Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/czWtKT5yh8eypIpigK6twrJLktc.roa
File: czWtKT5yh8eypIpigK6twrJLktc.roa (raw, json)
Hash identifier: +q0ABEFEKcPFoKYGCEzONSTnBADLA1FfHJTBNajp+so=
Subject key identifier: 73:35:AD:29:3E:72:87:C7:B2:A4:8A:62:80:AE:AD:C2:B2:4B:92:D7
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 09BE
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/czWtKT5yh8eypIpigK6twrJLktc.roa
Signing time: Wed 29 Sep 2021 02:36:45 +0000
ROA not before: Wed 29 Sep 2021 02:36:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9244
IP address blocks: 61.247.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2494 (0x9be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 02:36:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7335AD293E7287C7B2A48A6280AEADC2B24B92D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2d:30:38:5a:e2:5e:c3:4c:af:ed:b1:63:1b:
0e:79:28:5b:f3:83:95:74:b8:e8:51:c6:ad:fa:95:
d1:da:25:d2:92:c3:28:66:af:b6:e8:e0:c3:4e:07:
1c:3f:a6:f2:5a:8c:a6:03:00:52:7a:83:10:6e:f7:
90:b4:f2:5d:4d:75:68:7d:d4:ea:ed:81:4a:30:74:
b8:e7:40:52:70:a0:63:13:ad:76:4e:82:d0:51:28:
ec:c2:96:d9:f1:ed:3e:50:67:ac:0f:79:f3:e2:cc:
d5:3a:16:a6:72:f5:a9:55:d5:5f:b3:49:0b:8a:8d:
70:48:31:4a:bc:ac:5d:24:cf:f5:23:fe:b1:97:a7:
af:20:7c:fe:7d:61:70:97:c5:17:54:43:dd:6e:24:
0c:1e:9c:2d:4c:56:b9:7f:17:79:8e:e9:9a:d0:5f:
68:8b:f7:5f:0b:cd:a8:7d:bd:92:6d:42:37:6c:e3:
4e:4a:ea:ec:b1:cc:fa:8e:f4:9e:5e:e9:ce:4e:a0:
3e:f0:d5:68:59:79:17:e5:3c:87:da:0b:11:53:c5:
20:67:6b:86:15:5d:c2:51:b9:6e:60:4d:db:81:a3:
45:ef:06:5f:54:4e:09:3b:44:66:18:84:80:0d:4f:
f8:08:33:66:6c:a3:ab:95:e6:90:0b:00:e3:8c:af:
6a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:35:AD:29:3E:72:87:C7:B2:A4:8A:62:80:AE:AD:C2:B2:4B:92:D7
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/czWtKT5yh8eypIpigK6twrJLktc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.247.160.0/21
Signature Algorithm: sha256WithRSAEncryption
20:c3:88:f9:fe:5b:76:38:25:e5:93:8a:6f:46:9d:e2:b6:2b:
0e:2b:04:a9:98:60:22:31:5e:25:a8:4b:28:61:28:95:81:c3:
e6:1e:bb:73:a2:d8:3a:78:12:03:85:c0:c2:b0:4d:02:a0:1f:
53:c1:b1:c6:0e:8b:04:13:31:90:84:d8:4d:df:c0:ca:fe:57:
29:71:48:d4:e4:1d:c1:96:bd:87:31:bd:bf:0e:2f:a7:88:2d:
37:76:d8:69:07:f9:a3:99:70:4f:78:26:72:15:5c:e8:bf:e8:
36:df:89:48:39:06:34:c8:d6:a7:73:f6:84:89:15:e7:f1:c3:
80:02:57:f9:67:46:8e:8d:61:ac:ba:91:32:f4:44:69:b1:ed:
4a:dc:d2:cd:0a:a3:a2:47:47:92:95:ea:c9:2f:f2:73:3d:3a:
de:a1:38:71:47:cb:87:68:04:55:eb:1e:4a:a6:4e:f6:1a:54:
a7:15:fe:fd:2a:4e:a2:51:1e:58:77:09:f5:db:c2:4b:c0:4d:
ac:a1:8a:66:49:59:4c:b3:1f:19:12:5e:03:c2:af:5d:e8:72:
92:1b:34:17:ef:78:78:19:2d:8d:9a:5d:86:29:40:8a:0e:b0:
11:b7:d7:aa:09:56:bd:72:ff:b3:c7:f4:f9:54:31:4c:08:29:
a0:c2:ee:6a
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCb4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC
M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMTA5Mjkw
MjM2NDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDczMzVBRDI5M0U3Mjg3
QzdCMkE0OEE2MjgwQUVBREMyQjI0QjkyRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTLTA4WuJew0yv7bFjGw55KFvzg5V0uOhRxq36ldHaJdKSwyhm
r7bo4MNOBxw/pvJajKYDAFJ6gxBu95C08l1NdWh91OrtgUowdLjnQFJwoGMTrXZO
gtBRKOzCltnx7T5QZ6wPefPizNU6FqZy9alV1V+zSQuKjXBIMUq8rF0kz/Uj/rGX
p68gfP59YXCXxRdUQ91uJAwenC1MVrl/F3mO6ZrQX2iL918Lzah9vZJtQjds405K
6uyxzPqO9J5e6c5OoD7w1WhZeRflPIfaCxFTxSBna4YVXcJRuW5gTduBo0XvBl9U
Tgk7RGYYhIANT/gIM2Zso6uV5pALAOOMr2oVAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUczWtKT5yh8eypIpigK6twrJLktcwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT
KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU
L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL2N6V3RLVDV5aDhleXBJcGln
SzZ0d3JKTGt0Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9
96AwDQYJKoZIhvcNAQELBQADggEBACDDiPn+W3Y4JeWTim9GneK2Kw4rBKmYYCIx
XiWoSyhhKJWBw+Yeu3Oi2Dp4EgOFwMKwTQKgH1PBscYOiwQTMZCE2E3fwMr+Vylx
SNTkHcGWvYcxvb8OL6eILTd22GkH+aOZcE94JnIVXOi/6DbfiUg5BjTI1qdz9oSJ
Fefxw4ACV/lnRo6NYay6kTL0RGmx7Urc0s0Ko6JHR5KV6skv8nM9Ot6hOHFHy4do
BFXrHkqmTvYaVKcV/v0qTqJRHlh3CfXbwkvATayhimZJWUyzHxkSXgPCr13ocpIb
NBfveHgZLY2aXYYpQIoOsBG316oJVr1y/7PH9PlUMUwIKaDC7mo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org