Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/vV6Kh2L1MRdy2KaNZFGCBldmBeg.roa
File: vV6Kh2L1MRdy2KaNZFGCBldmBeg.roa (raw, json)
Hash identifier: FRPX3xhNlnqO4T53AFqvtGRyGPYK2joHJ5PC9j+xMzg=
Subject key identifier: BD:5E:8A:87:62:F5:31:17:72:D8:A6:8D:64:51:82:06:57:66:05:E8
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0A89
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/vV6Kh2L1MRdy2KaNZFGCBldmBeg.roa
Signing time: Thu 15 Sep 2022 02:37:51 +0000
ROA not before: Thu 15 Sep 2022 02:37:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 61.65.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2697 (0xa89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 15 02:37:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BD5E8A8762F5311772D8A68D64518206576605E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:19:44:03:ec:1d:10:14:53:6a:0e:3a:93:89:
84:64:9f:01:cf:8b:b1:c6:28:54:48:50:a7:9a:d9:
3b:ed:24:b2:e0:d6:e4:db:3d:5d:63:0b:94:de:25:
65:5b:fe:e7:8b:42:ff:14:b9:d6:3c:b5:1d:2d:98:
3f:53:c3:e0:29:b3:f6:e0:57:f2:e2:d5:52:39:d6:
84:89:7c:a2:bd:b5:25:68:7b:c8:f5:a2:99:ad:9d:
60:4f:fa:ea:1d:7d:c9:91:fb:87:bd:e3:7c:a0:3c:
78:99:3c:87:62:51:6e:3b:02:35:b7:a2:75:91:23:
ec:4b:da:67:74:ee:9f:05:ff:06:05:65:bd:e1:67:
03:22:16:f4:96:70:4d:84:09:eb:80:6c:c6:bc:01:
38:df:17:f5:f9:0a:fa:2e:67:ce:30:39:e4:7f:0f:
05:86:c3:de:6b:d6:36:9e:5c:11:de:8a:ac:f7:90:
84:f6:7a:1f:0c:26:03:2b:7a:3b:fa:2d:61:61:91:
f0:ae:08:3e:50:67:66:97:f2:69:18:4e:06:68:e7:
ef:cc:aa:4f:7f:e3:44:5b:a1:d0:1c:30:0e:62:ee:
52:f6:89:8e:aa:ad:78:64:63:cb:a8:97:30:e8:5a:
a6:5b:ae:bc:50:00:44:81:6d:37:39:fe:84:d0:db:
33:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:5E:8A:87:62:F5:31:17:72:D8:A6:8D:64:51:82:06:57:66:05:E8
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/vV6Kh2L1MRdy2KaNZFGCBldmBeg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.224.0/21
Signature Algorithm: sha256WithRSAEncryption
8b:58:2d:83:f5:7e:90:28:1e:fd:6c:41:08:2c:a0:24:4d:bc:
91:8d:58:8e:41:d6:33:87:a2:cd:85:a8:7e:48:19:a5:10:af:
77:d9:fc:f9:d8:b5:76:1b:5c:e8:a6:34:08:3a:e1:0f:94:d2:
26:9d:07:a8:12:2f:ca:eb:1f:d5:8f:cc:95:20:04:ba:ef:ca:
6d:5b:81:45:18:76:07:f7:6b:4d:25:45:02:62:9b:c0:cf:1f:
30:47:f4:9a:87:49:b3:45:30:7c:69:6a:be:9c:fd:4a:80:1f:
b2:ef:68:a1:b0:d2:07:b2:17:a5:7f:fc:7f:14:64:4d:de:5f:
40:58:43:78:e1:6a:e1:cd:64:38:d5:aa:0b:0a:63:6c:2c:96:
d5:57:de:88:6b:5e:b5:8f:99:1a:04:72:83:d9:b4:96:09:ac:
74:e5:48:67:6e:ef:05:09:d8:48:4f:5e:78:69:36:5b:f6:b4:
3c:eb:3b:73:d2:a5:30:84:50:b7:e4:94:57:18:0b:9d:c0:dd:
32:42:04:cd:98:f2:4f:b8:ed:30:48:95:ee:6e:e3:d7:ca:16:
3b:3c:ec:81:56:2f:24:63:52:6a:72:ed:2c:a7:97:44:0f:46:
fe:5f:40:a3:81:07:7a:98:e5:91:e1:89:5e:ef:5d:bf:b5:cd:
f1:46:1f:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:08 2025 by rpki-client