8:fe:60:7b:ce:b4:99:c0:21:b6:34:e9:06:
b0:1d:4e:cc:5a:8a:e8:2d:c7:c2:3e:e7:8d:c1:d3:
da:4e:1d:5d:08:09:e4:e3:2d:e6:45:8a:1a:d2:21:
f1:39:d1:31:86:63:5a:87:12:5b:78:7a:68:b8:cb:
0f:fd:50:00:5d:e8:73:d0:44:e1:a0:33:29:75:d5:
c8:95:af:09:b6:d6:db:85:b8:3a:15:d1:9a:db:08:
0d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:BF:0A:04:C0:0F:8C:16:1B:D5:B0:8A:9F:F4:60:F4:E3:C7:3D:31
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/Ub8KBMAPjBYb1bCKn_Rg9OPHPTE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.175.0/24
Signature Algorithm: sha256WithRSAEncryption
66:2d:55:f6:45:8c:da:70:9c:95:e7:37:29:66:02:37:68:db:
18:c6:9a:c8:5b:83:56:5a:f0:0d:9e:9a:c8:1e:a5:47:61:29:
01:fa:65:dd:f8:a5:55:d9:d7:11:09:5c:a8:92:63:c2:a7:17:
0f:29:12:8a:1c:fa:24:16:42:3c:f1:92:df:42:0c:db:1d:c7:
74:70:14:48:71:69:3a:22:38:3a:84:73:91:3d:ce:5a:13:72:
1c:d8:3f:32:90:8d:74:cc:73:1e:fe:0c:aa:43:99:88:b3:60:
09:69:43:fe:33:0a:e1:57:cc:da:93:da:c9:bd:05:ad:0d:1f:
84:e4:95:7e:cf:c7:3e:23:d1:cc:18:de:0e:d6:75:30:78:dd:
37:19:84:1d:a2:57:02:c6:0a:96:bd:2a:95:bb:83:5c:3e:3a:
8e:f2:93:d2:fb:75:0f:52:26:90:df:de:19:68:14:52:a8:3f:
9a:18:6d:f6:52:e1:c5:f4:86:2e:4b:9a:f8:d4:2f:84:d9:ed:
5a:da:a6:5c:b0:19:37:09:92:f9:88:92:18:41:f4:d8:0b:50:
6b:2b:25:3b:b7:e1:64:99:59:1f:47:de:82:a5:d2:46:b5:53:
9f:b0:40:80:da:72:c6:0b:e6:6d:e1:b2:4d:9f:02:08:fe:d1:
11:c1:f7:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org