Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/Ii6G2jwtaoVKxyP8fW2u7RWPk7g.roa
File: Ii6G2jwtaoVKxyP8fW2u7RWPk7g.roa (raw, json)
Hash identifier: S3K6uVC68AmTzWV6zWlR9oAC8f9M3ettt8mKiCiFxws=
Subject key identifier: 22:2E:86:DA:3C:2D:6A:85:4A:C7:23:FC:7D:6D:AE:ED:15:8F:93:B8
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0B8B
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/Ii6G2jwtaoVKxyP8fW2u7RWPk7g.roa
Signing time: Fri 01 Sep 2023 08:35:38 +0000
ROA not before: Fri 01 Sep 2023 08:35:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 198949
IP address blocks: 61.65.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2955 (0xb8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 1 08:35:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=222E86DA3C2D6A854AC723FC7D6DAEED158F93B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0c:c0:d9:b3:94:09:3e:d4:f4:fb:e4:ad:ff:
6d:3e:21:7b:c5:fb:93:dc:56:e6:48:ea:12:46:f6:
c9:e7:ea:d6:7b:63:45:27:08:9d:40:e0:3b:84:49:
22:6f:00:35:a1:24:6d:a8:b7:0e:6d:ee:6f:64:8d:
88:fb:76:ce:30:33:91:d3:4a:2d:37:42:90:76:3d:
44:95:bc:75:bb:ae:d4:66:9e:1f:5f:bb:89:17:0c:
fd:b0:24:0c:9c:72:e9:9a:2d:64:8f:db:85:94:d6:
de:ce:d8:44:51:58:2c:fd:5c:f9:b7:71:f7:80:26:
e1:0c:b9:15:74:bf:bf:56:35:2d:bf:cd:bc:b2:ec:
17:b4:90:9e:fa:a9:e0:d5:f8:8e:91:ee:07:8d:24:
76:a1:a2:62:6d:36:75:83:28:6b:c7:41:b4:bf:6d:
4f:6f:32:37:03:9a:45:3a:98:2c:0e:f8:3a:32:2c:
92:b2:be:ff:1a:05:90:14:ff:7c:f8:7a:bb:d9:5a:
b6:7c:fc:c5:de:31:ee:eb:5d:dd:d8:28:18:0c:83:
da:75:87:04:13:fb:70:f9:af:b2:96:a4:95:21:73:
22:69:e3:d4:32:f3:30:ee:fb:01:19:b8:6e:70:95:
a4:b3:3c:a9:92:e2:b0:8f:f0:7e:42:f4:ea:36:bb:
2b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:2E:86:DA:3C:2D:6A:85:4A:C7:23:FC:7D:6D:AE:ED:15:8F:93:B8
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/Ii6G2jwtaoVKxyP8fW2u7RWPk7g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.239.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:82:d9:63:26:b0:d2:29:44:29:9c:17:0a:ee:86:4e:cb:10:
9e:91:c7:64:91:07:30:57:b6:6d:cd:d7:96:dc:5a:6f:36:84:
0d:16:19:62:71:8f:22:85:bc:34:11:49:7a:fc:68:9d:17:f9:
df:80:25:ba:44:5f:6d:69:a5:ef:8f:fd:18:d3:3b:80:cb:c7:
be:5a:da:9a:25:2c:b1:80:25:b4:bb:3c:c2:53:3c:1c:c7:ba:
24:e0:e7:c2:d8:fc:61:e4:4c:29:b5:78:58:0d:da:d8:7c:fb:
d6:14:df:c2:e6:10:33:e5:34:7b:95:5a:8c:aa:59:79:68:a3:
dc:38:ef:48:e5:2e:dc:8d:b1:c6:55:b6:80:62:77:31:de:f7:
45:3c:28:1b:82:db:b4:83:ff:f4:20:f6:ba:10:97:9d:59:db:
dd:46:6a:9f:5d:a9:fb:0f:57:70:88:5e:b8:cd:6f:30:24:7a:
71:d2:97:c7:7f:f5:f9:7a:5e:61:16:8c:fb:7a:de:86:08:9d:
75:13:0f:d1:c2:88:82:16:6d:e7:a6:dd:cd:c4:8c:38:c8:2c:
1d:bf:41:f0:be:17:1f:1a:92:c3:46:4d:3b:27:d3:31:f4:96:
d3:b3:5b:89:23:92:ee:6b:ef:e9:6a:7a:65:7d:09:04:7e:98:
86:40:84:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:23 2025 by rpki-client