Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/SixvuCyUQ7Z74RtNReBPjZe3PFk.roa
File: SixvuCyUQ7Z74RtNReBPjZe3PFk.roa (raw, json)
Hash identifier: 2RJtqcToEnzs1U8in1tg+wpcbq4dmeJ3BstN6XwIo2w=
Subject key identifier: 4A:2C:6F:B8:2C:94:43:B6:7B:E1:1B:4D:45:E0:4F:8D:97:B7:3C:59
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 08F2
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/SixvuCyUQ7Z74RtNReBPjZe3PFk.roa
Signing time: Sun 07 Feb 2021 12:40:38 +0000
ROA not before: Sun 07 Feb 2021 12:40:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 61.65.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2290 (0x8f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Feb 7 12:40:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4A2C6FB82C9443B67BE11B4D45E04F8D97B73C59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:00:9a:86:7e:bb:aa:d4:65:76:d9:16:36:08:
5a:0b:89:c1:a1:89:5c:99:93:2a:11:1e:71:a5:37:
7b:c1:3a:76:e0:d0:eb:43:d6:3e:1f:71:98:68:30:
1a:45:f2:e9:c4:51:3f:d7:8b:fa:2d:9b:e5:d2:d0:
c1:10:5d:8b:27:a6:cd:fe:ea:3a:66:bb:f0:13:fe:
8f:1c:61:75:6e:a7:5c:75:3a:06:b0:1e:1e:04:55:
f3:8b:f5:04:d2:81:cc:0c:7b:1b:3e:3b:da:22:ad:
c8:87:d9:b3:29:a8:20:83:b0:ee:e5:82:16:0c:b3:
d9:78:47:37:e4:26:c9:12:0a:35:81:e6:b6:5c:c2:
eb:1d:de:d6:5b:d3:1a:d8:1e:02:01:23:95:c6:c6:
43:3c:27:01:c6:54:7d:dd:8d:3a:df:50:fa:b8:cf:
1f:20:d4:ef:9e:6f:1b:51:20:18:7e:8b:3e:4c:4a:
13:56:cc:33:48:ad:d9:ca:11:f1:01:d2:c0:b1:b1:
ff:b9:0c:a8:e2:f0:88:0a:c3:15:37:c1:fd:fd:d9:
6e:b8:1b:7d:96:16:f8:62:89:69:fb:66:5c:aa:62:
6d:8b:92:c4:ff:90:18:2c:db:de:c4:e5:26:39:70:
14:07:51:44:ee:ab:12:51:9e:ab:a2:af:33:a4:82:
0e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:2C:6F:B8:2C:94:43:B6:7B:E1:1B:4D:45:E0:4F:8D:97:B7:3C:59
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/SixvuCyUQ7Z74RtNReBPjZe3PFk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.232.0/22
Signature Algorithm: sha256WithRSAEncryption
98:4a:b8:f8:a9:a0:e6:ad:c0:ae:5c:a0:e6:d4:35:46:5d:3e:
32:9c:75:1c:1c:b9:30:d4:bc:f6:80:dc:d4:e4:ea:25:d4:dd:
32:d5:f4:b8:41:6b:61:1a:f8:df:f1:49:9d:ba:82:46:6b:da:
af:c2:67:35:fc:fc:68:67:16:74:21:eb:44:78:c4:10:94:72:
25:9e:57:0d:87:f8:2b:57:cf:8b:78:5e:b4:13:9d:f2:21:93:
60:b3:a6:cc:06:d2:70:82:cb:74:0b:78:d5:ef:c3:93:59:de:
b3:1c:f2:c8:fb:1b:39:30:1d:58:6e:3f:fe:df:2a:af:4c:4c:
40:76:8c:f4:51:e8:0c:34:87:3b:7c:cc:c6:cf:93:0c:5a:01:
f7:55:76:8d:fd:3f:04:30:cf:55:c7:dc:2e:6d:67:58:a4:96:
0e:98:87:a6:3e:1f:8c:b1:ee:4d:50:80:4c:ab:8d:ae:19:12:
13:f9:d1:9f:4e:d6:4a:b5:55:40:9f:8f:f5:a5:0c:f6:6d:e3:
35:36:47:9c:48:a4:5d:01:a1:70:8c:8d:8b:5a:d1:71:11:68:
79:13:44:e4:91:e7:83:d2:bf:e5:92:30:6c:8f:6e:0b:c4:ac:
5c:8c:ae:57:1d:90:9b:87:5e:9f:d8:ef:ef:d8:0d:20:b5:89:
af:b2:a1:49
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCPIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3
ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yMTAyMDcx
MjQwMzhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDRBMkM2RkI4MkM5NDQz
QjY3QkUxMUI0RDQ1RTA0RjhEOTdCNzNDNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKAJqGfruq1GV22RY2CFoLicGhiVyZkyoRHnGlN3vBOnbg0OtD
1j4fcZhoMBpF8unEUT/Xi/otm+XS0MEQXYsnps3+6jpmu/AT/o8cYXVup1x1Ogaw
Hh4EVfOL9QTSgcwMexs+O9oirciH2bMpqCCDsO7lghYMs9l4RzfkJskSCjWB5rZc
wusd3tZb0xrYHgIBI5XGxkM8JwHGVH3djTrfUPq4zx8g1O+ebxtRIBh+iz5MShNW
zDNIrdnKEfEB0sCxsf+5DKji8IgKwxU3wf392W64G32WFvhiiWn7ZlyqYm2LksT/
kBgs297E5SY5cBQHUUTuqxJRnquirzOkgg4BAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUSixvuCyUQ7Z74RtNReBPjZe3PFkwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x
k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP
TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9TaXh2dUN5VVE3Wjc0
UnROUmVCUGpaZTNQRmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCPUHoMA0GCSqGSIb3DQEBCwUAA4IBAQCYSrj4qaDmrcCuXKDm1DVGXT4ynHUc
HLkw1Lz2gNzU5Ool1N0y1fS4QWthGvjf8UmduoJGa9qvwmc1/PxoZxZ0IetEeMQQ
lHIlnlcNh/grV8+LeF60E53yIZNgs6bMBtJwgst0C3jV78OTWd6zHPLI+xs5MB1Y
bj/+3yqvTExAdoz0UegMNIc7fMzGz5MMWgH3VXaN/T8EMM9Vx9wubWdYpJYOmIem
Ph+Mse5NUIBMq42uGRIT+dGfTtZKtVVAn4/1pQz2beM1NkecSKRdAaFwjI2LWtFx
EWh5E0TkkeeD0r/lkjBsj24LxKxcjK5XHZCbh16f2O/v2A0gtYmvsqFJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org