Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/1QiIrFswJUxuKhGy1TQmYv2ET1A.roa
File: 1QiIrFswJUxuKhGy1TQmYv2ET1A.roa (raw, json)
Hash identifier: 0mJYf/VVxSxXzB+SKBuolH/eCtLKyLUpn8TgOz2WLOo=
Subject key identifier: D5:08:88:AC:5B:30:25:4C:6E:2A:11:B2:D5:34:26:62:FD:84:4F:50
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0A89
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/1QiIrFswJUxuKhGy1TQmYv2ET1A.roa
Signing time: Thu 15 Sep 2022 02:37:49 +0000
ROA not before: Thu 15 Sep 2022 02:37:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18046
IP address blocks: 61.65.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2697 (0xa89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 15 02:37:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D50888AC5B30254C6E2A11B2D5342662FD844F50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:48:22:2b:6c:07:70:7b:fd:11:a6:a9:51:bd:
50:1f:4d:04:67:69:4d:59:9f:38:7c:df:ca:8b:1c:
15:03:66:b6:f0:41:cc:b2:59:0e:8a:3f:fa:13:dd:
04:03:9f:85:d9:d0:a2:dd:79:97:41:cf:58:04:37:
e1:c7:e6:75:d1:2d:c2:e5:bb:50:d7:b3:19:b2:38:
e7:e7:80:af:a4:f9:b1:44:52:7b:57:9a:1f:9b:d2:
96:d3:95:49:93:9c:5a:69:cb:3d:9f:af:69:68:3c:
b1:00:61:7e:cc:b2:e8:4d:7e:33:ce:4f:80:cc:5e:
aa:b3:5d:78:fa:fd:bc:e5:56:27:2e:21:fb:c5:b9:
c7:d0:f0:b9:61:47:c8:45:82:df:07:58:86:5f:ed:
d5:ee:7f:7f:81:84:d6:22:b5:2d:db:b8:64:f7:fa:
b2:14:a1:86:b0:bb:97:75:bc:a8:18:af:58:5d:78:
c6:96:d1:38:01:11:20:44:f2:e1:a1:f8:13:93:82:
72:2d:6f:be:50:ee:82:a6:20:46:da:26:ed:b7:85:
30:b0:5a:cd:3e:16:f4:82:1f:1e:99:f7:8b:c0:15:
d0:8b:7a:38:15:bb:9a:1f:9f:cb:a0:55:3a:fb:fe:
48:f3:82:f3:88:32:2c:e4:be:53:d7:09:eb:4d:e8:
17:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:08:88:AC:5B:30:25:4C:6E:2A:11:B2:D5:34:26:62:FD:84:4F:50
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/1QiIrFswJUxuKhGy1TQmYv2ET1A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.236.0/22
Signature Algorithm: sha256WithRSAEncryption
d6:12:c3:b8:1c:d3:a8:89:97:f5:1e:3a:bc:69:b3:1b:19:7c:
c1:2d:24:b3:e7:e3:9c:07:85:a7:c6:a7:b7:9c:6f:5a:18:f9:
54:94:22:33:da:cb:6d:2d:5b:8e:07:7a:21:15:ec:ee:38:9b:
be:91:9a:1c:b3:94:92:4a:21:36:36:e9:c4:76:41:79:7d:05:
7e:28:af:ad:26:14:1b:b8:1a:14:82:96:4d:aa:47:9c:d6:6e:
56:6d:fe:da:b8:a1:82:c7:20:b6:be:35:bb:15:fe:b2:ba:8a:
56:f3:e5:1d:cb:8b:38:c7:77:11:f7:41:2d:21:21:bb:9f:58:
26:c9:b2:e3:0b:d8:99:2e:20:bc:0a:63:3c:ac:ad:db:13:eb:
14:91:71:00:c2:92:b5:e6:23:16:94:b0:0e:7f:36:13:82:82:
b9:de:05:e7:ac:eb:e8:64:f9:74:57:5c:d4:ad:2f:0f:4a:e3:
ae:91:46:d9:eb:e4:f1:c4:e8:c7:06:60:d9:5e:ea:31:be:15:
68:07:75:4b:2e:5c:16:ba:7e:7d:67:4b:54:e7:83:cf:1e:ab:
03:5a:33:d0:e2:6a:43:36:37:99:fe:1a:84:cc:3a:2f:c3:e6:
52:f0:2b:11:b3:b8:20:86:7a:79:07:39:f7:82:05:99:ab:0f:
76:09:e3:e7
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCokwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3
ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yMjA5MTUw
MjM3NDlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQ1MDg4OEFDNUIzMDI1
NEM2RTJBMTFCMkQ1MzQyNjYyRkQ4NDRGNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5SCIrbAdwe/0RpqlRvVAfTQRnaU1Znzh838qLHBUDZrbwQcyy
WQ6KP/oT3QQDn4XZ0KLdeZdBz1gEN+HH5nXRLcLlu1DXsxmyOOfngK+k+bFEUntX
mh+b0pbTlUmTnFppyz2fr2loPLEAYX7MsuhNfjPOT4DMXqqzXXj6/bzlVicuIfvF
ucfQ8LlhR8hFgt8HWIZf7dXuf3+BhNYitS3buGT3+rIUoYawu5d1vKgYr1hdeMaW
0TgBESBE8uGh+BOTgnItb75Q7oKmIEbaJu23hTCwWs0+FvSCHx6Z94vAFdCLejgV
u5ofn8ugVTr7/kjzgvOIMizkvlPXCetN6BclAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU1QiIrFswJUxuKhGy1TQmYv2ET1AwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x
k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP
TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy8xUWlJckZzd0pVeHVL
aEd5MVRRbVl2MkVUMUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCPUHsMA0GCSqGSIb3DQEBCwUAA4IBAQDWEsO4HNOoiZf1Hjq8abMbGXzBLSSz
5+OcB4Wnxqe3nG9aGPlUlCIz2sttLVuOB3ohFezuOJu+kZocs5SSSiE2NunEdkF5
fQV+KK+tJhQbuBoUgpZNqkec1m5Wbf7auKGCxyC2vjW7Ff6yuopW8+Udy4s4x3cR
90EtISG7n1gmybLjC9iZLiC8CmM8rK3bE+sUkXEAwpK15iMWlLAOfzYTgoK53gXn
rOvoZPl0V1zUrS8PSuOukUbZ6+TxxOjHBmDZXuoxvhVoB3VLLlwWun59Z0tU54PP
HqsDWjPQ4mpDNjeZ/hqEzDovw+ZS8CsRs7gghnp5Bzn3ggWZqw92CePn
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org