Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/wZfDCryZIYjZL3dm03g57gugfxc.roa
File: wZfDCryZIYjZL3dm03g57gugfxc.roa (raw, json)
Hash identifier: EnKlUitYr0A/cOiVEU5I6uCR5GCCsvipZY4T5FEGVHk=
Subject key identifier: C1:97:C3:0A:BC:99:21:88:D9:2F:77:66:D3:78:39:EE:0B:A0:7F:17
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0790
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/wZfDCryZIYjZL3dm03g57gugfxc.roa
Signing time: Tue 29 Sep 2020 10:03:11 +0000
ROA not before: Tue 29 Sep 2020 10:03:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 61.56.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1936 (0x790)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 10:03:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C197C30ABC992188D92F7766D37839EE0BA07F17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f3:c8:cb:0e:1f:fd:1e:a4:6d:4a:41:96:78:
43:c8:ad:b5:17:21:1a:e1:3c:5d:23:61:d3:05:04:
67:65:7b:d1:8d:3f:b0:e7:03:9a:be:c7:ae:cc:4f:
7a:5a:1a:f8:76:65:aa:97:52:b1:3d:18:1c:c9:1f:
72:5c:a0:57:83:b5:d8:0f:f0:55:11:26:aa:1b:9d:
1a:c1:75:5b:20:b6:61:e6:b6:6d:74:bd:af:94:f3:
f4:a7:8d:4f:d3:4b:66:39:fc:12:4e:fc:3a:c7:36:
dd:c7:08:41:28:f9:c9:bd:70:a5:01:11:75:53:e8:
65:54:5b:52:80:18:d0:58:3e:c1:23:c4:fa:e2:94:
95:ca:5b:ed:fa:b4:b9:81:ec:ac:6c:d9:7c:d2:6b:
5d:8c:f2:5a:dd:40:f8:d9:ef:28:c4:69:fd:d0:7e:
b1:25:ee:8f:93:f3:1a:d8:db:a4:9e:e3:0d:bf:e1:
c1:f3:92:56:8b:05:3f:0a:a8:bc:27:94:07:e4:18:
28:27:81:cb:a8:88:02:5c:37:81:05:aa:87:82:6c:
8c:ee:43:21:05:74:45:38:16:26:5f:91:76:4b:16:
7f:64:7d:93:c6:33:ac:da:e4:95:62:22:c9:89:ed:
d2:f6:fc:c8:53:e6:22:63:b0:8b:5f:cc:89:8d:eb:
f0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:97:C3:0A:BC:99:21:88:D9:2F:77:66:D3:78:39:EE:0B:A0:7F:17
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/wZfDCryZIYjZL3dm03g57gugfxc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.72.0/21
Signature Algorithm: sha256WithRSAEncryption
b7:af:49:bb:9e:6e:f7:9c:14:39:95:51:00:3c:a0:12:f8:3f:
87:98:36:ac:60:59:af:88:67:32:41:8f:ea:59:2e:e4:99:fb:
56:d7:90:2e:70:d7:e2:f9:dd:b2:bd:30:3e:15:8c:5e:39:dd:
fc:31:ed:38:5e:3a:94:8a:bf:70:d9:ab:83:b7:43:c0:2a:58:
76:5a:62:3c:66:49:01:99:10:f2:7a:d3:31:c2:3a:18:68:fc:
6f:05:df:d5:c0:8c:fd:9d:c1:64:ad:6e:78:8b:de:ca:58:1f:
10:cc:3e:84:34:f0:3e:fd:0e:75:5f:b3:50:75:46:f7:fe:93:
54:a9:33:44:8c:e6:ca:92:e7:3d:ec:ca:d8:34:ef:8e:d0:d8:
72:c0:07:35:21:c2:e5:17:0e:51:f4:79:88:61:70:db:17:6e:
43:ed:ad:f1:b6:ac:26:fd:6f:ce:cc:e6:19:be:e3:b3:a8:a7:
28:11:4a:94:ce:9c:a3:b9:06:9f:14:e0:f1:dd:bd:e6:7f:f9:
4a:36:5e:6a:80:0c:3a:ad:bc:5c:3e:1f:ed:96:46:27:ac:04:
a7:4e:bb:a2:c4:b9:1c:00:44:46:8e:de:0a:6c:6c:0b:7c:73:
7c:23:33:40:02:e1:8e:19:7c:e9:8d:8c:63:3d:eb:0b:72:d4:
a4:b3:f4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org