Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/fZOFpPoUAIm3Sx3wtcZw4CULUFw.roa
File: fZOFpPoUAIm3Sx3wtcZw4CULUFw.roa (raw, json)
Hash identifier: nAJLQvSZNj+PkRZX9jPErMf/6RN1xWoS1AMqhN/ItN0=
Subject key identifier: 7D:93:85:A4:FA:14:00:89:B7:4B:1D:F0:B5:C6:70:E0:25:0B:50:5C
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 08FB
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/fZOFpPoUAIm3Sx3wtcZw4CULUFw.roa
Signing time: Sun 07 Feb 2021 11:55:38 +0000
ROA not before: Sun 07 Feb 2021 11:55:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 61.56.80.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2299 (0x8fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Feb 7 11:55:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7D9385A4FA140089B74B1DF0B5C670E0250B505C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:41:77:3d:c9:6a:4d:9d:5a:21:64:e5:66:0f:
58:35:07:26:1b:41:89:9d:65:8c:74:d0:56:ed:3a:
b1:75:9b:39:3f:1e:bd:fc:7b:4c:93:d0:84:26:a3:
90:e2:e0:8a:1f:bb:ca:0f:8d:ab:ee:06:49:df:47:
d5:4f:33:ce:11:72:68:2b:f2:d4:9d:1e:5a:78:b9:
08:1b:b2:da:59:85:82:df:db:05:e8:7d:40:db:f0:
69:3a:a7:74:b4:0d:dd:1e:6e:0d:7e:ac:13:72:9f:
6d:92:bf:79:e6:a9:49:a1:40:13:be:77:c4:ac:3d:
b5:48:8f:8d:63:ea:c0:26:15:80:48:05:6b:1f:09:
a0:85:d0:0b:91:15:f0:98:94:e5:d4:7b:de:64:ea:
57:ec:5d:7b:00:c7:01:d3:de:94:ef:bc:d1:78:ec:
da:ba:0a:1c:df:dd:42:86:93:f9:81:ea:66:90:9a:
ee:d0:40:71:74:eb:34:12:f0:c8:82:43:0f:ca:a0:
91:b3:15:71:a6:73:65:5e:81:9b:45:19:09:75:75:
51:16:4b:ca:c7:0a:10:f8:9d:f3:f4:ca:f4:b2:e1:
2d:b1:a9:96:19:53:71:8f:df:9c:13:ae:ef:c7:f4:
d7:d1:a6:b0:f2:9f:05:37:5b:6b:b2:6f:d0:f0:86:
d8:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:93:85:A4:FA:14:00:89:B7:4B:1D:F0:B5:C6:70:E0:25:0B:50:5C
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/fZOFpPoUAIm3Sx3wtcZw4CULUFw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.80.0/20
Signature Algorithm: sha256WithRSAEncryption
1a:48:3d:d7:b0:1c:10:bb:de:39:93:19:21:fc:2e:25:14:bc:
f1:57:a0:bf:79:2c:f1:1e:8b:1b:0f:a4:fe:03:5f:6c:ab:ae:
57:f1:bd:2a:60:f3:e2:cb:de:40:a4:3b:70:e9:88:a9:ee:a3:
db:c3:b1:5b:6d:c8:90:3a:36:91:57:d2:27:45:b3:6d:67:d0:
13:58:3f:c9:44:ef:0a:34:79:b0:ae:a3:b2:39:49:ec:19:43:
a6:74:78:16:3d:f9:fa:9c:64:ad:1a:43:ad:92:b6:d6:a3:f7:
94:77:38:d4:c8:41:4b:28:44:b0:5f:a6:83:2a:3a:0c:3c:d5:
00:cd:c3:69:10:de:4d:04:9d:0c:a0:fb:f1:2f:ac:0d:d4:e1:
08:fc:44:87:b0:aa:20:43:d3:c6:57:de:c2:3a:db:82:b4:9b:
9b:fd:3e:77:fb:46:ff:49:82:be:42:cd:a7:2d:c8:3f:92:b1:
a5:51:cd:b8:aa:6c:bd:f6:bc:4e:00:bd:d7:74:be:db:28:a0:
d7:7c:38:22:89:ec:a0:d5:f6:9e:4f:86:80:eb:75:81:58:86:
2d:f2:6e:90:99:59:65:b1:28:d8:7b:12:94:5f:7a:4d:6e:71:
fa:ff:80:2f:7e:7a:58:05:10:ba:a9:ec:cb:85:d5:13:5d:33:
78:da:a9:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org