Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/1Y__my7cKVu9re8sQ0hZ5ls-RUk.roa
File: 1Y__my7cKVu9re8sQ0hZ5ls-RUk.roa (raw, json)
Hash identifier: U3cS8pJZcw3up2e7hJ2gXdgcytHmN9njlxtkyOwg9Mg=
Subject key identifier: D5:8F:FF:9B:2E:DC:29:5B:BD:AD:EF:2C:43:48:59:E6:5B:3E:45:49
Certificate issuer: /CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0
Certificate serial: 0978
Authority key identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/1Y__my7cKVu9re8sQ0hZ5ls-RUk.roa
Signing time: Wed 29 Sep 2021 02:36:54 +0000
ROA not before: Wed 29 Sep 2021 02:36:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18046
IP address blocks: 159.117.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2424 (0x978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0
Validity
Not Before: Sep 29 02:36:54 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D58FFF9B2EDC295BBDADEF2C434859E65B3E4549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:89:e2:c5:d4:d3:cb:7c:32:6a:58:7a:c8:6b:
1a:c9:5c:96:5e:7d:fb:32:cc:37:c4:05:cc:97:3a:
3c:10:04:a5:52:0c:2b:f1:8d:7f:60:d8:0a:0c:12:
29:fc:ed:ee:2f:92:5c:6e:64:8a:a8:fa:6e:0d:25:
66:43:75:ba:11:f3:23:d3:23:99:48:22:13:59:06:
4c:a4:1a:55:e7:f5:f6:1d:bb:a0:1f:ff:1e:6d:42:
42:6b:82:7a:a7:08:53:b9:93:28:7f:3e:0e:b8:1b:
4f:0a:31:35:9e:ef:5d:93:c9:29:6b:ca:a6:e4:c1:
27:55:ae:5b:c6:a3:d5:61:ce:99:ac:c0:12:3c:a2:
23:71:bc:2d:7a:7b:e7:7c:0d:fd:99:b6:ab:fb:5a:
9e:76:f9:ad:b3:42:3b:95:81:85:65:36:a6:1d:9f:
24:7a:cf:a7:bd:06:ea:fc:9f:44:34:c9:ac:95:9c:
e2:c7:4e:8b:be:8b:e0:b9:a9:b2:06:f4:46:ec:e5:
f3:86:46:4c:8e:d1:bc:6a:ba:1f:0e:46:15:d2:4e:
59:1e:5e:5c:3b:81:c2:47:49:57:a2:c2:27:a8:8b:
5b:f4:af:05:2c:5d:2d:1e:a0:21:90:44:f9:f4:8a:
47:e6:ae:6e:0a:2f:f4:21:c0:ca:76:74:d2:6e:41:
9d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:8F:FF:9B:2E:DC:29:5B:BD:AD:EF:2C:43:48:59:E6:5B:3E:45:49
X509v3 Authority Key Identifier:
keyid:F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/1Y__my7cKVu9re8sQ0hZ5ls-RUk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
159.117.64.0/19
Signature Algorithm: sha256WithRSAEncryption
98:9c:b0:61:8f:5d:c6:63:eb:ca:38:85:73:0f:29:a8:68:e9:
ac:99:a8:3a:b9:93:12:61:b6:68:9c:18:bc:18:60:5a:6f:1b:
f8:e7:00:24:45:31:a1:e2:8d:be:08:40:3d:b0:7a:43:8d:e8:
43:15:6c:d9:49:cc:ab:0f:32:52:92:79:b5:73:9c:00:42:13:
5b:2d:22:e4:df:c1:07:df:04:77:ab:0a:50:c7:39:30:f0:94:
8f:6e:a0:66:45:f9:6f:39:0d:50:07:0b:4e:c0:0d:aa:1d:7f:
10:df:1b:ee:be:63:c4:0a:ab:a6:b0:31:9f:72:52:b5:cb:6d:
09:87:bd:4c:e7:db:d9:26:b5:1d:87:35:b8:07:64:84:7d:1f:
2a:ed:13:b8:ef:55:73:51:90:f2:ed:b8:28:b3:7b:3c:54:ad:
b9:70:0e:f6:7f:26:66:d7:5c:01:4d:d4:a5:30:e5:6d:6c:5f:
3e:09:53:d0:ee:84:2f:f9:68:e1:c6:7d:f6:1d:f7:de:fc:71:
47:6d:86:ab:19:51:b5:6f:6c:19:33:c5:6e:56:cb:04:94:37:
d9:c1:54:6d:69:b9:12:73:28:a9:7c:67:b9:c0:92:b5:01:29:
47:f7:8d:ba:6e:26:5c:a1:8f:fd:4d:20:eb:24:e7:97:a8:0d:
2c:58:ab:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:04 2025 by rpki-client