Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/LCH1QR3nJcRGkiYRzQmE-Y4_v4w.roa
File: LCH1QR3nJcRGkiYRzQmE-Y4_v4w.roa (raw, json)
Hash identifier: ZlcwAHo2YDzFzzxds6A5phnCnmCvYyg4OQoEcHMbKsg=
Subject key identifier: 2C:21:F5:41:1D:E7:25:C4:46:92:26:11:CD:09:84:F9:8E:3F:BF:8C
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0798
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/LCH1QR3nJcRGkiYRzQmE-Y4_v4w.roa
Signing time: Tue 29 Sep 2020 10:02:58 +0000
ROA not before: Tue 29 Sep 2020 10:02:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 61.65.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1944 (0x798)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 29 10:02:58 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2C21F5411DE725C446922611CD0984F98E3FBF8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8c:e8:1d:00:4f:1d:e9:34:21:14:8b:d9:85:
92:af:a9:87:da:bd:96:45:83:e3:02:a9:06:57:60:
a2:81:e4:8f:e6:6a:28:51:f7:0e:f1:13:13:fa:e4:
89:13:d6:a0:99:06:21:0b:58:64:d6:40:ce:88:e1:
90:1c:11:fb:01:b7:44:e7:00:89:98:a5:bf:42:fa:
a2:60:93:88:17:8a:c3:97:e5:66:af:e8:54:94:32:
07:66:a4:4f:10:f3:4e:67:bb:70:f4:10:6a:76:00:
a6:b2:85:2c:78:01:b7:f3:c4:fb:01:64:c1:43:71:
36:33:2d:f7:56:d0:51:1c:23:d3:33:48:6f:e6:54:
bd:38:9b:85:47:f5:96:9c:77:5c:0d:e4:f4:f5:01:
4f:8d:93:9d:46:d7:53:bb:23:0d:5e:6a:e7:36:68:
1f:a3:55:69:18:cf:63:e1:bf:da:1f:d2:54:69:e2:
41:4f:e8:65:1f:f2:ab:14:22:7d:39:1e:9c:4e:d3:
ff:04:bb:c0:85:83:6b:84:4f:d3:e9:bc:68:2f:7c:
60:4d:a9:ec:7b:60:f2:d6:89:e9:3c:b9:a4:cf:cf:
3d:1e:c6:2b:ba:90:ca:69:d2:ed:47:47:ed:89:55:
8a:ab:55:52:c9:b5:f3:91:91:c5:72:78:00:f2:40:
ea:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:21:F5:41:1D:E7:25:C4:46:92:26:11:CD:09:84:F9:8E:3F:BF:8C
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/LCH1QR3nJcRGkiYRzQmE-Y4_v4w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.232.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:6b:e5:f9:02:ef:82:b3:41:9c:ce:c9:1c:4f:8f:58:22:b0:
03:79:91:61:c5:d8:0c:e7:c8:eb:15:27:83:e7:a6:f6:29:b0:
ca:00:f5:a3:1a:d9:18:ca:59:c4:fc:97:81:76:27:5c:38:cb:
ed:29:fa:6b:ad:bc:1d:22:9a:d7:78:69:1f:aa:a6:6c:ab:bc:
16:55:26:c9:28:71:60:58:d2:42:0e:22:50:96:26:25:f4:e9:
4d:65:21:cd:fa:c2:c9:2a:91:bb:17:f1:00:83:c7:5e:76:ff:
f8:24:0e:a3:a5:b3:07:80:a1:b6:4f:4b:74:81:27:15:fe:4b:
91:2c:03:84:fa:f4:d1:4d:a5:31:b5:f0:85:71:99:ab:60:7d:
d9:16:54:d7:fe:4c:3f:14:83:d2:08:b4:a2:4b:af:ff:c4:65:
b5:4d:02:bc:ad:93:4c:ae:af:df:68:92:5a:7f:d4:4d:ba:7a:
87:bf:79:80:b4:20:8a:64:64:54:34:da:88:02:08:d6:7c:42:
3d:69:27:be:c9:5e:bf:91:ec:14:90:f8:cc:6c:e9:78:93:0a:
e3:8a:a1:b1:53:3c:c1:9d:8c:3c:26:a9:60:b8:c2:00:92:d2:
6e:9f:53:b6:f0:23:9f:de:0e:62:3b:4e:63:6d:67:a9:71:7f:
79:6a:50:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org