Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/sJXebgOQYghFq2PjS0c0a3iJ5yA.roa
File: sJXebgOQYghFq2PjS0c0a3iJ5yA.roa (raw, json)
Hash identifier: jA8US9Rp7WRkxGwYMFq/Htk6BKWG0FBD0nNXOTf/y2I=
Subject key identifier: B0:95:DE:6E:03:90:62:08:45:AB:63:E3:4B:47:34:6B:78:89:E7:20
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0B0A
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/sJXebgOQYghFq2PjS0c0a3iJ5yA.roa
Signing time: Thu 23 Mar 2023 00:21:31 +0000
ROA not before: Thu 23 Mar 2023 00:21:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 198949
IP address blocks: 61.65.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2826 (0xb0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Mar 23 00:21:31 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B095DE6E0390620845AB63E34B47346B7889E720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:14:69:d7:77:57:fe:4d:8e:15:d5:fe:64:e5:
df:da:9c:f4:4c:92:37:90:ea:d7:af:ee:19:11:3e:
39:ff:3e:bb:e2:b8:3c:41:9c:7d:4c:cb:be:01:62:
63:42:90:97:8a:9f:c8:3d:4b:e3:6f:0d:24:10:74:
33:01:45:d9:41:be:82:92:4e:51:af:09:f5:c9:8e:
72:5e:80:50:cf:86:85:45:a4:d9:41:0a:fa:56:97:
59:6d:7b:7b:ed:82:ef:f4:0b:bd:83:b6:60:67:2d:
ec:3b:cb:50:8a:ad:f9:bd:d1:f6:3f:c6:f4:4d:f8:
3d:1e:c0:8e:95:ac:df:0f:28:0b:5a:d6:60:87:a5:
49:aa:ea:b6:17:1f:dc:72:0a:2f:5c:02:a7:73:00:
e7:ee:cb:d3:b1:f5:9a:64:a0:f1:f8:9d:80:65:d5:
dc:3d:cb:4e:f4:ca:1d:c5:29:ba:2a:f4:f7:ea:34:
96:61:6a:78:1c:85:76:8c:7f:4c:90:2c:c2:34:dd:
8b:f1:62:e4:bb:0b:f7:6a:c6:d5:be:a7:e3:5e:9d:
5d:a2:81:c5:b7:85:fb:c7:f7:17:9b:34:23:aa:32:
53:ba:ee:38:8f:5d:64:c2:4a:a5:2b:9f:2e:f8:66:
96:ff:dc:88:8f:ce:73:05:eb:fe:ff:2e:11:41:4a:
a8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:95:DE:6E:03:90:62:08:45:AB:63:E3:4B:47:34:6B:78:89:E7:20
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/sJXebgOQYghFq2PjS0c0a3iJ5yA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.237.0/24
Signature Algorithm: sha256WithRSAEncryption
88:f9:46:c0:1a:a2:de:cb:f6:eb:4e:31:5e:20:80:70:c1:8b:
46:2c:4d:50:72:36:1c:c9:b1:b7:98:b5:81:9b:6b:a2:d0:4e:
5c:cc:5b:88:a8:3f:96:24:79:56:d2:c5:c3:b6:43:f3:bf:98:
be:26:8c:02:2a:9b:07:6c:4f:0c:22:b7:1d:7a:c4:bc:eb:1c:
49:fc:5e:75:82:a7:a0:a2:e0:0c:e5:a5:97:b1:17:b5:99:5e:
3c:a2:ac:cf:1f:0c:f5:b9:84:a6:10:f9:4e:36:b0:57:4c:9c:
5b:21:f6:6f:e9:4a:a9:d6:c1:e6:e3:0e:7a:4f:47:7c:67:3a:
7d:8c:8b:a3:e5:2d:a2:83:da:34:77:5d:4d:17:a6:ed:cc:79:
7a:a2:0c:ac:ca:d8:b2:ba:ba:d3:b8:2b:75:9b:6e:8e:8d:05:
84:fb:89:9e:88:e6:47:88:2f:66:27:bd:6f:ff:29:55:dc:b1:
b8:c3:c9:dc:fa:c3:83:58:26:ed:18:97:71:24:c6:22:f4:f9:
4f:16:cb:d3:e9:13:6a:20:14:ad:d7:7e:3a:86:04:56:6e:85:
fa:c4:a2:9d:ba:a8:6f:21:08:78:f9:b9:14:34:66:a7:78:0d:
2e:72:34:6c:46:dc:6e:cc:62:8f:a0:67:cb:6a:fb:f7:7a:cb:
06:5f:32:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org