Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/leZEXZK6WK04QQ599a2XzNlX_mc.roa
File: leZEXZK6WK04QQ599a2XzNlX_mc.roa (raw, json)
Hash identifier: Ex9Czt0G0kJTOek+/rlwRHpPeMGwY0pSpiJKu5B8JSE=
Subject key identifier: 95:E6:44:5D:92:BA:58:AD:38:41:0E:7D:F5:AD:97:CC:D9:57:FE:67
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0799
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/leZEXZK6WK04QQ599a2XzNlX_mc.roa
Signing time: Tue 29 Sep 2020 10:02:58 +0000
ROA not before: Tue 29 Sep 2020 10:02:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 116.50.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1945 (0x799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 29 10:02:58 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=95E6445D92BA58AD38410E7DF5AD97CCD957FE67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d3:21:16:15:74:62:06:eb:2b:df:e8:b6:81:
19:04:f4:db:7a:dc:d8:e7:f0:a9:a2:fa:a5:e1:d8:
9d:b6:0e:65:c2:44:e5:99:1b:de:79:82:34:cc:b3:
21:3b:39:fd:0f:94:fc:4f:82:e8:d2:c5:71:0a:7a:
09:24:d8:c9:8e:81:4f:b4:d7:2e:a5:d8:bc:93:36:
97:b8:a7:11:29:41:d0:80:f0:87:55:6c:f0:27:65:
8a:28:63:ec:33:2e:c4:74:0b:54:bd:d4:8f:b3:35:
71:e0:d6:b5:3c:93:bb:5a:eb:68:85:9a:62:99:83:
9c:f1:cb:d9:ca:8b:a7:cd:69:18:55:d4:2c:de:7a:
7f:c4:11:ec:8a:f7:66:96:09:c4:ae:a9:10:c4:4c:
e7:e2:82:a8:00:b7:49:c7:3d:d2:d3:a8:d2:c4:8b:
45:14:2e:04:4e:74:40:ac:94:0a:9e:df:dc:77:6d:
3d:0a:26:0f:00:bf:e7:1a:8f:74:1d:68:1c:82:6b:
07:b5:45:99:11:cd:0d:6e:91:c8:26:6c:cf:e2:66:
d9:13:6c:76:92:2c:33:1b:62:ec:87:96:3c:3c:f8:
ad:b3:a9:8a:87:bb:40:05:7e:8f:96:3f:93:a4:9c:
50:4d:2c:61:24:85:a2:71:2d:31:04:ae:04:b5:1b:
ad:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E6:44:5D:92:BA:58:AD:38:41:0E:7D:F5:AD:97:CC:D9:57:FE:67
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/leZEXZK6WK04QQ599a2XzNlX_mc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.50.41.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:6d:c8:24:45:ff:bc:6f:8c:53:d1:29:fe:0b:a5:7c:93:ad:
34:54:74:ca:3c:a3:2c:60:53:2c:73:7a:3a:4b:44:d9:e1:3f:
67:db:4a:bf:d6:37:25:fe:42:df:f0:da:fa:95:c9:c3:94:06:
5b:5e:03:b3:dc:49:d8:a7:c5:12:53:d3:90:93:4f:84:d7:a5:
b3:1f:13:96:80:f4:0c:94:13:88:2a:f4:25:f4:b1:85:f2:b3:
9a:93:93:69:dc:db:35:3c:ac:62:76:56:29:88:5e:a0:07:3c:
1b:87:47:3f:42:dc:9b:cd:b5:8d:b0:57:f9:ad:8b:60:61:3c:
e0:ae:dc:7a:23:48:a6:60:bf:54:32:24:89:0c:86:fc:51:ed:
7b:ee:04:d4:fa:94:33:24:d2:13:59:9f:a6:d2:98:1b:5f:1e:
35:47:03:bf:e9:e4:fa:43:ba:6b:1e:e5:b1:fc:ce:56:37:e3:
9c:bb:1d:3f:cd:b7:68:df:6a:2a:ee:95:87:f2:89:1f:1f:71:
ed:6b:e5:da:9b:90:bd:72:a8:7b:4b:9b:77:b6:c4:49:ae:46:
8a:54:54:1c:47:45:11:95:8b:2d:7c:de:5a:dc:1b:4f:52:20:
05:bb:a5:cf:02:93:60:44:53:f2:ad:68:3f:33:28:29:6b:1d:
e5:a1:b8:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org