Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/fCic5QC_p_xGWiGHS6qD_lgVIPA.roa
File: fCic5QC_p_xGWiGHS6qD_lgVIPA.roa (raw, json)
Hash identifier: 6CGuZeKCnRdgAYW0IYJRqG4fDWSzeVJQsk4YzWmHFkI=
Subject key identifier: 7C:28:9C:E5:00:BF:A7:FC:46:5A:21:87:4B:AA:83:FE:58:15:20:F0
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0B8A
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/fCic5QC_p_xGWiGHS6qD_lgVIPA.roa
Signing time: Fri 01 Sep 2023 08:35:38 +0000
ROA not before: Fri 01 Sep 2023 08:35:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18046
IP address blocks: 116.50.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2954 (0xb8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 1 08:35:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7C289CE500BFA7FC465A21874BAA83FE581520F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:5d:79:3f:d5:28:e8:a9:69:e2:b1:05:36:b5:
10:42:e4:e6:c9:10:79:e4:04:f8:3f:b6:96:37:82:
7c:e0:74:56:b6:19:29:46:19:b7:b8:4d:84:cf:cd:
81:c7:22:af:bf:10:0b:ba:c8:9a:67:38:90:90:fb:
60:1e:2c:e6:74:42:4a:41:ee:e4:fe:94:55:86:a3:
85:cf:e9:fd:f1:a0:2b:19:ec:ec:02:53:3a:b2:59:
3c:cf:74:19:b0:51:49:fc:bf:4d:e1:b5:8a:92:24:
44:77:3f:f7:7b:9b:a5:84:55:9e:b9:df:82:1f:d6:
2a:09:02:c1:a1:26:1e:18:d9:e9:44:76:a6:d7:0a:
6e:c9:53:67:13:07:ee:4e:52:10:48:b3:02:29:da:
55:ed:d0:8a:93:71:a4:f3:2d:52:fd:62:2c:d0:33:
81:68:de:80:5f:e7:1d:cf:86:c9:89:0f:2f:3c:c5:
28:ed:5d:f5:b9:e8:46:61:d9:98:26:01:85:5a:d0:
2f:cd:e7:e1:1d:cd:95:66:39:2e:cf:d9:0f:4a:e9:
3e:54:1a:a4:af:49:81:05:51:8e:8d:8e:3e:e5:9c:
5a:e7:88:b6:30:8e:da:12:5d:39:3f:c4:b4:b3:d8:
3c:8d:56:8c:65:0c:1f:5e:e4:c0:f4:13:ad:81:e7:
5e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:28:9C:E5:00:BF:A7:FC:46:5A:21:87:4B:AA:83:FE:58:15:20:F0
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/fCic5QC_p_xGWiGHS6qD_lgVIPA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.50.32.0/20
Signature Algorithm: sha256WithRSAEncryption
20:81:58:96:1b:bb:4a:48:40:e8:a2:48:0b:c2:76:10:c8:29:
16:d1:2e:0a:33:b6:7a:80:a9:a9:e3:95:b9:3c:60:13:d4:89:
cd:89:ca:ef:ae:53:5f:91:6a:15:f6:c5:29:ba:13:f5:da:a3:
99:75:39:66:6e:82:dc:1a:53:12:56:e7:a5:f5:a6:35:40:51:
4d:09:bc:7b:4d:b8:9c:ae:8f:02:1a:ea:79:b2:7b:72:f6:d9:
e4:e9:7e:70:7d:d8:f5:52:60:34:f9:bb:ba:8c:09:3a:49:4a:
b5:b5:7a:cf:23:35:8b:93:b0:cd:33:75:a0:b5:a5:c3:bb:6d:
99:2c:91:b1:d5:29:04:31:2c:b4:f2:b9:4b:04:66:ce:36:ae:
97:2a:e3:dc:15:e5:34:f6:3d:1d:ee:dd:ca:c2:d7:25:4b:fd:
9f:f5:e2:f8:09:52:c6:53:bc:16:a5:1c:dd:dc:1e:24:0e:eb:
62:2f:03:d0:d9:d7:19:2f:2e:a1:b3:d0:eb:7c:54:32:76:cc:
66:1a:82:33:64:34:3e:81:71:a1:53:f8:b1:24:34:c5:e2:7b:
40:d5:22:30:fa:29:1e:b0:1d:e1:45:cb:87:51:70:d4:a5:1f:
39:2b:07:c7:63:7d:6a:f4:ce:25:38:f9:a7:32:f5:95:80:ae:
ce:72:7e:50
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICC4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3
ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yMzA5MDEw
ODM1MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdDMjg5Q0U1MDBCRkE3
RkM0NjVBMjE4NzRCQUE4M0ZFNTgxNTIwRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDuXXk/1SjoqWnisQU2tRBC5ObJEHnkBPg/tpY3gnzgdFa2GSlG
Gbe4TYTPzYHHIq+/EAu6yJpnOJCQ+2AeLOZ0QkpB7uT+lFWGo4XP6f3xoCsZ7OwC
UzqyWTzPdBmwUUn8v03htYqSJER3P/d7m6WEVZ6534If1ioJAsGhJh4Y2elEdqbX
Cm7JU2cTB+5OUhBIswIp2lXt0IqTcaTzLVL9YizQM4Fo3oBf5x3PhsmJDy88xSjt
XfW56EZh2ZgmAYVa0C/N5+EdzZVmOS7P2Q9K6T5UGqSvSYEFUY6Njj7lnFrniLYw
jtoSXTk/xLSz2DyNVoxlDB9e5MD0E62B515dAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUfCic5QC/p/xGWiGHS6qD/lgVIPAwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x
k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP
TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9mQ2ljNVFDX3BfeEdX
aUdIUzZxRF9sZ1ZJUEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQEdDIgMA0GCSqGSIb3DQEBCwUAA4IBAQAggViWG7tKSEDookgLwnYQyCkW0S4K
M7Z6gKmp45W5PGAT1InNicrvrlNfkWoV9sUpuhP12qOZdTlmboLcGlMSVuel9aY1
QFFNCbx7Tbicro8CGup5snty9tnk6X5wfdj1UmA0+bu6jAk6SUq1tXrPIzWLk7DN
M3WgtaXDu22ZLJGx1SkEMSy08rlLBGbONq6XKuPcFeU09j0d7t3KwtclS/2f9eL4
CVLGU7wWpRzd3B4kDutiLwPQ2dcZLy6hs9DrfFQydsxmGoIzZDQ+gXGhU/ixJDTF
4ntA1SIw+ikesB3hRcuHUXDUpR85KwfHY31q9M4lOPmnMvWVgK7Ocn5Q
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:57 2025 by rpki-client