Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/DsDkRkDiS56VtxLCdY4ev_2fpp8.roa
File: DsDkRkDiS56VtxLCdY4ev_2fpp8.roa (raw, json)
Hash identifier: Z6MnYgIRBW0dtYRnKunDtt4EBzc3PNtfeWE1DUr3cS8=
Subject key identifier: 0E:C0:E4:46:40:E2:4B:9E:95:B7:12:C2:75:8E:1E:BF:FD:9F:A6:9F
Certificate issuer: /CN=43FF5C92CC4950A457A7327D168FBC465B218322
Certificate serial: 08B5
Authority key identifier: 43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/DsDkRkDiS56VtxLCdY4ev_2fpp8.roa
Signing time: Sun 07 Feb 2021 11:54:50 +0000
ROA not before: Sun 07 Feb 2021 11:54:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4782
IP address blocks: 203.65.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2229 (0x8b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43FF5C92CC4950A457A7327D168FBC465B218322
Validity
Not Before: Feb 7 11:54:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0EC0E44640E24B9E95B712C2758E1EBFFD9FA69F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:40:28:8c:9f:0c:f4:87:3b:ae:b2:e0:bd:ed:
93:42:e5:63:6a:a0:8d:90:f6:1b:87:34:a6:41:74:
52:48:26:1e:f7:32:55:48:36:5d:6e:6d:ab:c4:55:
e6:77:83:35:bc:28:a7:62:04:5b:e8:ee:e3:11:c1:
11:15:cb:18:28:8b:dd:a9:4b:3c:1d:1c:f1:96:a4:
c9:18:68:a9:fe:9a:25:57:3d:24:b2:d5:90:a1:58:
41:1c:98:21:75:72:e7:c5:65:7a:fb:ff:ef:e8:c4:
eb:04:f6:65:36:5b:92:a9:5c:d3:93:19:fd:7b:1f:
74:d1:8b:48:38:98:d2:d3:fa:f1:af:af:a9:9d:99:
3c:d8:2b:c6:70:dd:70:0a:3d:e1:9e:d7:16:6b:71:
bc:02:3e:41:e8:66:52:55:4e:90:6d:e6:9f:79:b6:
19:69:a8:d6:f5:33:e8:3b:94:86:2c:d6:28:ec:c4:
d4:92:6d:46:76:23:ce:21:ec:d3:50:1d:5d:28:8f:
0d:49:b5:fe:a2:d6:9e:03:ce:f1:64:65:33:99:7a:
20:6f:f0:ab:ab:7d:62:a0:1d:61:23:20:d6:ec:2c:
c2:f1:68:71:da:47:3e:c8:16:53:da:5f:ad:d3:f9:
17:5a:bd:7a:be:30:a3:5f:4b:af:91:25:1a:fa:fa:
13:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C0:E4:46:40:E2:4B:9E:95:B7:12:C2:75:8E:1E:BF:FD:9F:A6:9F
X509v3 Authority Key Identifier:
keyid:43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/DsDkRkDiS56VtxLCdY4ev_2fpp8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.128.0/19
Signature Algorithm: sha256WithRSAEncryption
69:17:94:36:bb:2d:2f:1d:0a:f9:18:1e:b4:53:94:00:75:06:
4b:8a:26:00:ee:b7:95:07:bb:93:8b:29:66:2b:20:e1:1b:74:
b5:a8:9d:b3:56:2f:62:a2:ca:2e:a4:b2:b4:73:7f:4e:ce:dc:
17:42:2c:1d:ca:e5:17:f4:e9:67:17:c5:38:8f:9c:10:96:71:
15:a4:02:26:f9:ff:d4:f5:0f:8d:26:98:63:e5:45:47:4e:5a:
03:71:2d:02:d5:c8:06:2e:47:5d:56:05:33:15:46:86:07:00:
6a:c8:92:8e:7b:75:7a:d5:44:c2:7d:19:f8:b1:c4:ea:b8:cf:
fe:40:80:c6:7b:90:02:9b:fa:00:d9:ad:86:a2:94:63:fc:97:
df:e6:b6:31:9f:b4:1e:28:18:4c:cc:a5:be:3a:db:35:24:29:
64:48:21:cd:b1:a2:22:3e:ed:46:f1:a5:df:5b:bd:41:fe:d8:
72:51:cb:02:5e:fa:af:27:9f:8c:67:2e:82:ec:c2:f4:ee:74:
ca:9d:e8:e8:c9:53:b9:4d:4a:66:1d:5f:d2:ae:69:5a:e0:4e:
0f:58:b4:ac:48:76:cf:d2:1c:9f:2f:ff:03:38:8e:8f:19:db:
f4:3d:db:8b:a3:05:e6:d9:4d:ad:1c:5d:44:ce:a1:58:7a:52:
3b:54:0a:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:51 2025 by rpki-client