Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/21QUzV0vxM_Dul9Ceyi3xmDqsnM.roa
File: 21QUzV0vxM_Dul9Ceyi3xmDqsnM.roa (raw, json)
Hash identifier: vrDnBA8p285S29cEIOQTkNnZqhCDvztBxIQNCBcmhSM=
Subject key identifier: DB:54:14:CD:5D:2F:C4:CF:C3:BA:5F:42:7B:28:B7:C6:60:EA:B2:73
Certificate issuer: /CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0
Certificate serial: 0A62
Authority key identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/21QUzV0vxM_Dul9Ceyi3xmDqsnM.roa
Signing time: Thu 15 Sep 2022 02:37:52 +0000
ROA not before: Thu 15 Sep 2022 02:37:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18046
IP address blocks: 159.117.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2658 (0xa62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0
Validity
Not Before: Sep 15 02:37:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DB5414CD5D2FC4CFC3BA5F427B28B7C660EAB273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8a:0c:c1:75:b2:7e:49:bd:2b:18:89:74:77:
91:bd:d5:b9:ab:c5:fb:bb:6d:4c:a7:84:f0:7b:f7:
53:e1:7d:41:35:40:cf:02:4e:f7:46:6d:fc:63:1b:
5a:b7:83:a0:01:95:a4:7a:d3:e9:20:23:cf:c6:9e:
3c:06:90:e4:69:97:74:f5:4c:1e:71:2f:ac:a6:81:
8a:44:51:9e:26:f6:15:89:3a:02:7c:70:4d:e8:a3:
c8:f4:4d:f9:03:ef:e9:5a:86:d0:1f:6f:63:c3:e0:
b5:90:b2:7c:8e:70:cb:ad:f5:44:8a:e7:7c:57:5a:
84:35:cb:b2:d3:ed:2d:bc:bf:6b:83:19:9c:dc:aa:
bd:d5:3a:54:e0:fa:ed:17:d3:9e:41:50:d3:a2:62:
4e:d7:f7:8a:b5:14:79:fe:f4:af:5e:86:7e:75:a2:
9d:61:92:9e:c5:13:72:13:b7:79:f2:60:a7:f8:e8:
b1:1f:ce:fe:7c:c1:78:9f:30:44:21:3f:0e:e1:fb:
ab:b8:a8:75:21:f4:62:74:b7:54:4a:8c:88:fd:3f:
b4:10:51:a3:b4:be:ac:67:51:a2:11:73:36:3a:1a:
8c:0f:f2:f0:89:75:42:46:c8:28:66:30:70:1a:61:
74:ef:c6:cc:df:d6:00:1a:60:d7:67:34:8c:59:bb:
be:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:54:14:CD:5D:2F:C4:CF:C3:BA:5F:42:7B:28:B7:C6:60:EA:B2:73
X509v3 Authority Key Identifier:
keyid:F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/21QUzV0vxM_Dul9Ceyi3xmDqsnM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
159.117.64.0/19
Signature Algorithm: sha256WithRSAEncryption
32:f5:8b:09:ea:e0:3a:3e:ca:63:0a:13:00:81:cb:dd:d9:bb:
4d:52:51:e7:d4:a4:96:14:93:69:79:cc:79:30:62:9c:04:4f:
e7:06:b0:df:27:5b:88:e7:76:16:4c:3f:22:c7:9c:f5:cf:14:
39:b5:02:ba:3b:65:b8:47:76:6a:51:a1:3e:1a:05:a8:5e:4d:
97:32:5c:6e:34:e2:c7:46:2b:16:c3:bd:3d:e8:80:93:d3:a2:
82:c8:ff:bd:25:1e:9a:71:c9:0c:f2:0f:c7:8f:b6:20:06:a2:
e8:9b:49:e7:50:2a:08:f6:f8:0e:ab:47:a4:f0:99:fc:92:46:
f6:60:1a:d7:c0:6c:82:63:8e:46:a5:be:91:7e:21:8c:f8:5b:
eb:6b:26:ab:61:44:1a:28:80:67:5f:16:05:6c:ed:99:7a:54:
1d:f4:a5:b7:7a:5f:7d:f6:e6:42:36:25:b1:53:db:d5:aa:d1:
73:5a:37:00:a8:39:c1:50:cd:af:ef:a2:17:43:a9:5a:4b:7b:
a2:65:11:13:8d:bc:a7:07:52:e6:02:8f:68:1b:21:5f:5c:aa:
8a:81:9c:9a:9d:40:8b:c7:db:bc:86:69:13:74:b0:83:88:8d:
f4:3c:a5:e9:ec:89:54:29:23:05:35:00:86:ba:5b:1a:e4:8d:
c3:0f:3c:f5
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCmIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjg1
OEQwMDAwQzdDNDZBOTg2QjJFQjk2ODE1RjA2QUUyNjkzQTlEMDAeFw0yMjA5MTUw
MjM3NTJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKERCNTQxNENENUQyRkM0
Q0ZDM0JBNUY0MjdCMjhCN0M2NjBFQUIyNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9igzBdbJ+Sb0rGIl0d5G91bmrxfu7bUynhPB791PhfUE1QM8C
TvdGbfxjG1q3g6ABlaR60+kgI8/GnjwGkORpl3T1TB5xL6ymgYpEUZ4m9hWJOgJ8
cE3oo8j0TfkD7+lahtAfb2PD4LWQsnyOcMut9USK53xXWoQ1y7LT7S28v2uDGZzc
qr3VOlTg+u0X055BUNOiYk7X94q1FHn+9K9ehn51op1hkp7FE3ITt3nyYKf46LEf
zv58wXifMEQhPw7h+6u4qHUh9GJ0t1RKjIj9P7QQUaO0vqxnUaIRczY6GowP8vCJ
dUJGyChmMHAaYXTvxszf1gAaYNdnNIxZu76/AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU21QUzV0vxM/Dul9Ceyi3xmDqsnMwHwYDVR0jBBgwFoAU+FjQAAx8RqmGsuuW
gV8GriaTqdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP
TkcvLUZqUUFBeDhScW1Hc3V1V2dWOEdyaWFUcWRBLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS8tRmpRQUF4OFJxbUdzdXVXZ1Y4R3JpYVRxZEEuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy8yMVFVelYwdnhNX0R1
bDlDZXlpM3htRHFzbk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQFn3VAMA0GCSqGSIb3DQEBCwUAA4IBAQAy9YsJ6uA6PspjChMAgcvd2btNUlHn
1KSWFJNpecx5MGKcBE/nBrDfJ1uI53YWTD8ix5z1zxQ5tQK6O2W4R3ZqUaE+GgWo
Xk2XMlxuNOLHRisWw7096ICT06KCyP+9JR6acckM8g/Hj7YgBqLom0nnUCoI9vgO
q0ek8Jn8kkb2YBrXwGyCY45Gpb6RfiGM+FvrayarYUQaKIBnXxYFbO2ZelQd9KW3
el999uZCNiWxU9vVqtFzWjcAqDnBUM2v76IXQ6laS3uiZRETjbynB1LmAo9oGyFf
XKqKgZyanUCLx9u8hmkTdLCDiI30PKXp7IlUKSMFNQCGulsa5I3DDzz1
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:13 2025 by rpki-client