Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/wxIST2brYHBueFm6NTDhxqdYEf0.roa
File: wxIST2brYHBueFm6NTDhxqdYEf0.roa (raw, json)
Hash identifier: 7uvIIrOFMJAn4Kju94uPocdxF5S+4or6+JnDVxEg6eY=
Subject key identifier: C3:12:12:4F:66:EB:60:70:6E:78:59:BA:35:30:E1:C6:A7:58:11:FD
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 09C6
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/wxIST2brYHBueFm6NTDhxqdYEf0.roa
Signing time: Wed 29 Sep 2021 02:36:47 +0000
ROA not before: Wed 29 Sep 2021 02:36:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9244
IP address blocks: 61.56.80.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2502 (0x9c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 29 02:36:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C312124F66EB60706E7859BA3530E1C6A75811FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8b:8e:2c:f3:8a:a4:2f:30:0b:8a:40:1e:47:
c9:0f:73:5d:a7:c6:3e:6e:22:df:9f:08:72:6a:34:
62:81:6e:9c:aa:7e:52:79:76:43:f8:76:5c:07:66:
6a:71:e1:97:0a:c7:d2:10:80:be:f9:25:f5:20:e5:
30:98:3c:3f:eb:32:01:29:25:22:7d:4d:29:1a:45:
94:9c:bc:1e:3e:74:45:cf:dc:e6:fe:bf:47:c2:2d:
eb:ac:6d:66:ed:81:1a:fd:f3:85:27:74:20:2d:19:
7a:55:4b:4b:74:88:11:47:20:51:e7:fd:dc:31:bc:
d5:6e:af:09:e6:fd:88:f1:f7:1b:8e:6a:8c:b2:c8:
ca:b6:78:4c:3b:39:d8:82:5b:c9:84:19:de:6d:d1:
69:42:f5:29:62:0d:a2:37:1a:85:4c:03:07:15:e2:
b9:51:a4:d7:dd:27:5b:75:5e:21:21:00:c1:f1:09:
17:8b:0e:8c:5f:9f:ac:d3:4a:be:20:08:a3:a7:82:
11:bb:2d:81:81:01:c3:1b:51:c1:df:9f:35:fc:da:
74:47:d2:5e:e6:6d:8f:b6:83:8e:56:a8:ff:28:d0:
0c:ba:70:cd:31:54:27:f0:6e:a7:ec:5d:ba:55:bc:
29:ab:b4:d1:ff:4d:f2:56:0b:56:87:fb:fd:62:7c:
82:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:12:12:4F:66:EB:60:70:6E:78:59:BA:35:30:E1:C6:A7:58:11:FD
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/wxIST2brYHBueFm6NTDhxqdYEf0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.80.0/20
Signature Algorithm: sha256WithRSAEncryption
3d:dc:ef:1c:7f:cc:77:0f:ce:4c:9a:10:32:50:98:b7:f1:c1:
71:06:6d:38:58:11:4b:10:99:3b:00:fa:ac:f5:a5:8a:0f:8c:
7b:9b:34:20:f6:dc:c3:9b:b9:43:08:d0:ea:27:79:7e:6e:56:
3e:0e:ac:10:d8:72:0d:5a:88:45:f5:0c:ed:46:d6:1c:af:89:
d0:df:14:64:1a:4c:a9:d1:25:56:ba:f3:a0:69:d3:3d:a5:4b:
3f:28:20:d2:8b:cc:ba:6d:1c:90:d9:69:19:70:e7:db:c4:47:
7a:e8:93:56:68:24:f4:5a:5f:60:40:66:a5:cb:3e:5c:41:21:
75:32:f5:c5:60:84:bb:72:44:13:dd:0b:7a:87:56:4c:ac:9f:
99:e0:77:a6:35:bd:71:3e:77:6a:2f:39:4d:7c:12:8b:b7:dc:
7d:99:3b:2e:d5:5d:3b:db:cd:f5:63:ee:bc:85:1d:45:30:bb:
d1:62:3b:62:dd:61:72:0e:61:2b:df:38:fc:cf:2e:96:2c:34:
bc:02:b4:ef:53:5f:64:91:7a:c4:de:f4:ac:1b:9a:c8:c3:a1:
46:98:e5:03:1f:66:3f:65:9a:b5:56:37:1f:55:b3:52:ba:f1:
89:1d:ab:55:2e:45:ad:16:68:81:64:67:c1:d0:e9:15:de:14:
77:93:50:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:00 2023 by rpki-client on console-fra.rpki-client.org