Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-cdWQ_H8BA0iu9-N5DHAX3twunY.roa
File: -cdWQ_H8BA0iu9-N5DHAX3twunY.roa (raw, json)
Hash identifier: piqGwLWi06IIsiYOtdznfwXLrkA1T/MRSljk4pALLUg=
Subject key identifier: F9:C7:56:43:F1:FC:04:0D:22:BB:DF:8D:E4:31:C0:5F:7B:70:BA:76
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0B90
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-cdWQ_H8BA0iu9-N5DHAX3twunY.roa
Signing time: Fri 01 Sep 2023 08:35:40 +0000
ROA not before: Fri 01 Sep 2023 08:35:40 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 198949
IP address blocks: 61.65.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2960 (0xb90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 1 08:35:40 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F9C75643F1FC040D22BBDF8DE431C05F7B70BA76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:07:da:8b:f3:f7:94:53:00:2a:7f:0b:27:f6:
9a:a3:f6:85:aa:84:ee:87:02:38:53:a7:57:a5:a4:
0b:4a:8d:61:1e:4f:b7:b4:68:7f:45:0b:3f:84:28:
75:33:44:99:7f:f8:ea:30:12:11:99:11:6b:fd:db:
49:58:7e:ed:76:9e:a2:34:b0:02:64:2e:67:9b:80:
93:85:81:ab:a3:c0:8c:90:a3:62:e8:ec:de:19:6a:
33:8c:21:e3:8e:3d:c3:22:ec:fe:b9:00:b7:5a:50:
cf:35:ec:d7:a2:f6:c6:7e:62:55:3b:f8:48:47:0b:
fb:65:d1:c9:f9:a5:bd:00:84:2d:c7:b3:5e:50:c7:
d1:9f:ce:10:c8:d2:1e:59:3b:4c:bb:1c:a8:34:42:
a1:40:df:ab:b9:de:57:e3:05:13:07:cb:25:1d:f4:
47:b9:8a:ae:18:10:45:d2:83:81:e5:25:cc:42:3e:
73:83:70:81:af:5c:92:a4:05:44:4c:47:e4:ea:e2:
d1:29:52:26:3e:20:e8:6e:eb:36:c5:7c:c2:e7:ef:
aa:8c:f9:26:10:d1:96:89:34:ea:ea:17:60:79:7a:
6d:35:38:e5:3f:bd:1e:fb:43:89:fc:a8:e0:bd:6f:
b2:8a:dd:4d:8f:26:e9:f6:df:bb:83:69:ad:fc:4d:
ad:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:C7:56:43:F1:FC:04:0D:22:BB:DF:8D:E4:31:C0:5F:7B:70:BA:76
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-cdWQ_H8BA0iu9-N5DHAX3twunY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.236.0/24
Signature Algorithm: sha256WithRSAEncryption
11:e1:b8:63:2c:3d:10:02:d8:61:1c:0c:0f:73:e3:c8:c8:2b:
2f:0f:c9:92:3a:1c:86:24:52:7f:2e:ed:60:46:33:15:82:f2:
4d:ad:07:e2:46:f1:0b:13:4c:a5:13:0f:69:56:19:9e:95:44:
33:a8:12:dd:45:d1:01:bd:7b:9a:ae:30:fb:08:17:ae:38:d8:
fd:9f:00:71:85:a5:6d:39:48:fc:b0:c4:f0:ef:4f:d4:02:9c:
b3:62:1b:2a:de:58:82:3f:3e:31:d7:76:e3:d5:5c:9f:03:0a:
4d:de:c3:4c:05:7b:76:53:dc:94:36:ee:77:65:67:07:aa:c0:
18:1d:7c:af:86:0c:95:5e:b1:e3:67:21:7b:96:91:ab:a6:6b:
fe:21:62:99:cf:45:c4:fd:77:2e:71:1e:5f:34:5e:a5:f0:77:
cb:0e:da:cb:fb:0c:e6:fc:5f:03:24:90:18:ea:7d:a6:95:20:
90:c5:56:b5:2d:26:6a:c0:f2:12:13:11:93:ab:5e:c2:92:ea:
0a:16:d8:a6:80:30:91:04:77:33:86:16:67:c9:cc:7b:2e:42:
66:3d:bc:35:0e:fe:a2:ca:ee:44:ce:38:a8:5c:4a:13:bb:a0:
f5:6e:a9:52:12:d7:4f:1d:41:a6:e3:09:7a:63:51:5e:87:92:
d0:06:ec:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 06:09:28 2025 by rpki-client