Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/obYSLU6cWRDaKgWiq5Rz8eKEihk.roa
File: obYSLU6cWRDaKgWiq5Rz8eKEihk.roa (raw, json)
Hash identifier: 6AKsLLQuks6s6EuKpJmZdBUryj0ueGCP7JjbkZeeb3c=
Subject key identifier: A1:B6:12:2D:4E:9C:59:10:DA:2A:05:A2:AB:94:73:F1:E2:84:8A:19
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0AB7
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/obYSLU6cWRDaKgWiq5Rz8eKEihk.roa
Signing time: Thu 15 Sep 2022 02:37:43 +0000
ROA not before: Thu 15 Sep 2022 02:37:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9244
IP address blocks: 61.56.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2743 (0xab7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 15 02:37:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A1B6122D4E9C5910DA2A05A2AB9473F1E2848A19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fa:85:64:43:a0:62:d8:0f:7e:a7:1f:f0:88:
1b:4e:8e:03:91:64:77:c8:be:79:6f:57:73:7c:98:
5b:a0:80:e7:e3:23:62:52:32:9f:d9:16:c7:9b:12:
c1:ff:72:7a:1a:bf:d7:b6:34:d9:89:bc:3a:78:1d:
26:ad:e6:09:7e:63:ee:2a:86:00:9c:46:d1:b3:25:
88:c9:13:78:54:1b:eb:bd:ee:40:47:32:2c:2b:a8:
14:3e:c6:ad:4a:f2:85:d8:a4:65:91:bc:82:4f:44:
71:17:59:9b:21:8b:2e:91:cb:38:7a:b5:28:74:7d:
84:f5:1e:7c:9c:64:6f:38:b5:30:17:8c:81:30:75:
a7:db:ce:61:dc:75:4a:78:4d:1b:55:2b:42:93:15:
d9:b6:dd:b4:de:29:eb:5d:c1:db:cd:bc:a8:f2:22:
93:0d:7e:8d:6a:34:40:39:e0:99:2e:fe:37:d9:fb:
ec:33:8e:c2:b6:d7:d8:53:37:3b:46:7c:3d:e7:ed:
bf:1d:67:b3:3a:92:40:1a:ce:8a:e8:dd:4e:68:22:
f3:fc:7b:17:1b:53:c3:7c:f6:a1:49:e8:4c:a2:9b:
85:25:e2:2a:a6:bd:fe:86:ef:ea:bd:e3:d0:16:3a:
76:15:a9:1e:21:99:95:9b:bb:f2:9b:0b:4e:21:c7:
f4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B6:12:2D:4E:9C:59:10:DA:2A:05:A2:AB:94:73:F1:E2:84:8A:19
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/obYSLU6cWRDaKgWiq5Rz8eKEihk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.72.0/21
Signature Algorithm: sha256WithRSAEncryption
22:7c:b2:57:df:fe:04:06:53:b9:c8:66:76:6f:9c:d7:e0:5a:
3a:07:90:e2:21:81:71:5f:04:3c:3e:e6:4c:eb:fd:42:03:99:
22:40:fb:fe:6a:fb:19:91:8d:e8:a3:6c:d0:f3:76:e8:2b:59:
29:d8:66:2a:ca:20:1c:04:29:c7:90:b8:3a:97:09:c6:40:42:
70:73:08:17:f0:64:83:eb:b6:6b:33:ae:dd:d0:22:9d:cb:24:
49:f5:03:2c:85:5e:60:0b:18:42:d6:9a:a9:30:a1:41:d5:f2:
74:3c:cc:e1:1b:75:e8:90:47:1b:ad:c3:55:3d:ff:2b:58:d5:
d9:95:d3:1d:d3:ea:a2:34:d4:24:da:1f:2d:49:18:de:0c:10:
27:9b:cc:6e:c2:f5:16:e8:87:d6:f8:dd:87:67:8a:5b:54:0f:
9a:8e:2c:a0:19:a1:ca:ee:13:7c:e9:4d:67:9c:bc:f9:d6:fa:
be:a5:7d:d0:5d:6b:09:03:8d:c2:89:b8:ac:54:93:de:2f:8d:
2c:68:22:be:17:81:69:69:21:1d:1c:1b:1a:ea:85:79:82:da:
ce:82:1d:09:58:c1:c6:b4:6a:ce:49:bf:15:39:a7:82:cb:f7:
38:06:0f:6d:fa:c5:51:c0:b4:dc:1a:25:a2:77:e3:ad:b9:31:
5a:05:1b:2f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICCrcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC
M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yMjA5MTUw
MjM3NDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEExQjYxMjJENEU5QzU5
MTBEQTJBMDVBMkFCOTQ3M0YxRTI4NDhBMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/+oVkQ6Bi2A9+px/wiBtOjgORZHfIvnlvV3N8mFuggOfjI2JS
Mp/ZFsebEsH/cnoav9e2NNmJvDp4HSat5gl+Y+4qhgCcRtGzJYjJE3hUG+u97kBH
MiwrqBQ+xq1K8oXYpGWRvIJPRHEXWZshiy6Ryzh6tSh0fYT1HnycZG84tTAXjIEw
dafbzmHcdUp4TRtVK0KTFdm23bTeKetdwdvNvKjyIpMNfo1qNEA54Jku/jfZ++wz
jsK219hTNztGfD3n7b8dZ7M6kkAazoro3U5oIvP8excbU8N89qFJ6Eyim4Ul4iqm
vf6G7+q949AWOnYVqR4hmZWbu/KbC04hx/RnAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUobYSLU6cWRDaKgWiq5Rz8eKEihkwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT
KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU
L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL29iWVNMVTZjV1JEYUtnV2lx
NVJ6OGVLRWloay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9
OEgwDQYJKoZIhvcNAQELBQADggEBACJ8slff/gQGU7nIZnZvnNfgWjoHkOIhgXFf
BDw+5kzr/UIDmSJA+/5q+xmRjeijbNDzdugrWSnYZirKIBwEKceQuDqXCcZAQnBz
CBfwZIPrtmszrt3QIp3LJEn1AyyFXmALGELWmqkwoUHV8nQ8zOEbdeiQRxutw1U9
/ytY1dmV0x3T6qI01CTaHy1JGN4MECebzG7C9Rboh9b43YdniltUD5qOLKAZocru
E3zpTWecvPnW+r6lfdBdawkDjcKJuKxUk94vjSxoIr4XgWlpIR0cGxrqhXmC2s6C
HQlYwca0as5JvxU5p4LL9zgGD236xVHAtNwaJaJ34625MVoFGy8=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:19 2025 by rpki-client