Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/gsDLqKmRrM5BwoFZYLWxUQMAx0g.roa
File: gsDLqKmRrM5BwoFZYLWxUQMAx0g.roa (raw, json)
Hash identifier: CnJmI3+cpZdoJDV1Hot+dnjVwoKUrxGuJAtREe4gVDk=
Subject key identifier: 82:C0:CB:A8:A9:91:AC:CE:41:C2:81:59:60:B5:B1:51:03:00:C7:48
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 079C
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/gsDLqKmRrM5BwoFZYLWxUQMAx0g.roa
Signing time: Tue 29 Sep 2020 10:02:59 +0000
ROA not before: Tue 29 Sep 2020 10:02:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 116.50.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1948 (0x79c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 29 10:02:59 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=82C0CBA8A991ACCE41C2815960B5B1510300C748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e0:25:85:3a:1e:c5:7c:94:6f:68:5d:44:07:
46:44:ce:3e:b1:e6:d7:aa:23:f2:34:ed:9d:bb:a2:
bf:74:d7:2a:37:1b:0c:ea:5b:13:40:7e:72:fb:ae:
bf:69:0e:72:1a:65:9b:00:87:3d:ba:6c:33:31:27:
02:d0:fa:36:92:d8:73:dc:f4:aa:09:06:70:a9:cd:
82:fa:63:df:42:bf:0d:39:12:96:6c:e2:0b:e4:d6:
ee:91:59:1f:14:c4:e7:81:8d:c7:22:d7:4e:80:8a:
d5:16:ea:b9:6d:2f:62:ee:10:05:e3:51:71:44:f1:
18:b5:5c:59:96:77:e9:c6:59:66:16:4c:46:d1:b1:
50:41:66:40:46:66:3d:0b:d5:8f:a5:3d:e4:15:90:
f4:e0:a1:c8:c9:b8:dc:6c:a9:cc:80:a8:a4:27:e0:
62:c3:7d:c3:64:1e:d0:0f:3e:8e:2a:9b:e9:a1:29:
f0:55:e7:3f:87:cf:52:70:94:b1:68:14:0c:26:48:
34:70:62:b5:43:05:88:fa:b1:6a:22:ff:7e:7e:ca:
85:6c:74:49:e0:07:f5:01:c5:5d:2a:2f:5f:4f:4b:
ac:cc:fe:be:86:32:00:3e:42:ea:22:8c:87:97:9f:
65:2c:1c:35:a1:d4:11:c1:80:03:54:29:43:bc:62:
d3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:C0:CB:A8:A9:91:AC:CE:41:C2:81:59:60:B5:B1:51:03:00:C7:48
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/gsDLqKmRrM5BwoFZYLWxUQMAx0g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.50.32.0/20
Signature Algorithm: sha256WithRSAEncryption
18:d3:32:f4:5c:88:77:b4:53:c1:04:6d:e2:5f:82:38:ca:19:
09:be:d4:6a:3e:0b:b0:f1:e0:22:3b:64:8a:ee:0f:20:38:cf:
ff:7b:6a:e6:c8:91:49:e3:c7:75:9b:01:8d:2a:d1:db:46:c8:
ad:64:d9:77:7a:74:34:7f:b7:d8:f7:a6:b6:cb:4b:78:0f:64:
f6:06:82:b7:9e:92:14:85:67:40:c7:76:de:92:e7:b0:ec:6f:
ce:38:1a:e1:e7:f9:54:f3:7c:5b:c1:d6:44:68:ac:06:9f:d7:
1e:b2:69:3b:da:8d:4e:e5:94:b3:3f:29:7a:05:9f:83:38:b5:
a3:cc:25:cb:30:ff:b3:98:96:67:1e:11:a3:16:a4:de:ce:f6:
4f:60:70:73:e1:43:67:fc:fa:1e:de:17:1d:5d:21:82:8f:8a:
bf:77:36:d4:2d:2a:82:1b:a5:4b:78:3c:27:9c:11:37:34:74:
17:da:37:1a:ec:3c:ba:49:97:e0:64:61:3f:27:e4:b9:60:4a:
ba:cf:50:91:66:39:05:4b:24:a7:6a:01:aa:e7:7e:d9:8e:ab:
97:9c:79:68:e1:e7:c9:37:07:e8:6f:42:af:e5:c5:c8:98:39:
1e:b5:d3:cc:71:e4:65:8a:04:03:e9:4e:63:f3:00:ef:d5:b5:
e0:93:af:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:44 2025 by rpki-client