Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/IMolceQ4aC06UtSCgcHkIsZ6TJo.roa
File: IMolceQ4aC06UtSCgcHkIsZ6TJo.roa (raw, json)
Hash identifier: Bnbd3dB6taD0mhs5tC2LtDouYfwHiqe398twyqFqeJg=
Subject key identifier: 20:CA:25:71:E4:38:68:2D:3A:52:D4:82:81:C1:E4:22:C6:7A:4C:9A
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0B0E
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/IMolceQ4aC06UtSCgcHkIsZ6TJo.roa
Signing time: Thu 23 Mar 2023 00:22:01 +0000
ROA not before: Thu 23 Mar 2023 00:22:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 198949
IP address blocks: 61.65.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2830 (0xb0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Mar 23 00:22:01 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=20CA2571E438682D3A52D48281C1E422C67A4C9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:58:09:64:69:b9:91:2c:39:83:ef:3f:79:3c:
e0:d8:ab:1c:8f:f4:b3:e0:6b:3f:57:21:d6:11:7d:
1e:5a:b5:66:fc:ba:31:d1:7f:ab:0a:ee:29:11:8d:
da:c9:59:cb:20:e8:b3:eb:6b:cc:49:1b:97:19:53:
e9:55:33:21:68:30:b3:3a:53:a7:de:9c:9e:4c:d3:
04:eb:b7:bd:52:be:1b:dd:b5:c8:1a:33:61:8c:cb:
14:14:66:8e:e2:53:a2:02:69:fd:bd:bf:0e:2c:01:
da:12:d8:c7:a1:75:3b:69:31:b8:39:15:1b:67:70:
e5:1b:30:f3:47:51:7a:58:27:85:c6:60:47:80:6d:
c1:19:4e:c8:b4:6b:37:26:12:b8:c5:8c:2d:5b:80:
3d:cd:e3:54:e9:25:d3:0c:49:7a:9e:9a:9b:d1:9c:
83:2a:56:33:f9:98:aa:49:e6:32:16:02:7a:1d:47:
79:0c:e5:7a:d6:6a:3f:9a:4a:44:30:45:4c:b8:e4:
0d:44:2a:4c:7b:a6:c4:6a:dc:38:24:b4:74:c7:17:
57:7c:18:cd:25:0f:bb:a9:6c:02:95:75:c2:75:d0:
ba:ba:78:c9:be:38:26:7b:1e:dc:27:87:f7:96:15:
38:6b:ad:75:0d:3a:c2:9e:5a:92:70:2e:a9:da:37:
de:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:CA:25:71:E4:38:68:2D:3A:52:D4:82:81:C1:E4:22:C6:7A:4C:9A
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/IMolceQ4aC06UtSCgcHkIsZ6TJo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.239.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:b4:1d:4a:50:4e:07:95:2e:69:76:27:05:1c:96:a5:e1:17:
ab:04:74:de:03:29:e0:59:39:73:e6:4e:fc:5a:92:bf:53:7d:
a6:d5:1f:8e:27:42:3c:41:63:36:de:da:a4:54:6e:1e:e2:f3:
69:57:79:9b:be:f2:2b:13:96:80:ad:5b:6c:43:a1:a0:03:e0:
1e:06:50:47:5e:ff:06:6e:44:07:73:17:20:61:3b:14:33:99:
d0:89:01:2d:db:17:cb:09:e9:6c:1d:52:eb:6c:f9:81:b8:fa:
58:4c:f6:cb:30:ef:47:4c:d1:c4:8d:5b:6a:fa:74:84:58:59:
74:8b:1b:ed:b4:00:d4:fc:9a:41:c6:36:90:ca:7a:b3:ed:92:
47:5f:d2:2a:ff:88:d4:94:11:44:18:25:ec:0c:a1:2b:55:03:
4c:2c:c8:da:b4:4b:3e:9a:1d:fe:17:5d:01:d9:b3:a6:fa:9a:
83:28:f8:b5:c0:bf:a6:40:ca:51:e9:68:19:88:e8:8c:27:a1:
cb:0f:de:dc:9a:ca:ed:a4:5d:76:7d:59:80:6c:29:63:04:73:
15:01:64:84:6f:41:df:b5:ca:46:c8:20:74:0c:53:d3:38:aa:
28:97:5e:4b:92:00:6f:16:e3:d2:df:20:a5:34:7d:7f:32:89:
ca:a0:8f:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org