Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/jytx38uzcS09yQArY1galxjXmIs.roa
File: jytx38uzcS09yQArY1galxjXmIs.roa (raw, json)
Hash identifier: vNnS6aHDqTvbhZijN0NnT71oES+/bAzWWI/0knfZmmA=
Subject key identifier: 8F:2B:71:DF:CB:B3:71:2D:3D:C9:00:2B:63:58:1A:97:18:D7:98:8B
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 08F9
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/jytx38uzcS09yQArY1galxjXmIs.roa
Signing time: Sun 07 Feb 2021 11:55:37 +0000
ROA not before: Sun 07 Feb 2021 11:55:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 61.56.64.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2297 (0x8f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Feb 7 11:55:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8F2B71DFCBB3712D3DC9002B63581A9718D7988B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:26:fd:d6:55:6a:7e:f6:e2:d0:cf:04:a8:86:
e3:ba:2e:bc:66:47:77:db:5c:f3:a7:5a:69:8e:da:
a8:06:41:4f:10:dd:9e:61:97:59:12:ef:88:c1:14:
53:a5:52:d3:d8:cd:a9:48:d9:86:2c:6c:a3:36:92:
01:3a:1f:b2:80:9a:92:23:ac:cb:6c:58:1c:c7:06:
30:97:6e:e0:3e:f1:15:31:43:cb:ec:69:b8:f5:1a:
c9:ab:18:bd:71:e5:ae:32:d7:3c:30:19:64:19:ce:
2c:8f:90:de:d7:68:1c:a0:90:d8:e0:44:6c:41:de:
a7:e7:0f:19:33:11:54:a1:7c:cf:e0:6f:7c:66:c7:
44:ac:34:34:2e:15:02:b4:4c:f8:57:43:10:96:5d:
1a:fa:0e:e9:14:dc:25:9b:d6:35:2c:02:c4:d9:f8:
d1:3a:5f:72:09:b4:5b:94:09:13:08:3c:74:59:49:
36:15:2f:f9:fd:20:ee:b4:8f:30:8d:a9:8c:f1:34:
79:7c:d1:5e:2d:76:1c:4a:71:70:57:45:5b:b2:e2:
c3:75:f0:91:e0:b7:de:55:17:d4:37:d7:6c:8f:4e:
16:b0:28:80:b2:b2:94:40:7d:b6:c2:03:06:b6:ff:
75:78:38:42:16:09:23:3b:6c:86:4e:0a:08:ad:62:
cd:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:2B:71:DF:CB:B3:71:2D:3D:C9:00:2B:63:58:1A:97:18:D7:98:8B
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/jytx38uzcS09yQArY1galxjXmIs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.64.0/20
Signature Algorithm: sha256WithRSAEncryption
48:26:6e:8d:f7:12:7a:3a:d6:a8:50:2e:6a:8c:cb:1c:e2:cc:
49:92:7c:a0:05:83:21:45:f7:f0:64:4a:c6:9b:c8:23:30:1b:
3d:92:22:5f:b4:9e:5a:51:59:b4:ba:ae:ba:cc:9b:d1:b3:5f:
7e:84:60:b9:0b:4e:5e:d4:8b:f5:c1:48:f6:2c:49:a4:e3:16:
b2:2e:25:95:75:54:25:c0:26:b4:0e:38:75:db:e7:a1:b3:b4:
8e:23:8c:94:d5:25:40:68:ae:12:a1:65:78:15:66:e7:21:ca:
16:40:70:17:db:b8:97:99:a4:18:5f:de:87:85:59:ff:1d:fb:
66:c2:01:1e:49:15:93:3a:9b:33:fc:76:8c:51:17:cc:7a:dc:
01:25:19:b6:33:09:bf:b1:1f:1c:d4:c4:51:11:05:33:4b:8f:
bc:96:5b:0d:37:b1:a4:7b:ec:99:22:3d:55:ec:cd:87:0d:17:
0f:f4:19:90:b4:6f:03:80:90:3f:86:7f:2a:df:60:ff:90:1a:
0f:cd:d3:ed:d2:c4:e7:46:da:af:be:7b:b4:2d:a2:0e:18:67:
70:06:50:23:0d:ce:b1:14:47:28:7b:1b:9b:d3:4c:1c:6d:54:
09:f1:0d:71:49:3b:2b:31:c4:b4:e4:3d:79:ae:ed:13:28:17:
a2:c2:0f:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org