Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/Qe1UmkpwDBiqgnW4KK2gFdFUxcY.roa
File: Qe1UmkpwDBiqgnW4KK2gFdFUxcY.roa (raw, json)
Hash identifier: lShg2jjx7mCFdfwMRQfee3bLx/t3cketPlHHo+gpBWo=
Subject key identifier: 41:ED:54:9A:4A:70:0C:18:AA:82:75:B8:28:AD:A0:15:D1:54:C5:C6
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 0B6E
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/Qe1UmkpwDBiqgnW4KK2gFdFUxcY.roa
Signing time: Fri 01 Sep 2023 08:30:30 +0000
ROA not before: Fri 01 Sep 2023 08:30:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18046
IP address blocks: 121.50.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2926 (0xb6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Sep 1 08:30:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=41ED549A4A700C18AA8275B828ADA015D154C5C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ec:cc:09:33:44:5c:1f:49:e3:fc:b1:2b:31:
3c:c6:dd:f8:e6:1e:f8:8f:85:8a:fe:b2:50:ca:5a:
3f:48:e6:67:4d:03:e1:81:6d:3b:27:f7:38:fb:9a:
3d:1e:33:f2:8a:89:7e:0b:94:89:9d:50:17:87:f9:
f4:8e:d5:db:cd:a0:9c:63:38:bb:d6:84:ae:02:97:
bd:17:c6:64:63:49:21:b5:38:df:f6:8f:48:07:92:
cf:69:8a:61:8a:39:2a:79:1e:b6:ac:76:10:1c:5a:
4b:04:87:65:0d:55:cd:d6:7e:0d:7f:35:a3:db:b8:
53:09:14:32:48:25:8a:f2:83:2b:be:17:4b:58:af:
f6:94:91:ca:e4:34:34:7c:9b:e7:06:b5:14:1e:e5:
b9:7d:65:f1:f8:ad:c3:76:49:76:34:76:9a:2a:ef:
d1:b0:fd:a7:8a:6a:a9:82:d6:23:cd:a3:73:1d:ed:
8d:22:13:23:d0:9f:d2:aa:4a:a5:d8:08:06:6c:1f:
9b:7d:19:4f:78:cb:dd:11:59:2e:d7:30:2e:d4:cc:
bc:ac:95:d2:9c:5f:83:5b:54:bf:ba:b0:75:e6:e4:
5a:26:c2:67:0f:84:bf:98:74:4c:18:cb:3c:8a:85:
2a:a9:d4:90:60:7c:74:de:3b:01:43:88:d1:27:d7:
a3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:ED:54:9A:4A:70:0C:18:AA:82:75:B8:28:AD:A0:15:D1:54:C5:C6
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/Qe1UmkpwDBiqgnW4KK2gFdFUxcY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.176.0/20
Signature Algorithm: sha256WithRSAEncryption
49:d5:cc:55:b4:3a:86:1f:96:55:1c:68:8b:9c:12:25:12:b0:
dc:05:17:bf:6d:4e:82:13:6c:01:ab:9c:98:c4:38:ed:db:80:
97:2c:4f:d7:4d:29:8c:52:96:22:39:b1:56:6b:e2:8f:9b:24:
c4:47:e8:00:19:97:98:fb:40:05:79:44:68:15:21:79:c5:76:
92:4f:26:2b:cf:57:8f:cb:0e:cb:49:10:cd:93:64:29:29:2a:
76:f6:db:bd:0c:f8:66:e0:8d:ac:4b:25:1a:f6:1c:7b:d4:09:
65:95:84:ed:6e:2e:65:bf:5c:95:7c:62:d4:af:34:0d:c9:ed:
3a:c5:0c:bb:bd:8a:e7:b2:0d:4c:eb:bc:34:4b:ca:2e:b1:01:
6f:11:7f:1f:d2:47:1f:7e:e1:24:18:0b:a9:25:73:0b:de:6a:
a5:17:76:83:9b:c0:a2:ed:c4:25:07:d5:ae:c3:48:6b:80:2d:
3e:df:e4:73:b6:9f:4b:84:b8:7b:a2:9f:96:57:16:0a:be:1f:
cf:b8:12:77:f4:cd:e4:da:61:16:e1:1d:45:e1:cc:40:41:ee:
33:5a:70:3a:d4:cd:c6:8e:e0:98:6c:cb:cc:98:5d:40:a8:f9:
ec:57:42:6f:a3:76:b9:f1:7f:18:d5:49:32:d4:b2:c0:80:fa:
10:8d:b0:07
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:04 2025 by rpki-client