Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/8fg-TzfhHoS8yTq9EMrnXFJQd5Q.roa
File: 8fg-TzfhHoS8yTq9EMrnXFJQd5Q.roa (raw, json)
Hash identifier: iQvryVrjxci8W1gqFI7cq7brEizYYNiD/hdGk+3UIPM=
Subject key identifier: F1:F8:3E:4F:37:E1:1E:84:BC:C9:3A:BD:10:CA:E7:5C:52:50:77:94
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0B91
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/8fg-TzfhHoS8yTq9EMrnXFJQd5Q.roa
Signing time: Fri 01 Sep 2023 08:35:40 +0000
ROA not before: Fri 01 Sep 2023 08:35:40 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18046
IP address blocks: 116.50.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2961 (0xb91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 1 08:35:40 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F1F83E4F37E11E84BCC93ABD10CAE75C52507794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b2:30:59:da:d6:14:1e:8f:c9:d8:15:47:c2:
63:a9:d5:81:dc:c6:aa:53:85:75:58:11:90:b0:8d:
fb:07:d4:da:dc:e6:ac:eb:77:ac:81:ee:48:86:e9:
5f:21:f6:9b:aa:6b:8c:0a:92:ed:a6:4b:28:a1:13:
91:59:66:6d:5b:d1:c7:a6:ce:4b:24:e0:c5:46:3d:
90:0d:97:d3:78:67:6f:4b:97:5d:2f:eb:4a:09:22:
c0:e7:2b:07:20:4e:f7:71:17:25:90:ff:82:d9:7e:
d9:6c:1f:47:92:6a:85:16:f1:bf:a9:55:77:7d:9b:
5d:c1:83:50:aa:1f:a4:56:bd:93:3b:8b:f8:44:4e:
79:d5:3e:e3:57:5d:ef:e8:c0:36:29:55:50:6e:e9:
a9:84:56:0d:76:00:1d:40:63:75:b2:d9:38:d5:17:
a8:39:8f:75:4d:87:0a:b9:67:78:9e:a0:c1:7d:bb:
8c:17:ef:32:0a:e0:87:00:f1:2f:8b:b9:e6:49:51:
87:71:0b:7e:0f:d0:cd:e1:82:ac:5d:b2:93:db:fc:
86:d5:14:54:c2:10:11:bc:0d:68:7f:e2:b9:e4:e9:
62:4e:ef:a5:8c:27:6c:b5:9f:7b:e8:2e:90:31:7f:
b9:44:37:ce:8d:16:5f:74:3c:ba:6b:b0:39:bf:d7:
41:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F8:3E:4F:37:E1:1E:84:BC:C9:3A:BD:10:CA:E7:5C:52:50:77:94
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/8fg-TzfhHoS8yTq9EMrnXFJQd5Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.50.41.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:4e:37:dd:4f:af:60:36:ec:c6:48:97:19:34:40:83:21:f8:
b0:64:f8:ae:56:b6:96:92:d7:fd:c8:55:ec:49:50:34:43:96:
ac:05:90:27:a6:34:fc:1b:ce:04:14:1d:c9:54:4d:a6:be:9c:
94:df:4f:dc:30:fe:fb:c7:4d:e1:cb:25:be:4e:8b:c6:a6:8d:
4c:83:34:7c:7c:2f:a1:12:57:15:2e:18:67:2f:88:32:0d:f3:
ca:68:4e:e7:87:fb:e4:18:d8:6d:c6:fd:dc:d8:9d:cc:14:4d:
19:91:f9:e9:84:d0:46:c9:df:e1:9d:aa:6e:0f:a3:12:63:d0:
4e:3c:11:cc:3f:7d:6a:a3:2f:1c:56:b0:38:31:3a:b6:16:cc:
2c:fe:2e:e7:7c:e2:38:dd:bf:2c:f9:85:60:37:45:7b:4c:7a:
d8:b0:7c:c2:66:11:2c:3b:31:cf:00:1c:62:ba:94:92:de:46:
d8:c2:65:bf:16:5d:1b:d1:6b:8d:06:15:00:0d:c8:d1:ed:2e:
f0:a0:0a:43:e6:93:10:e3:53:01:a8:54:99:4a:ae:a1:d7:3d:
9c:13:c2:86:6c:d2:41:3d:3a:fb:b2:e2:fe:5b:a1:10:e4:2f:
3c:58:63:03:ba:3c:3c:30:e3:a7:a2:5a:94:8d:a9:e9:93:69:
1a:c0:be:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:15 2025 by rpki-client