Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/gT6349xd8M2zK_b5q2I8OnzcZnw.roa
File: gT6349xd8M2zK_b5q2I8OnzcZnw.roa (raw, json)
Hash identifier: v6/4Zkt6azyWvBUtt+vljS1AqQRjU17XKtRatk/gZEU=
Subject key identifier: 81:3E:B7:E3:DC:5D:F0:CD:B3:2B:F6:F9:AB:62:3C:3A:7C:DC:66:7C
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 09BD
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/gT6349xd8M2zK_b5q2I8OnzcZnw.roa
Signing time: Wed 29 Sep 2021 02:36:45 +0000
ROA not before: Wed 29 Sep 2021 02:36:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9244
IP address blocks: 61.247.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2493 (0x9bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 02:36:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=813EB7E3DC5DF0CDB32BF6F9AB623C3A7CDC667C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:79:21:c4:a2:3d:a9:7e:9f:95:61:b6:f2:90:
28:33:d6:44:db:23:00:30:b9:0d:7a:ba:02:74:01:
4a:48:6b:c5:c9:47:c0:e9:ae:8e:96:fc:dd:75:dc:
75:d5:af:f9:ae:91:b0:38:b8:d3:50:98:b1:11:04:
69:50:47:88:ca:14:cc:bb:f5:a6:28:dd:55:16:fb:
8b:ed:7e:b3:3c:4f:86:0c:92:f6:ed:52:4a:cb:e4:
c7:b2:20:5b:eb:d9:fb:9e:b0:6d:08:0f:8a:13:3d:
dd:8a:e9:f8:63:e3:e2:d7:2b:47:3e:3c:c5:8f:7a:
05:08:d8:8a:a2:43:d2:90:44:b5:78:a3:d6:5a:7d:
67:09:79:d8:35:51:38:03:79:21:51:71:76:94:df:
23:46:ab:21:c9:e6:d6:46:4a:ec:d0:6e:f5:84:79:
d3:5f:dd:88:e7:b6:94:9f:8a:57:ff:97:87:77:6f:
81:6c:d7:39:01:4a:8e:06:f4:92:c5:15:42:da:7c:
e1:5d:29:07:59:d6:5a:53:8b:3a:58:2a:70:3b:d8:
76:f5:94:aa:bd:a6:e7:38:a9:6e:49:c4:e9:8e:14:
45:ed:e7:27:33:29:f4:cd:64:8d:cd:82:09:ad:f2:
ba:97:77:d8:79:39:c7:aa:f8:ac:1a:74:5a:45:50:
92:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:3E:B7:E3:DC:5D:F0:CD:B3:2B:F6:F9:AB:62:3C:3A:7C:DC:66:7C
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/gT6349xd8M2zK_b5q2I8OnzcZnw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.247.165.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:19:ad:23:20:18:9c:bc:2e:66:f5:b4:57:9c:54:c3:6e:52:
27:ed:7e:7a:e7:13:c0:63:8d:0d:32:c6:a7:11:6e:da:b0:92:
5f:62:41:0b:8f:3e:8f:da:a4:94:f1:e4:57:d5:c4:1f:3d:02:
59:81:46:c3:ba:90:26:97:e4:5d:a9:93:53:ab:e1:33:c3:73:
23:ee:cc:ff:9a:a5:6e:5f:3d:a7:9e:d6:9e:63:f6:48:5e:b6:
94:94:d3:63:32:ff:96:c2:f9:14:5e:1c:8f:09:59:7b:0f:65:
ad:9e:8e:22:36:e4:ce:6f:95:60:66:57:b9:d7:e3:4e:07:dc:
f1:36:d9:5f:1f:8b:1a:55:70:10:ad:70:c1:95:86:67:69:3e:
f6:08:c1:f2:4c:d2:36:81:33:c6:19:8f:81:6e:66:d5:5d:b0:
6c:8d:5e:0b:ad:8c:07:37:aa:59:bc:b1:9b:86:03:55:07:0f:
12:de:13:a2:62:eb:d7:b2:39:47:2a:f4:a0:b0:78:f6:53:7b:
68:8d:2f:82:a7:04:fc:6a:72:ee:2d:01:55:6b:82:41:24:9d:
9c:5d:bf:f1:a2:ff:ae:41:87:05:ee:53:3f:df:9a:f3:db:eb:
44:df:67:06:8f:f5:33:9b:36:e2:a6:b3:e4:3f:da:52:70:a4:
36:b5:31:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org