Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/rSnfCMuPYqVR-b2XXDtuZEhXRhI.roa
File: rSnfCMuPYqVR-b2XXDtuZEhXRhI.roa (raw, json)
Hash identifier: Hmo5CxzYg9U5jvZX9KF9N/uuMfoanDteo/TVTYMk+8E=
Subject key identifier: AD:29:DF:08:CB:8F:62:A5:51:F9:BD:97:5C:3B:6E:64:48:57:46:12
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 09B8
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/rSnfCMuPYqVR-b2XXDtuZEhXRhI.roa
Signing time: Wed 29 Sep 2021 02:36:43 +0000
ROA not before: Wed 29 Sep 2021 02:36:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9244
IP address blocks: 113.21.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2488 (0x9b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 02:36:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AD29DF08CB8F62A551F9BD975C3B6E6448574612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bd:78:25:7b:6e:aa:9a:10:7c:c5:63:0f:d6:
48:4e:c3:c9:c9:e1:b6:e3:a1:1f:7d:89:cc:5b:aa:
41:9f:70:ce:01:01:eb:e1:b3:ec:e7:cf:8a:51:24:
f6:61:69:73:46:83:4e:29:9c:04:b6:34:65:00:13:
52:cf:14:9e:a1:1a:3f:f2:d8:ed:f8:f0:4a:8b:8b:
8c:6b:ad:fb:fe:79:3a:b7:25:8b:a0:2d:71:56:fb:
7a:b2:78:d2:10:a4:d4:17:3f:45:7c:25:be:9c:4b:
84:d8:77:f3:5d:a7:a4:48:1b:c6:0d:63:1f:b4:f0:
ef:ee:7c:b9:08:a4:07:6f:05:89:d2:22:99:db:ca:
e7:3b:c8:f3:f9:2a:92:61:c0:62:fb:40:66:44:30:
63:86:f3:61:d7:8a:2f:41:87:7c:32:b4:07:a5:df:
d4:60:37:2a:50:45:c4:fd:f8:60:60:85:79:9d:69:
df:75:72:1a:87:fc:3c:cb:8b:27:8d:51:4e:ef:0d:
30:4a:06:c2:81:4f:9b:ae:9f:4e:c4:4b:30:f9:7c:
ab:c9:23:78:06:bd:79:f3:2b:d6:60:a7:dc:a5:46:
02:94:7b:19:81:0d:3c:f3:f0:ae:4d:52:4f:ed:15:
b5:9c:99:0a:4f:60:69:6a:e0:7c:e2:d2:2c:3c:72:
2b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:29:DF:08:CB:8F:62:A5:51:F9:BD:97:5C:3B:6E:64:48:57:46:12
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/rSnfCMuPYqVR-b2XXDtuZEhXRhI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.176.0/21
Signature Algorithm: sha256WithRSAEncryption
71:a1:59:1b:53:a0:3a:60:45:dd:66:ca:6c:88:b8:3c:39:36:
d4:c8:1e:27:76:bb:67:0f:40:84:dc:70:aa:0b:ba:f7:ed:e2:
e0:b5:46:98:66:f2:04:a0:6d:eb:16:f2:e8:bc:aa:86:5d:5d:
3a:33:5e:72:1d:92:80:4e:9b:e8:df:1c:ae:78:06:b9:2d:03:
93:9f:e6:2c:3b:c1:c7:cc:5f:2e:63:bd:fd:eb:19:0a:db:74:
c5:d4:49:25:47:e8:b1:cf:07:cd:58:db:5c:ff:05:3b:fe:82:
4b:85:19:e8:84:d2:35:a8:22:78:a4:2d:1e:d8:93:c6:d2:d0:
6c:41:6f:3b:e0:81:5f:4b:c0:11:2d:bb:66:af:3e:b2:48:a2:
bf:ec:24:77:77:a6:85:03:ef:fe:65:56:40:6f:1f:05:d9:f1:
e3:7c:f0:05:b1:f5:23:41:7f:ab:05:2a:c9:12:56:b3:f1:c7:
f6:cc:f2:2c:33:f9:b4:1a:52:2d:1d:b0:f9:d0:fb:ce:92:ca:
9a:c7:8b:e7:e3:67:53:af:d0:a4:a6:d9:05:99:30:80:6f:e6:
24:43:fa:23:5b:4c:bb:9f:c7:38:bc:3e:2e:41:f4:d4:65:dd:
84:7a:7f:f0:4c:3a:ad:2e:19:d8:b3:62:a5:6c:e8:6b:0d:c9:
7d:37:d0:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:52 2023 by rpki-client on console-ams.rpki-client.org