Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/I_We8s3KDU0Cifzqc1roGE1vqwU.roa
File: I_We8s3KDU0Cifzqc1roGE1vqwU.roa (raw, json)
Hash identifier: wLmyqMTsM+onmz2ZxNI5I8pIDMaQWyboxl1PGyYwh0o=
Subject key identifier: 23:F5:9E:F2:CD:CA:0D:4D:02:89:FC:EA:73:5A:E8:18:4D:6F:AB:05
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0999
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/I_We8s3KDU0Cifzqc1roGE1vqwU.roa
Signing time: Wed 29 Sep 2021 02:36:50 +0000
ROA not before: Wed 29 Sep 2021 02:36:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 61.65.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2457 (0x999)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 29 02:36:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=23F59EF2CDCA0D4D0289FCEA735AE8184D6FAB05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e7:3d:62:1b:b8:07:c8:b0:73:45:5e:67:41:
b6:45:6f:64:8a:db:56:23:38:d0:b2:ba:93:3a:cd:
a0:ef:19:38:be:86:6a:d4:dd:17:38:54:57:6c:32:
90:da:a8:b7:2d:c1:63:d5:0c:32:44:ed:61:47:0b:
f3:0e:7b:a5:d0:9c:2f:58:38:8a:7d:bf:e3:db:79:
eb:d6:c8:75:fc:79:2c:aa:7a:8c:ee:89:5a:df:a5:
4c:f0:e9:75:e5:e3:fe:ab:52:16:2d:e3:f5:61:50:
2b:32:5a:42:4d:5d:3f:ad:00:fc:c1:12:88:b3:0b:
f6:62:f2:9e:4a:5d:ea:a2:ca:1a:33:1d:73:b7:56:
e2:66:13:98:fa:04:27:e9:88:ce:b9:bf:4b:e2:d2:
e5:44:1d:fb:7c:70:8b:71:c1:f0:e2:b1:9c:00:3f:
78:c8:63:87:cd:db:df:47:fd:cb:23:43:91:d4:32:
83:98:cb:8c:e4:6d:90:19:68:90:2c:cd:ee:b4:20:
aa:93:fe:df:c8:a5:0b:1f:15:97:fb:db:15:f9:ea:
19:86:a8:04:0c:73:5d:35:21:a9:90:a2:61:40:1b:
fc:2a:2d:c0:1d:be:04:30:2c:45:08:ff:41:bf:86:
db:5d:d2:a9:ce:50:7b:3d:1c:5e:9a:92:26:ba:56:
0b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F5:9E:F2:CD:CA:0D:4D:02:89:FC:EA:73:5A:E8:18:4D:6F:AB:05
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/I_We8s3KDU0Cifzqc1roGE1vqwU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.240.0/20
Signature Algorithm: sha256WithRSAEncryption
45:a6:aa:16:ad:d7:37:da:e7:e5:20:37:b5:01:20:5f:ff:0d:
45:ab:6f:8a:83:6d:32:04:91:04:6b:a7:71:07:d6:df:80:c7:
3f:3e:ac:6e:7c:d0:52:79:59:20:20:78:c2:04:51:a0:38:35:
04:38:85:35:24:9b:5f:6d:b4:ab:ef:ef:91:1c:12:b5:d5:9b:
7f:b2:cc:ff:4c:3a:5a:5c:c5:e1:e4:19:ac:4f:cc:91:ba:ad:
82:fc:04:7a:d1:0e:53:ec:52:84:d6:29:ce:de:9a:a6:af:ec:
2b:62:3e:91:3c:ae:29:f9:f4:ee:78:3e:85:8f:aa:46:98:2e:
67:c7:8c:6c:69:0b:95:b7:20:9f:6f:77:8b:f1:58:6d:5a:58:
82:16:87:9b:6e:28:c8:d1:ea:00:8e:70:cc:19:c9:69:73:d5:
c8:29:52:78:e9:48:21:a0:70:37:af:ef:e6:d6:1c:18:9b:0d:
1a:7b:d0:2e:d7:c7:14:f0:a0:88:32:13:cc:55:aa:b3:3a:00:
dc:d4:49:60:5a:17:56:6c:3e:ce:5f:ac:4c:b1:a0:95:83:48:
91:11:29:6b:44:7f:b7:50:fc:b0:10:6a:c8:e8:a8:4d:6e:d5:
c3:d1:ad:4d:b1:a8:73:7b:10:2c:9b:26:12:67:ae:81:b2:45:
84:1c:ed:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org