Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/3bswqYiMH3WyDd9rO7-cXUBmBM4.roa
File: 3bswqYiMH3WyDd9rO7-cXUBmBM4.roa (raw, json)
Hash identifier: x49OFs/ZiT+hfxtTJtM/W+iHvRhjBTYGG0YKmujrfpk=
Subject key identifier: DD:BB:30:A9:88:8C:1F:75:B2:0D:DF:6B:3B:BF:9C:5D:40:66:04:CE
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 095A
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/3bswqYiMH3WyDd9rO7-cXUBmBM4.roa
Signing time: Wed 29 Sep 2021 02:42:38 +0000
ROA not before: Wed 29 Sep 2021 02:42:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18411
IP address blocks: 61.56.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2394 (0x95a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 29 02:42:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DDBB30A9888C1F75B20DDF6B3BBF9C5D406604CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:02:8a:53:54:90:22:85:c6:d8:9b:55:a3:05:
c0:5d:59:22:df:36:06:52:b0:d9:04:85:fe:dc:f9:
6b:b0:88:72:5d:05:71:0e:12:ea:d2:d1:19:29:62:
2f:fc:e7:09:84:03:c5:4a:6d:4b:24:17:cf:6d:aa:
d1:37:59:c0:80:d2:3a:11:ea:4d:e4:83:10:73:44:
cb:55:7c:9b:02:58:b4:7e:39:f9:81:bd:84:d4:46:
5b:95:32:56:b6:17:01:db:89:1c:c0:c7:02:6e:cb:
e9:ea:2d:bb:a7:a3:90:22:e2:f2:1c:56:02:bd:7d:
33:c3:cf:ba:b8:66:45:8f:e6:45:a6:e2:53:ec:8b:
14:f1:54:1c:43:9f:2d:f1:3d:d0:de:ec:cd:02:3d:
fc:b7:6d:12:2f:ca:36:78:e3:86:44:58:73:60:fd:
33:6f:ec:38:30:89:65:a2:68:c2:dd:83:c6:71:dc:
b3:b6:37:da:fa:18:b1:72:73:d2:fe:b1:80:24:7b:
23:11:6c:0b:73:6a:a5:da:14:8a:b4:d5:64:7e:74:
ab:1e:df:2a:1a:1a:f6:68:4e:47:28:e1:16:05:ce:
40:a2:73:59:18:db:b2:16:e5:80:32:af:d8:b8:eb:
81:14:5d:ee:01:da:0e:f7:9c:0f:0f:68:94:a3:6d:
00:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BB:30:A9:88:8C:1F:75:B2:0D:DF:6B:3B:BF:9C:5D:40:66:04:CE
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/3bswqYiMH3WyDd9rO7-cXUBmBM4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.26.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:c4:a3:ef:3e:5e:b5:7d:b0:3e:4f:ad:57:12:73:75:29:0b:
16:07:61:71:37:96:69:98:fb:a2:7a:2f:a6:56:db:bf:31:cc:
4f:22:1f:e1:64:85:e2:14:1c:de:f3:af:00:f3:ea:f3:98:fe:
58:60:6c:f6:06:1b:27:be:20:c9:7e:8d:89:10:28:a8:35:ed:
73:a3:92:e2:39:4a:0b:a3:c3:e9:cc:0f:e0:83:96:3e:85:0b:
4b:a1:4a:83:4b:37:63:39:57:fb:69:6c:b3:a7:fc:6b:3b:39:
04:0a:74:bf:ae:52:3c:cb:ed:7a:a7:8f:f0:cd:5a:96:a9:40:
23:93:c0:6f:7d:42:1f:7d:34:18:fa:e7:82:bb:61:a9:d2:a9:
b8:7a:8f:80:2e:e2:ae:80:32:53:09:8d:8e:ee:fb:81:ec:16:
4e:28:89:97:e8:0b:fb:42:b1:e4:67:38:aa:9d:67:6b:ed:94:
80:b0:74:5a:31:4b:cf:d0:e4:b3:85:30:49:bb:5b:56:b7:1e:
b8:5d:54:9f:a4:fb:02:d7:cc:cf:7d:85:dd:79:99:79:7f:99:
ac:c2:53:b8:2a:72:7e:a3:be:28:9e:23:2d:8c:98:73:d3:81:
11:dc:ce:38:d9:88:86:9c:c2:be:53:26:bf:3a:b7:04:0d:00:
40:e4:a2:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org