Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/x-fPojneiV5ZdFDFoWyaJ6i4BpE.roa
File: x-fPojneiV5ZdFDFoWyaJ6i4BpE.roa (raw, json)
Hash identifier: UWTRB44aC2GQYw0/UDPH+MAUkV/LeQ3INJk7sEKqOsM=
Subject key identifier: C7:E7:CF:A2:39:DE:89:5E:59:74:50:C5:A1:6C:9A:27:A8:B8:06:91
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 08FD
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/x-fPojneiV5ZdFDFoWyaJ6i4BpE.roa
Signing time: Sun 07 Feb 2021 11:55:40 +0000
ROA not before: Sun 07 Feb 2021 11:55:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9244
IP address blocks: 61.56.64.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2301 (0x8fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Feb 7 11:55:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C7E7CFA239DE895E597450C5A16C9A27A8B80691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:94:fd:db:27:4e:57:d1:29:11:ac:5e:f9:7b:
5e:2f:21:d6:c0:83:50:25:9b:a6:0e:0b:11:8c:a4:
19:ee:ea:55:6e:4e:b8:b9:97:9a:39:3c:f4:40:99:
06:86:66:14:c7:fb:fa:ea:46:db:2a:2b:60:df:51:
73:2c:c2:64:12:28:b6:58:9e:43:c5:75:75:37:6d:
68:b8:3e:10:5b:a5:98:0d:c2:aa:cf:24:b6:39:36:
43:65:bc:99:b6:f0:77:42:d0:8f:a5:d2:e4:35:1f:
0b:61:60:cd:40:f3:69:47:8c:36:fd:91:2d:80:7f:
a4:4c:3d:79:e5:03:cd:a7:2d:d1:fd:05:70:20:69:
88:96:69:7f:a2:45:65:d2:d8:10:86:e5:7c:f4:86:
7a:10:89:6b:84:a3:18:d0:4f:80:b3:fe:b9:10:df:
6a:ff:64:9c:3e:6f:b1:be:85:72:55:24:89:b0:8a:
fd:be:d6:09:16:45:be:77:92:67:51:87:80:9b:02:
21:eb:0e:30:62:c1:83:2b:aa:ed:d7:f3:9a:37:fd:
e3:dd:9f:ec:e2:fe:ce:32:3c:4b:c2:69:0e:48:c7:
88:6b:c2:a3:72:dd:4b:8e:e2:ba:ef:68:74:08:84:
d7:64:39:57:52:04:78:50:56:36:a2:70:3b:2e:d6:
1f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E7:CF:A2:39:DE:89:5E:59:74:50:C5:A1:6C:9A:27:A8:B8:06:91
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/x-fPojneiV5ZdFDFoWyaJ6i4BpE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.64.0/21
Signature Algorithm: sha256WithRSAEncryption
4b:61:07:12:56:4d:05:20:1d:36:a9:d1:90:42:9c:64:7f:44:
4c:c4:1b:5b:41:eb:3f:72:e6:45:de:a4:62:0e:0a:47:6d:e2:
8d:6d:0f:56:1e:5c:6d:6e:27:40:70:d9:e6:0d:7d:1d:19:8a:
b6:cb:5c:7b:ee:3b:8a:fb:7e:15:52:1e:00:5a:97:0a:68:14:
c2:c8:39:bb:cd:53:ea:50:99:31:62:69:c7:2e:20:00:71:17:
4b:18:97:d6:90:b1:33:24:91:f4:1e:7d:a1:a6:1c:62:3a:b4:
d4:51:2d:aa:ae:c9:0a:ed:7c:22:9e:aa:af:00:03:73:ca:62:
61:72:a5:26:c0:50:3f:7d:29:81:5d:ed:26:39:21:e8:3d:a3:
d1:5d:64:a0:6d:42:86:6f:a1:7a:93:b3:ad:26:80:30:61:63:
f2:1e:59:8b:54:bf:05:6b:07:11:94:85:7b:49:f9:25:dd:a3:
10:4f:2d:74:11:49:05:68:d1:e4:1f:60:22:9f:3b:cd:67:90:
ad:f9:48:60:24:2a:54:ae:10:2d:21:2a:e8:ad:c1:f4:22:f8:
4c:e7:0e:7c:cf:9f:1c:d3:c0:0d:4e:fb:93:cb:ca:7b:0f:d1:
d4:2f:e0:86:df:54:1f:b8:4e:16:63:fe:d5:78:4d:2a:5e:98:
76:7e:04:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:00 2023 by rpki-client on console-fra.rpki-client.org