Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/h9CR1rfTdacyRf5qVDGb34skYh4.roa
File: h9CR1rfTdacyRf5qVDGb34skYh4.roa (raw, json)
Hash identifier: QDPCjryoUeRp+09tecgIjhhaU++LyMdsg4SmeGNJjtA=
Subject key identifier: 87:D0:91:D6:B7:D3:75:A7:32:45:FE:6A:54:31:9B:DF:8B:24:62:1E
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0AB7
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/h9CR1rfTdacyRf5qVDGb34skYh4.roa
Signing time: Thu 15 Sep 2022 02:37:40 +0000
ROA not before: Thu 15 Sep 2022 02:37:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9244
IP address blocks: 113.21.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2743 (0xab7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 15 02:37:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=87D091D6B7D375A73245FE6A54319BDF8B24621E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ed:ea:20:51:38:ac:b7:9d:33:65:e2:b0:1f:
28:5b:88:c8:4c:cf:00:84:fd:90:85:95:86:56:fd:
ba:f3:92:ba:f4:a5:84:c9:b8:0a:50:fb:6c:82:21:
47:f6:6d:cd:3f:ef:57:c9:a3:c5:af:5d:35:96:e8:
74:71:41:cb:72:91:43:11:7b:0f:33:33:a2:0a:0f:
89:46:23:97:42:62:29:66:1a:fd:c6:02:3e:45:68:
c2:67:a5:5b:40:3f:44:c9:23:91:19:f3:55:97:6e:
ad:e6:6d:9c:b1:6a:01:04:67:43:c0:d8:f7:e3:5f:
2a:a3:46:fd:d7:ec:30:bb:53:0a:ce:b8:4c:49:4e:
dd:e1:d2:b9:97:0d:b7:f1:e6:9b:56:e2:61:c9:1b:
a3:b1:40:a0:03:7c:79:0c:83:9d:24:f9:c2:53:39:
15:ac:66:89:15:d6:d7:bd:72:f0:95:ea:8f:5a:c5:
55:ef:b4:34:c2:21:e2:b5:59:a4:85:28:c0:4a:90:
19:a1:5a:20:14:df:32:bc:f2:4f:6a:52:00:a0:fa:
5e:ed:97:1e:b7:93:90:73:d8:00:c2:c7:4f:97:da:
7b:f1:7e:07:44:72:f7:0f:e7:c4:49:da:ab:14:df:
d3:d7:9a:6f:ff:95:2b:43:e1:53:99:6b:f6:d1:d5:
68:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:D0:91:D6:B7:D3:75:A7:32:45:FE:6A:54:31:9B:DF:8B:24:62:1E
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/h9CR1rfTdacyRf5qVDGb34skYh4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.175.0/24
Signature Algorithm: sha256WithRSAEncryption
30:b8:08:01:ef:17:cc:e3:f3:cb:43:04:16:25:21:c4:ab:f8:
ca:b0:00:46:9b:b7:76:a1:cd:0c:05:16:3d:ca:8c:83:a1:3b:
5e:a7:de:24:50:10:b7:88:15:1d:29:f9:40:eb:07:29:d3:7a:
bf:6f:64:c5:15:3f:06:e8:d2:70:90:5f:dd:b9:a0:96:5a:be:
b5:ad:cd:e8:97:ec:19:e3:3f:7a:ee:48:3a:09:19:ff:b1:82:
e9:1b:9a:f3:28:4f:44:3f:f4:63:dd:71:7f:4b:03:7a:b6:15:
42:ca:72:8e:46:93:54:58:4b:76:4f:11:09:77:c5:82:bb:b0:
4a:1a:3f:b0:84:4d:5e:3a:68:8e:46:8d:2e:e8:1a:76:a6:03:
41:09:df:af:1b:b1:90:69:42:e4:79:d9:d5:e7:88:88:32:f1:
06:c3:aa:e9:8e:d6:5b:8a:78:48:f9:be:32:d5:7c:53:cd:fe:
22:1c:e7:e3:ef:a2:ce:00:fe:12:bd:74:79:3a:42:0d:6d:2d:
dc:6d:b2:99:4c:66:4b:74:01:4b:05:d8:0c:39:63:33:8e:4f:
e0:5c:b1:82:bd:c7:88:b7:77:e5:55:eb:1d:16:3c:7c:b5:f6:
4f:1b:6c:7b:45:0b:02:90:44:89:4f:79:7a:ac:5e:58:9a:e6:
51:50:9b:2e
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCrcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC
M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMjA5MTUw
MjM3NDBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg3RDA5MUQ2QjdEMzc1
QTczMjQ1RkU2QTU0MzE5QkRGOEIyNDYyMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDD7eogUTist50zZeKwHyhbiMhMzwCE/ZCFlYZW/brzkrr0pYTJ
uApQ+2yCIUf2bc0/71fJo8WvXTWW6HRxQctykUMRew8zM6IKD4lGI5dCYilmGv3G
Aj5FaMJnpVtAP0TJI5EZ81WXbq3mbZyxagEEZ0PA2PfjXyqjRv3X7DC7UwrOuExJ
Tt3h0rmXDbfx5ptW4mHJG6OxQKADfHkMg50k+cJTORWsZokV1te9cvCV6o9axVXv
tDTCIeK1WaSFKMBKkBmhWiAU3zK88k9qUgCg+l7tlx63k5Bz2ADCx0+X2nvxfgdE
cvcP58RJ2qsU39PXmm//lStD4VOZa/bR1WgNAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUh9CR1rfTdacyRf5qVDGb34skYh4wHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT
KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU
L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL2g5Q1IxcmZUZGFjeVJmNXFW
REdiMzRza1loNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABx
Fa8wDQYJKoZIhvcNAQELBQADggEBADC4CAHvF8zj88tDBBYlIcSr+MqwAEabt3ah
zQwFFj3KjIOhO16n3iRQELeIFR0p+UDrBynTer9vZMUVPwbo0nCQX925oJZavrWt
zeiX7BnjP3ruSDoJGf+xgukbmvMoT0Q/9GPdcX9LA3q2FULKco5Gk1RYS3ZPEQl3
xYK7sEoaP7CETV46aI5GjS7oGnamA0EJ368bsZBpQuR52dXniIgy8QbDqumO1luK
eEj5vjLVfFPN/iIc5+Pvos4A/hK9dHk6Qg1tLdxtsplMZkt0AUsF2Aw5YzOOT+Bc
sYK9x4i3d+VV6x0WPHy19k8bbHtFCwKQRIlPeXqsXlia5lFQmy4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org