Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/kWzLSGvHRwqd4KnlgFWSyGb4g2I.roa
File: kWzLSGvHRwqd4KnlgFWSyGb4g2I.roa (raw, json)
Hash identifier: T1hNJR34qfn9AerDkIsoFFpa+oKYgR1r6gQwKqEY11I=
Subject key identifier: 91:6C:CB:48:6B:C7:47:0A:9D:E0:A9:E5:80:55:92:C8:66:F8:83:62
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0A89
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/kWzLSGvHRwqd4KnlgFWSyGb4g2I.roa
Signing time: Thu 15 Sep 2022 02:37:52 +0000
ROA not before: Thu 15 Sep 2022 02:37:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 61.65.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2697 (0xa89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 15 02:37:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=916CCB486BC7470A9DE0A9E5805592C866F88362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ad:bf:9f:d2:7d:d9:60:bc:bd:64:ab:2a:ae:
f0:21:91:95:37:92:90:7e:c3:23:20:b1:72:c1:07:
11:17:1c:12:7b:64:21:b2:31:6e:d5:76:4e:36:cf:
65:96:52:9d:31:e0:f2:d5:d4:c5:cc:96:31:97:ba:
e6:1d:a9:c3:93:08:69:a7:63:c0:22:a7:1b:c5:5b:
74:cb:0e:03:b0:85:d8:db:18:48:a8:4d:13:fd:a4:
88:dc:eb:13:6b:c9:05:71:a6:b7:d7:aa:12:27:d4:
70:12:be:0c:67:af:88:ae:6c:b8:29:3f:c9:3d:dc:
b0:72:c2:ed:c1:06:a0:73:c4:f0:cf:d0:62:c6:a8:
c4:b5:28:b0:9c:de:6f:bf:41:fb:0d:1e:09:ea:d1:
8c:e9:f2:ea:53:00:6b:89:aa:65:eb:c0:e5:3e:21:
2e:2d:fb:c7:36:74:f1:36:19:8c:a5:6d:51:46:89:
77:45:3c:5a:a0:cf:44:1c:37:64:7d:a7:41:ca:09:
7f:a4:e4:e4:23:39:b5:a6:29:d1:05:c3:13:8d:be:
18:13:13:fe:09:c4:5b:d9:a3:2d:62:15:5a:f0:b7:
2c:2a:48:9f:96:f1:2c:53:ef:d3:16:b5:2e:b9:7f:
2b:53:4e:60:a2:9c:37:7f:85:49:eb:d2:84:44:f5:
88:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:6C:CB:48:6B:C7:47:0A:9D:E0:A9:E5:80:55:92:C8:66:F8:83:62
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/kWzLSGvHRwqd4KnlgFWSyGb4g2I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.240.0/20
Signature Algorithm: sha256WithRSAEncryption
26:49:79:43:38:c4:8b:8e:bb:88:f9:8f:2f:b6:18:8f:e6:f7:
91:cc:02:ce:44:c9:2c:0a:20:70:db:be:21:36:17:e2:11:f9:
d6:f8:00:8b:d2:7d:62:d5:7c:41:93:ee:90:79:ce:c3:04:7b:
c7:fd:ef:88:b8:bf:48:0d:2d:89:91:e5:cd:74:93:5e:79:ec:
a0:d4:0d:16:84:67:6b:3c:97:ca:1b:f8:ed:2e:26:27:13:3c:
17:ca:33:1d:16:de:96:a1:2e:a5:65:87:6f:2d:07:c0:ea:20:
53:ee:3b:d6:26:0a:85:d3:e3:8b:48:dd:b7:08:7b:b8:bc:47:
8a:64:98:ef:6c:44:c4:9f:25:eb:87:69:e1:12:70:bd:5e:a5:
b7:f9:58:85:6e:49:63:a0:96:55:57:12:ab:da:cd:6c:5f:c9:
20:e0:cf:30:5c:18:8e:00:44:03:17:ac:88:2a:14:6c:d1:2a:
ac:1b:20:8f:25:fc:75:24:cd:51:0b:8d:c9:b4:c3:b7:37:43:
21:c7:76:11:ee:fd:93:0a:a8:91:9b:b3:da:d8:52:c8:0f:0d:
d5:5e:8a:d4:54:be:8b:31:d0:64:be:1f:28:45:b4:a5:e8:05:
63:89:08:48:30:d9:53:f6:b0:cd:95:a2:66:65:2d:0e:a6:b0:
4d:d7:ab:96
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCokwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEM3
ODk2MTY0MkEwNEJFMTMyNzA4REIxOTNEN0JBOTE2QjJCNjdDQjAeFw0yMjA5MTUw
MjM3NTJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDkxNkNDQjQ4NkJDNzQ3
MEE5REUwQTlFNTgwNTU5MkM4NjZGODgzNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDkrb+f0n3ZYLy9ZKsqrvAhkZU3kpB+wyMgsXLBBxEXHBJ7ZCGy
MW7Vdk42z2WWUp0x4PLV1MXMljGXuuYdqcOTCGmnY8AipxvFW3TLDgOwhdjbGEio
TRP9pIjc6xNryQVxprfXqhIn1HASvgxnr4iubLgpP8k93LBywu3BBqBzxPDP0GLG
qMS1KLCc3m+/QfsNHgnq0Yzp8upTAGuJqmXrwOU+IS4t+8c2dPE2GYylbVFGiXdF
PFqgz0QcN2R9p0HKCX+k5OQjObWmKdEFwxONvhgTE/4JxFvZoy1iFVrwtywqSJ+W
8SxT79MWtS65fytTTmCinDd/hUnr0oRE9Yg1AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUkWzLSGvHRwqd4KnlgFWSyGb4g2IwHwYDVR0jBBgwFoAUDHiWFkKgS+EycI2x
k9e6kWsrZ8swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP
TkcvREhpV0ZrS2dTLUV5Y0kyeGs5ZTZrV3NyWjhzLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9ESGlXRmtLZ1MtRXljSTJ4azllNmtXc3JaOHMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy9rV3pMU0d2SFJ3cWQ0
S25sZ0ZXU3lHYjRnMkkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQEPUHwMA0GCSqGSIb3DQEBCwUAA4IBAQAmSXlDOMSLjruI+Y8vthiP5veRzALO
RMksCiBw274hNhfiEfnW+ACL0n1i1XxBk+6Qec7DBHvH/e+IuL9IDS2JkeXNdJNe
eeyg1A0WhGdrPJfKG/jtLiYnEzwXyjMdFt6WoS6lZYdvLQfA6iBT7jvWJgqF0+OL
SN23CHu4vEeKZJjvbETEnyXrh2nhEnC9XqW3+ViFbkljoJZVVxKr2s1sX8kg4M8w
XBiOAEQDF6yIKhRs0SqsGyCPJfx1JM1RC43JtMO3N0Mhx3YR7v2TCqiRm7Pa2FLI
Dw3VXorUVL6LMdBkvh8oRbSl6AVjiQhIMNlT9rDNlaJmZS0OprBN16uW
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org