Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/gxYxseTT5ZNGD6Ztv-nGPKNDmiA.roa
File: gxYxseTT5ZNGD6Ztv-nGPKNDmiA.roa (raw, json)
Hash identifier: wpbG5NqubpIbd95ZOACaRlhklLNViiKFLL9AcZQclQA=
Subject key identifier: 83:16:31:B1:E4:D3:E5:93:46:0F:A6:6D:BF:E9:C6:3C:A3:43:9A:20
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0793
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/gxYxseTT5ZNGD6Ztv-nGPKNDmiA.roa
Signing time: Tue 29 Sep 2020 10:03:12 +0000
ROA not before: Tue 29 Sep 2020 10:03:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 61.247.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1939 (0x793)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 10:03:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=831631B1E4D3E593460FA66DBFE9C63CA3439A20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:06:c7:8d:44:76:c5:ce:56:fb:14:f0:bf:7c:
86:e3:3e:2a:b1:e1:2e:bc:37:b8:cf:f5:d0:b6:16:
c7:12:5d:db:00:cf:12:2d:f4:e9:81:28:92:6f:4e:
f1:d2:be:22:b6:e0:fb:07:f9:2f:c9:d3:7e:6f:71:
b2:30:2b:0d:b6:e1:13:a8:da:f7:53:14:b0:ef:67:
06:fb:f0:0f:a3:79:e2:4e:8d:c1:d5:5b:12:a5:8d:
6e:97:c5:66:c9:d4:97:c7:f5:7f:4a:d0:84:a8:e9:
4b:07:20:41:2b:87:61:e8:af:fb:5d:72:9f:72:db:
10:0f:3e:71:f4:29:fd:a7:8d:23:45:fb:9f:8d:90:
59:01:d5:86:08:cf:f8:d1:b7:0f:c0:03:d5:f3:98:
ff:9d:df:59:74:91:2c:75:90:42:8f:0b:e3:a9:bb:
bb:e3:21:a3:d7:52:06:eb:be:ca:c2:29:a4:47:6e:
ad:1b:c4:79:e8:71:80:e5:04:0a:64:98:3d:bd:50:
21:b0:74:f1:03:45:0c:19:8e:03:e4:df:57:70:b1:
0d:14:45:73:75:eb:13:c9:95:01:6c:24:f3:c2:c2:
67:1d:23:4d:7e:e1:57:a8:59:d3:07:d2:06:78:26:
b8:1c:ca:14:94:2d:f1:1f:0d:20:ad:92:a6:9b:8d:
8b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:16:31:B1:E4:D3:E5:93:46:0F:A6:6D:BF:E9:C6:3C:A3:43:9A:20
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/gxYxseTT5ZNGD6Ztv-nGPKNDmiA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.247.165.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:00:24:5b:9b:d0:42:91:f9:82:62:52:c6:10:68:67:80:0a:
60:12:93:8a:16:9f:0a:69:48:aa:a0:11:85:57:64:bd:85:22:
7a:17:65:d0:96:b6:3f:e4:4f:49:fb:a5:f0:ed:21:7e:48:d0:
05:05:29:bf:94:82:ba:83:b7:17:1b:03:60:41:85:5b:28:68:
71:e9:3d:42:4f:08:93:7a:1d:03:a4:8f:04:e6:4b:d8:e0:d9:
c5:c4:4a:4c:76:9c:22:e2:c9:00:a5:9a:a9:ba:5c:1e:58:4b:
24:9e:31:02:36:11:be:d3:ad:da:ed:e8:ef:7b:10:b9:91:f4:
ac:6c:e6:97:f9:fb:3a:39:a8:65:e6:83:c2:85:ae:21:5a:bb:
a9:d1:a9:94:97:b8:b7:32:49:31:47:91:1a:9d:1d:cd:5f:16:
8f:b1:eb:36:f8:19:5d:ba:7e:af:bc:44:13:0c:b8:88:c1:cc:
c4:db:6b:f3:cf:3d:ac:ea:fb:73:a1:8b:03:e9:d8:de:e9:62:
76:5a:78:04:0c:ce:13:f3:9d:b5:90:35:02:64:b3:86:c5:c9:
e4:4e:a0:10:27:2e:24:4f:5a:08:34:8b:d5:84:43:65:a8:5d:
a4:b2:70:20:a4:d7:bb:6a:eb:e5:d0:df:a3:a1:6c:b5:ed:4b:
78:c8:18:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:52 2023 by rpki-client on console-ams.rpki-client.org