Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/5_nbI7zXX5qCvTKWhpC_D2Fak2g.roa
File: 5_nbI7zXX5qCvTKWhpC_D2Fak2g.roa (raw, json)
Hash identifier: b8T6Jy0K8b2rvrMLXvDsLzzrJhyItPVzBN5gv9VSHdg=
Subject key identifier: E7:F9:DB:23:BC:D7:5F:9A:82:BD:32:96:86:90:BF:0F:61:5A:93:68
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0A89
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/5_nbI7zXX5qCvTKWhpC_D2Fak2g.roa
Signing time: Thu 15 Sep 2022 02:37:51 +0000
ROA not before: Thu 15 Sep 2022 02:37:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18046
IP address blocks: 61.65.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2697 (0xa89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 15 02:37:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E7F9DB23BCD75F9A82BD32968690BF0F615A9368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:35:4a:a8:9a:a5:8b:82:08:c5:bb:4e:dc:16:
5d:f0:a8:9c:86:68:c1:cf:43:61:7d:b9:c4:fe:58:
4d:1a:1c:81:a4:e0:65:3a:58:12:a9:9d:6e:f7:bd:
f2:20:58:58:77:bd:77:a5:82:51:db:23:62:06:60:
78:8b:ad:ad:de:9c:82:1d:39:7e:d5:2a:7f:94:51:
07:0a:52:71:5b:8f:05:94:6e:2c:0a:43:4d:69:09:
38:87:4c:80:13:83:46:9a:57:59:8c:4c:e9:c6:92:
70:5b:81:68:65:5a:f5:50:e8:12:ae:7a:20:db:53:
25:8d:70:57:9b:bc:19:23:b4:56:d0:ec:c5:fe:3f:
63:2a:cd:d3:a7:61:44:73:d6:3a:6c:a4:fc:f5:3c:
0a:5b:db:79:26:04:fd:6f:be:11:cf:60:76:cf:1f:
b6:7c:39:49:3e:ea:85:39:42:0e:11:d2:3a:84:14:
85:0f:e7:47:1c:42:e7:0b:3e:fe:db:34:cb:13:88:
f2:da:e8:e9:9d:bc:35:99:b4:12:2c:cd:a0:a9:2f:
86:80:e4:80:06:f5:87:3f:60:2d:3b:6d:99:15:b5:
b6:bf:98:7e:fc:29:96:f5:a9:a0:f7:cd:bd:7f:92:
5f:dd:8d:5e:97:9d:57:49:89:c0:cc:16:12:bb:b7:
70:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F9:DB:23:BC:D7:5F:9A:82:BD:32:96:86:90:BF:0F:61:5A:93:68
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/5_nbI7zXX5qCvTKWhpC_D2Fak2g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.224.0/19
Signature Algorithm: sha256WithRSAEncryption
14:3c:b7:97:c5:a4:0e:67:53:c8:1e:b8:59:01:ae:5a:04:ef:
be:1f:26:d9:97:95:74:07:4e:19:43:da:73:79:fd:20:48:5a:
dd:a7:6d:b0:e5:ea:31:b8:e4:e0:29:f4:54:25:16:b0:27:03:
f5:0b:68:96:53:0e:8f:d9:a3:cc:d9:37:9f:9d:f7:ea:9c:46:
87:b7:7e:99:e7:d3:e4:a3:b6:75:c1:2b:7c:ad:35:b8:48:6a:
51:e6:ce:23:cc:66:44:21:5f:f8:f7:0f:b4:d0:8f:9c:a0:2d:
77:06:2f:cf:3a:a6:36:66:22:41:8d:77:c9:d8:a0:3f:47:7d:
c2:01:f4:b7:81:2a:35:29:50:ed:f2:8e:85:78:3a:b1:1e:19:
b3:4c:0f:e5:9b:43:a5:aa:61:71:40:d8:7f:02:03:fa:c7:48:
f5:c4:f9:bf:c4:c7:9c:17:84:69:e2:37:2d:79:dd:e7:c1:e2:
ac:01:fc:12:7d:97:7f:a5:03:c6:54:c4:dd:fc:04:8b:ac:b7:
da:e9:ae:ad:d5:0c:2d:3d:6e:6b:bc:09:eb:62:a0:4c:c9:d6:
ee:44:4c:a2:67:3c:d7:62:87:7f:58:e8:d2:45:7b:15:04:ab:
2a:58:d7:32:ce:3e:14:dc:1b:4a:b8:21:27:8d:79:a0:e4:b2:
97:e5:a6:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org