Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/2vL456oEUD5fVra-NZtluuTaabk.roa
File: 2vL456oEUD5fVra-NZtluuTaabk.roa (raw, json)
Hash identifier: X5o3++OBk9a3qWeeZbgcZKXNziK8YN4qZF8mrnszXLo=
Subject key identifier: DA:F2:F8:E7:AA:04:50:3E:5F:56:B6:BE:35:9B:65:BA:E4:DA:69:B9
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 099B
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/2vL456oEUD5fVra-NZtluuTaabk.roa
Signing time: Wed 29 Sep 2021 02:36:51 +0000
ROA not before: Wed 29 Sep 2021 02:36:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131597
IP address blocks: 61.65.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2459 (0x99b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 29 02:36:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DAF2F8E7AA04503E5F56B6BE359B65BAE4DA69B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8f:7a:50:75:2d:39:7a:dc:95:b6:3f:a4:5c:
4e:2d:de:f7:1e:69:d1:11:d2:3e:07:94:c0:f2:49:
e1:7e:4e:f3:e6:8d:92:00:75:bd:d2:f6:2b:86:1f:
d1:f5:9f:93:da:46:a7:be:f5:6a:23:df:51:7e:6a:
90:c1:bf:b6:7a:2a:bf:16:d3:5d:c8:55:88:70:02:
e3:c4:83:e2:73:c7:41:d4:b9:55:c1:86:43:4b:9b:
88:2b:cb:c1:6a:2a:1b:05:2b:d1:f9:78:4b:38:5a:
97:06:bb:0b:a5:1f:58:00:46:0a:99:42:a1:4d:cd:
67:2f:fb:d5:9a:d0:cb:2e:16:0d:90:99:c8:5a:27:
db:d0:96:b8:4f:6c:9b:77:78:e1:1a:ea:ac:6e:72:
cb:61:e1:f2:7d:07:b2:44:81:6b:10:3e:59:d6:13:
2e:e2:6e:f6:89:d3:82:b0:24:d0:8b:b1:ce:73:61:
38:be:01:84:46:fa:da:55:2f:27:11:4e:89:6c:f1:
e9:a0:c0:47:f9:16:4f:79:58:22:ab:eb:7e:5f:45:
cd:09:53:f4:6e:62:22:45:2e:63:02:9e:9b:ba:95:
35:a3:6c:8c:8a:56:f1:d5:d7:b3:73:fd:d1:4f:10:
71:e3:13:e1:97:e1:b2:5c:01:9d:ba:25:90:66:c6:
b7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:F2:F8:E7:AA:04:50:3E:5F:56:B6:BE:35:9B:65:BA:E4:DA:69:B9
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/2vL456oEUD5fVra-NZtluuTaabk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.224.0/21
Signature Algorithm: sha256WithRSAEncryption
63:c2:0b:42:9f:aa:7c:af:bd:64:fa:9e:db:64:43:30:96:19:
bb:aa:2f:dd:20:96:e9:ed:24:fd:4f:48:89:91:eb:bb:35:5d:
7b:c9:13:c8:52:50:28:0f:2d:c6:76:f6:fb:78:96:e7:5b:a2:
36:3e:31:c2:82:43:36:87:f4:12:f2:8c:26:ad:8b:c3:e0:5a:
5c:c7:0e:ac:b3:24:f0:3f:96:52:34:ab:40:94:59:32:e7:bf:
39:29:46:fe:40:8e:a2:27:09:1f:0b:a1:ab:08:42:1c:3e:f8:
33:a6:75:a5:b5:97:ed:a6:be:0f:8f:8a:e2:80:49:60:a6:e1:
62:85:8c:8b:c3:84:15:a1:8d:dc:1f:bf:ef:88:10:91:b5:84:
a9:b1:00:b5:10:bc:0d:0a:13:9c:78:a4:dc:14:bb:a2:3c:b7:
8a:5d:52:1a:68:ac:b9:b1:7b:84:b3:81:f1:5d:9a:4e:c6:40:
d7:ae:4d:e1:c6:f6:79:95:5f:85:42:cd:e7:16:77:9e:4e:8b:
9c:88:68:d0:d3:4d:34:20:48:71:92:8b:6e:99:be:f5:0c:9b:
ca:77:b2:54:e9:65:e4:d6:a5:80:b7:bb:17:f7:c8:ad:80:6a:
be:3a:af:31:8a:33:d8:88:59:93:74:cb:0d:74:f5:c4:84:99:
e1:e9:70:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org