Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/YqLz14keMEK-x3IPi9F8jRxXTkY.roa
File: YqLz14keMEK-x3IPi9F8jRxXTkY.roa (raw, json)
Hash identifier: vVsJ9XWxZlD5aQHr3WEhrdmh270IuRRUNq3VW03EfbA=
Subject key identifier: 62:A2:F3:D7:89:1E:30:42:BE:C7:72:0F:8B:D1:7C:8D:1C:57:4E:46
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 078F
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/YqLz14keMEK-x3IPi9F8jRxXTkY.roa
Signing time: Tue 29 Sep 2020 10:03:11 +0000
ROA not before: Tue 29 Sep 2020 10:03:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 113.21.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1935 (0x78f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 10:03:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=62A2F3D7891E3042BEC7720F8BD17C8D1C574E46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6a:0f:4d:a1:b2:c0:ce:94:b6:8a:67:7a:fc:
8d:4c:31:54:be:2d:03:d0:c3:a4:8f:bd:72:f2:1e:
ed:0d:df:c0:ae:60:de:89:6d:7b:ca:54:68:2c:2e:
b8:b9:0b:8f:2c:6a:d1:8f:12:c2:b8:c0:94:ef:a4:
86:f9:84:b2:3c:a6:c8:65:2d:b1:94:43:59:4b:c4:
1b:73:dd:cb:77:a4:66:72:23:8c:5f:ff:13:44:c2:
fa:b4:33:5b:50:dd:9d:b0:01:f3:dd:8d:83:aa:ea:
b9:da:1d:39:b0:0d:bb:4b:db:bb:5a:51:8b:91:05:
91:9f:4f:19:54:c3:c8:0e:73:bb:ff:0e:c4:08:d0:
a3:1b:9d:7f:c5:4f:ba:84:fa:cc:e8:6e:43:b6:33:
89:22:32:c8:07:1c:45:d8:c7:24:bc:f8:19:af:af:
01:31:1c:a3:cc:b2:f2:5c:27:44:c2:e9:dd:d4:89:
5d:d1:0f:5a:b3:71:5e:7e:98:b1:8c:fd:3e:da:42:
30:9d:fc:68:57:dc:17:a0:5a:12:36:01:99:c6:4a:
5d:78:37:36:c9:d5:09:98:3b:c6:41:aa:61:07:64:
1b:4e:f8:9e:f0:4d:c2:4d:73:54:51:67:24:95:76:
61:8b:40:7a:ab:f7:8d:90:04:67:1e:f7:93:d5:68:
de:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A2:F3:D7:89:1E:30:42:BE:C7:72:0F:8B:D1:7C:8D:1C:57:4E:46
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/YqLz14keMEK-x3IPi9F8jRxXTkY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.160.0/20
Signature Algorithm: sha256WithRSAEncryption
af:63:96:f2:de:f2:f1:f3:4e:2b:5b:72:ff:75:47:28:ed:b8:
66:6c:31:f6:91:6d:eb:5c:fc:40:c0:e8:06:8d:b3:f8:e8:81:
c2:c3:c1:74:4f:c5:7f:88:3b:84:ee:e0:f4:27:24:60:51:d3:
61:bd:70:8c:9b:fc:dd:60:ee:f4:e1:61:0b:ee:a3:af:a1:a0:
4e:35:e5:0e:1c:54:22:71:71:78:db:59:f5:c2:6b:62:a7:b6:
71:4d:77:7b:da:89:45:fa:b8:6d:05:ab:2a:bc:4b:f3:68:95:
36:f5:d0:6a:c0:e8:78:7d:aa:f4:41:f3:55:ed:37:95:3b:2b:
bd:f1:a4:6c:a8:87:9f:af:ce:35:00:6f:d8:0b:93:33:ce:35:
5a:0c:5b:fa:82:5b:4f:48:ff:14:2f:96:85:24:f4:a4:a8:fd:
a7:a8:8f:69:31:5a:3d:0b:2c:da:7c:20:df:13:83:65:c0:2c:
68:2c:95:10:ac:14:f8:b7:a5:b4:eb:63:b4:c7:d4:cb:fd:25:
d4:8f:f8:b1:ea:2f:dc:6e:82:95:df:0b:f7:bf:2e:0a:30:db:
3c:e0:1e:b2:15:49:fa:8a:6f:7a:f5:ff:6d:21:0f:d2:ed:1d:
62:e4:93:3a:2d:61:96:c3:b5:3f:15:2f:ff:fe:7a:59:f9:7e:
92:a6:cc:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org