Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/5IdmvlyS34gd-G8icGekTPjeyrM.roa
File: 5IdmvlyS34gd-G8icGekTPjeyrM.roa (raw, json)
Hash identifier: XXBu+L3ePVLVluvqoxIZrlvtgsFgaWjB8TlfLxVk/n0=
Subject key identifier: E4:87:66:BE:5C:92:DF:88:1D:F8:6F:22:70:67:A4:4C:F8:DE:CA:B3
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0A89
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/5IdmvlyS34gd-G8icGekTPjeyrM.roa
Signing time: Thu 15 Sep 2022 02:37:49 +0000
ROA not before: Thu 15 Sep 2022 02:37:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18046
IP address blocks: 116.50.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2697 (0xa89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 15 02:37:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E48766BE5C92DF881DF86F227067A44CF8DECAB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:38:b7:f2:ad:a3:7b:c5:cf:89:48:a6:1b:81:
56:c4:6a:d9:6f:9e:c5:87:46:42:d2:ac:dc:c2:33:
87:bf:b0:7e:bc:a2:bf:b4:39:a9:28:af:07:70:13:
9c:3a:49:f5:a2:a4:e7:d4:b5:e7:9f:b8:7e:cd:20:
17:5d:61:12:cb:ec:f1:2c:e8:63:7e:f7:66:f3:9e:
76:1c:49:dc:e4:c7:c8:73:86:b8:58:92:f3:67:f6:
dd:b9:67:da:08:2e:c3:d4:9e:5d:11:d5:32:29:14:
0c:3c:9c:06:5d:38:9e:6e:5b:55:85:a2:eb:2d:21:
96:c2:ad:1d:72:97:fd:b6:39:b3:a1:e8:21:3a:32:
b0:cc:d8:e3:16:b8:39:4a:34:6a:2c:50:0d:00:46:
9d:76:3b:17:b5:81:dc:b3:92:39:e8:c8:b4:08:f0:
3a:fc:e8:74:f8:b1:dc:c2:f2:f0:d5:e9:30:8b:e1:
f7:aa:7e:5a:4d:83:78:29:0d:01:5d:90:c6:08:9c:
7e:e2:8a:da:3b:1c:68:19:1c:ce:e5:1d:51:f0:6c:
b3:48:3d:b0:15:c4:db:1f:d4:1f:f3:0f:9f:f7:60:
36:60:3a:ae:a2:09:ee:c0:a1:f4:ac:a2:8b:64:2a:
94:73:25:f8:7d:72:72:ab:83:35:2e:df:ae:a2:dc:
e5:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:87:66:BE:5C:92:DF:88:1D:F8:6F:22:70:67:A4:4C:F8:DE:CA:B3
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/5IdmvlyS34gd-G8icGekTPjeyrM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.50.32.0/20
Signature Algorithm: sha256WithRSAEncryption
39:20:f8:73:1f:e3:e4:f2:47:49:94:bf:da:05:a8:9b:8d:3e:
66:5e:df:e1:22:6f:3a:00:f5:c2:24:2a:06:0e:d1:c5:bb:b4:
04:19:86:31:44:d5:43:0a:86:50:c7:bb:12:eb:3e:d6:ce:53:
33:73:b2:41:6c:ad:ab:61:39:2c:2e:4a:22:c3:18:6f:7f:bc:
f9:85:76:50:b6:48:22:87:d9:0f:be:8b:48:9f:79:5c:68:b3:
6d:7b:4d:19:2a:3a:3e:40:19:30:4f:31:ee:9f:86:ba:ae:4f:
25:32:2f:5b:26:0d:c7:a6:4f:3f:45:bd:13:bd:77:70:c6:db:
59:69:0b:44:03:f3:aa:85:fd:01:ca:00:14:83:ec:bc:47:3c:
20:b4:a5:a4:fd:ce:1d:23:1c:b8:79:70:1f:48:9f:77:3e:13:
30:bf:78:78:46:17:e5:b9:e2:44:f9:54:51:0b:b7:a1:84:8d:
35:df:b4:7e:8e:27:de:2b:6d:46:e5:bb:6d:96:68:f9:e0:d6:
1c:2e:8e:c0:e2:9a:b0:31:db:2c:01:36:a8:97:2c:ef:93:ea:
3a:91:56:09:28:71:c6:c5:a4:ac:51:ce:71:bf:7a:11:f2:10:
1d:63:18:60:34:ce:8c:ec:72:13:c3:ba:7e:49:44:c4:91:29:
04:dc:f7:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org