Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/wlBZHTwWcAX4znBoj6TySiZ3ixI.roa
File: wlBZHTwWcAX4znBoj6TySiZ3ixI.roa (raw, json)
Hash identifier: 01+V8JKFfIR04HMUGEZXlt8CddN1TsuIF+3DKU/Rets=
Subject key identifier: C2:50:59:1D:3C:16:70:05:F8:CE:70:68:8F:A4:F2:4A:26:77:8B:12
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 08EC
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/wlBZHTwWcAX4znBoj6TySiZ3ixI.roa
Signing time: Sun 07 Feb 2021 12:40:33 +0000
ROA not before: Sun 07 Feb 2021 12:40:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 150.107.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2284 (0x8ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Feb 7 12:40:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C250591D3C167005F8CE70688FA4F24A26778B12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ef:96:dc:3b:26:ad:78:9a:74:eb:4d:8a:99:
c8:c9:90:a1:96:13:67:6a:39:de:4d:d4:3a:3b:eb:
39:46:85:c0:80:fb:7a:6b:42:73:b9:94:89:8c:63:
13:ec:41:3e:ca:47:6a:a3:9c:42:a6:8a:73:56:70:
9a:33:98:21:b4:d8:73:ea:2a:9a:b3:73:cd:bc:24:
88:4b:14:d9:c5:08:3f:76:e2:72:ff:d6:d2:d0:7e:
3d:3f:a6:3d:cf:a8:d6:12:88:cd:46:d8:84:52:91:
39:2e:8a:0f:09:55:fc:75:07:5f:3c:2e:ee:4c:e7:
89:7a:fb:89:2e:9e:7e:9f:3b:63:f5:c2:7d:39:6d:
52:f1:1e:41:1e:77:1c:e0:93:9c:8c:46:90:98:3a:
f3:c1:ef:17:3a:6d:d0:46:d0:0d:0a:63:61:3a:ec:
18:20:bc:81:cc:0a:4d:05:e4:5c:9c:46:83:b2:3f:
bb:c6:d8:50:56:f8:99:8d:55:8e:20:09:34:fe:57:
66:0d:37:5c:f1:af:8e:00:2a:b5:a9:de:17:42:42:
a1:33:28:4d:d3:bb:2d:5b:7a:e2:2c:d9:cd:8d:d2:
1d:63:5e:9d:e4:30:16:2b:10:28:0f:af:6e:b8:39:
ca:43:ea:0a:2c:4a:4a:2b:8e:ca:f9:b4:80:0f:50:
0e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:50:59:1D:3C:16:70:05:F8:CE:70:68:8F:A4:F2:4A:26:77:8B:12
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/wlBZHTwWcAX4znBoj6TySiZ3ixI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.107.56.0/22
Signature Algorithm: sha256WithRSAEncryption
be:b8:78:d7:97:4b:72:8e:68:ab:83:f7:5d:c3:df:19:85:29:
9b:ac:58:37:58:8e:1b:7c:5b:9e:b0:53:8b:7c:4b:4d:e5:01:
20:97:e1:1c:b3:8d:7b:e5:b3:ac:28:49:95:a7:7a:90:23:e7:
13:82:60:4b:f6:4c:59:10:2f:95:30:13:e9:96:22:e7:68:bb:
b1:f5:b9:f6:b0:df:9f:c0:4b:6e:5f:1f:b2:05:b5:ec:a0:a1:
c8:85:e2:72:54:ab:d7:b4:3a:3e:59:ae:bd:17:36:0b:43:5d:
15:29:a9:85:3b:3e:e9:ed:f9:2f:6a:bb:3b:de:06:e6:86:6a:
97:0f:53:13:b3:da:6f:a8:ad:6c:8c:94:87:00:f7:82:41:e4:
e8:2b:65:7d:5f:f9:a0:71:9a:c4:02:7b:76:34:56:c2:34:85:
cc:44:5c:2d:3e:47:7e:b9:64:56:ea:15:55:3a:87:59:07:22:
a5:33:88:5b:42:22:ba:e3:4e:c8:06:c8:be:86:58:e5:db:f2:
76:cb:71:16:97:ec:f9:e1:b2:7f:c4:1a:07:98:a6:5a:57:0d:
95:a8:1e:a5:cd:e6:9b:17:1a:38:59:d1:36:ff:f0:23:a1:37:
6d:fe:a8:72:d9:6d:b1:53:1e:bd:14:e8:81:15:0b:42:6a:f4:
e1:8b:4a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org