Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/h2cIeCi6pK20tDz8b5_9o1XeYug.roa
File: h2cIeCi6pK20tDz8b5_9o1XeYug.roa (raw, json)
Hash identifier: PKYPGtjG6Gj/BM+dnuU+8UqjtBdjurlYd4EmcPJLZpo=
Subject key identifier: 87:67:08:78:28:BA:A4:AD:B4:B4:3C:FC:6F:9F:FD:A3:55:DE:62:E8
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 08F8
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/h2cIeCi6pK20tDz8b5_9o1XeYug.roa
Signing time: Sun 07 Feb 2021 12:40:45 +0000
ROA not before: Sun 07 Feb 2021 12:40:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 116.50.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2296 (0x8f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Feb 7 12:40:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8767087828BAA4ADB4B43CFC6F9FFDA355DE62E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5b:5b:68:b2:97:fb:e8:e8:1a:06:a7:71:74:
19:e5:b8:6a:15:95:06:f7:3d:02:55:b7:60:21:2c:
02:81:dc:4e:ec:58:07:c5:37:4f:fc:e8:51:80:e7:
f3:11:09:17:b8:7e:d4:de:c7:c4:83:f3:14:50:c9:
35:81:2a:df:f0:08:84:29:56:7c:ea:84:73:af:52:
09:cd:fc:e5:88:2e:04:f5:57:7c:bb:d7:4f:e1:d9:
ac:8e:fd:17:27:1d:a3:d9:ed:05:11:19:8e:dc:af:
80:94:64:1a:70:d7:9e:d6:78:fe:b4:44:95:26:e9:
8b:b3:01:9d:e8:2f:4b:0c:81:4b:51:2f:3e:77:1c:
41:9a:87:46:5f:76:ab:1c:fa:11:cb:6a:91:eb:55:
82:2b:43:23:b4:9a:76:de:b1:04:25:13:17:d9:d1:
68:0a:57:17:a1:4e:bc:2d:c4:c8:ea:a4:c4:6d:ea:
e9:df:2f:4f:47:68:fb:43:93:d2:d7:14:e0:e7:c6:
87:77:f9:d0:4b:31:07:48:c8:76:cf:da:f4:22:5e:
71:59:85:36:c9:1c:66:ab:0a:89:95:9c:cc:06:02:
65:dc:b9:f1:50:83:ac:04:6b:f7:43:d2:31:a7:0d:
83:63:09:6c:c6:14:76:66:88:78:06:17:68:c3:03:
a6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:67:08:78:28:BA:A4:AD:B4:B4:3C:FC:6F:9F:FD:A3:55:DE:62:E8
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/h2cIeCi6pK20tDz8b5_9o1XeYug.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.50.41.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:eb:86:94:db:19:0d:39:7d:da:89:a9:fc:d5:71:01:c0:00:
0a:17:25:ff:13:b3:0a:3f:01:10:17:bb:06:08:07:a8:11:19:
9c:c3:b0:b2:65:a0:22:90:3e:2d:ca:97:b3:3f:40:2b:55:d0:
85:8f:39:95:01:16:6c:a8:aa:47:ca:76:ca:e0:7e:6a:39:6d:
39:f3:05:fe:23:8a:ae:ae:d0:85:d6:17:7d:87:81:f8:e2:d0:
e2:74:70:a3:ca:31:eb:77:ca:14:9e:64:21:81:52:23:92:21:
a1:66:6f:58:c9:34:a8:8e:cb:5c:39:58:2f:08:75:25:a1:74:
a4:3a:1a:40:e4:8b:86:84:4d:51:39:d2:7c:e5:16:e9:1b:5d:
a3:61:90:27:7a:6c:03:12:46:5c:83:55:f8:93:f7:71:c1:cb:
48:a3:0c:88:c7:6f:50:5f:79:42:ac:52:94:a1:40:fd:6c:f5:
5b:10:cf:a2:b1:73:1e:42:6b:83:dc:7d:4f:01:04:09:78:81:
92:ea:b4:28:d7:b7:ea:77:ef:a5:04:15:e9:a3:f0:b8:cd:98:
a4:62:93:35:2f:32:95:c8:65:d7:5b:26:e6:7c:76:0b:b7:32:
9a:a4:98:26:77:aa:65:50:bb:eb:7d:12:32:43:5c:ac:f7:e6:
2e:42:46:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:30 2025 by rpki-client