Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/H5U1GDy9VySeyeYb_OUxmceSo_k.roa
File: H5U1GDy9VySeyeYb_OUxmceSo_k.roa (raw, json)
Hash identifier: vC+hVPWAM2RHSeja8KkckJljrCHzZPM+R9xdW4LrDO0=
Subject key identifier: 1F:95:35:18:3C:BD:57:24:9E:C9:E6:1B:FC:E5:31:99:C7:92:A3:F9
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0A89
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/H5U1GDy9VySeyeYb_OUxmceSo_k.roa
Signing time: Thu 15 Sep 2022 02:37:51 +0000
ROA not before: Thu 15 Sep 2022 02:37:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18046
IP address blocks: 116.50.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2697 (0xa89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 15 02:37:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1F9535183CBD57249EC9E61BFCE53199C792A3F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2f:2d:9e:92:58:6d:71:21:9b:74:20:19:b1:
0a:4c:0d:07:fb:97:7b:3c:69:8e:20:0c:7c:fb:27:
fa:aa:fc:7f:c2:02:b6:65:98:a1:3a:83:41:45:42:
ab:13:71:d2:0c:63:13:7f:bb:a7:e3:ff:6c:34:68:
71:70:f5:1a:11:7d:8e:ee:46:2b:7d:71:5f:b0:1b:
93:b2:7b:57:80:87:c4:2c:e2:0f:47:d7:5f:51:fb:
c1:fd:52:98:51:f0:22:26:8b:55:5f:51:61:38:af:
c4:ca:3f:10:37:c1:27:d8:37:ee:28:e8:e5:1a:91:
b1:d5:47:c4:8d:98:eb:40:55:b3:01:d6:79:00:85:
2b:1e:b0:50:af:6a:85:b5:f7:98:86:0a:2b:64:02:
79:e9:c2:97:41:27:a7:04:5d:da:24:a3:a6:df:0d:
b1:ef:76:90:f9:0f:e2:d9:79:6c:15:d4:7d:2c:2b:
50:67:b8:64:72:a5:cc:91:55:00:64:e0:db:f9:fc:
9d:23:cb:e5:96:0e:d1:40:70:03:9a:de:40:70:80:
2f:4c:93:15:d3:8e:db:4b:ba:1b:3c:16:1f:4f:41:
7c:5e:17:66:3c:98:c7:20:2e:dc:7a:7c:98:d1:5e:
33:c1:ac:69:dc:5c:77:d3:82:86:56:31:10:6a:f6:
c4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:95:35:18:3C:BD:57:24:9E:C9:E6:1B:FC:E5:31:99:C7:92:A3:F9
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/H5U1GDy9VySeyeYb_OUxmceSo_k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.50.41.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:a4:1c:93:f0:de:0b:34:4b:bd:e9:58:33:5c:e0:69:57:a0:
57:7b:d8:35:22:a3:6c:b1:62:ec:6a:8c:73:f8:20:ce:69:1e:
a6:6d:ae:a5:e7:ff:71:8f:b2:b0:87:1c:12:54:c1:1a:47:ee:
2f:28:ae:e0:b4:75:17:2a:85:15:20:a2:cb:0d:d2:af:6b:a8:
de:81:68:87:69:27:b0:66:44:fb:e9:5d:fb:16:eb:f2:df:ec:
6d:c5:42:e9:20:06:c5:d6:d7:88:0a:36:f4:45:c9:c0:2a:1b:
54:8d:2f:c0:8e:49:61:a1:2d:c1:d0:40:44:68:03:43:e9:d3:
b7:a0:55:0e:fb:af:2e:7e:05:e6:5c:bf:3d:b3:6b:c9:c7:18:
db:3c:37:fa:b5:c7:73:20:57:5e:6f:b3:89:fa:1a:1d:2d:33:
e7:d7:5b:72:51:e0:ec:1b:b4:e9:8b:7f:3f:21:74:f5:57:81:
cd:3e:79:19:16:5c:af:cf:d4:2c:ee:ee:fb:1c:90:de:00:fb:
9d:ae:66:9b:37:e2:70:3d:ff:10:5f:f2:08:cd:40:5e:6b:54:
ae:9c:f5:c4:fb:62:3d:ff:37:a4:47:c9:e4:0d:30:28:55:01:
eb:25:2c:2f:60:83:28:62:c5:3d:a2:55:7e:57:29:eb:d7:d5:
29:ec:36:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org