Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/2NgYwmaJ8qM0caVKc3kH3Sxvduo.roa
File: 2NgYwmaJ8qM0caVKc3kH3Sxvduo.roa (raw, json)
Hash identifier: SIvl7urIkooElouwEtLhCeVPe4OwZx3w4VVpVw38HPg=
Subject key identifier: D8:D8:18:C2:66:89:F2:A3:34:71:A5:4A:73:79:07:DD:2C:6F:76:EA
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0A40
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/2NgYwmaJ8qM0caVKc3kH3Sxvduo.roa
Signing time: Wed 29 Sep 2021 02:52:50 +0000
ROA not before: Wed 29 Sep 2021 02:52:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18424
IP address blocks: 121.50.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2624 (0xa40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Sep 29 02:52:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D8D818C26689F2A33471A54A737907DD2C6F76EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:01:e9:6e:ef:27:f4:a1:60:4d:7b:fb:ee:c1:
50:1a:5e:f2:cb:6e:e7:46:a1:e4:7b:d7:74:43:4f:
4c:4b:b0:05:31:e3:47:62:7f:76:a1:c4:cc:a4:1e:
a1:68:96:0a:0a:ad:ba:12:4b:2f:69:9e:4d:8c:40:
f9:5c:54:25:66:37:01:12:c0:13:24:37:12:93:49:
5d:e6:b7:7e:1a:39:e1:59:4d:b0:df:4c:e9:a0:3f:
45:cc:dc:ed:86:f6:60:2d:49:db:9e:db:6e:5a:12:
54:34:6a:9d:7d:28:95:66:f5:58:c5:0f:ac:49:e2:
1f:38:f1:68:7d:c4:c5:ea:78:74:9b:12:09:a7:62:
6b:62:9f:31:07:f2:06:1d:e6:12:9a:8c:a9:da:1e:
ef:a2:91:af:7d:6a:42:8a:c9:25:f2:56:f1:ad:cc:
05:9f:da:6e:cd:70:67:70:b4:5d:f1:06:d8:2e:9d:
e1:db:2a:b6:cb:fc:d1:ff:98:a3:fc:8c:4c:60:ca:
b1:a5:ce:d4:13:1c:97:c2:f6:d3:de:84:e6:cb:ca:
13:4d:b5:f1:4b:bd:3c:a8:d1:f9:b8:53:84:d8:c5:
55:41:e8:5e:db:f7:ea:74:b2:8d:7c:a1:6e:4c:73:
50:42:ba:43:03:5d:da:2d:4b:31:e2:44:f2:7d:68:
87:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D8:18:C2:66:89:F2:A3:34:71:A5:4A:73:79:07:DD:2C:6F:76:EA
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/2NgYwmaJ8qM0caVKc3kH3Sxvduo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.149.0/24
Signature Algorithm: sha256WithRSAEncryption
34:48:5b:1d:41:e4:92:4d:4f:3e:bf:f7:51:8a:09:a8:15:b1:
29:d1:18:97:5c:31:1d:c0:b0:cb:ac:d0:54:ae:fc:4b:2f:ee:
0a:3e:fb:d8:00:63:02:b1:2e:a5:1b:d6:d6:96:52:3d:65:5f:
f2:44:45:33:6b:50:e7:a0:2a:e9:74:a5:07:4a:5d:eb:73:77:
2a:38:1d:60:34:cf:e7:b8:be:e2:04:06:e7:f7:d4:d6:00:67:
82:c7:fe:d8:cf:42:9c:50:fc:80:d3:03:f1:92:33:cc:4e:60:
01:eb:e7:c4:14:58:e4:51:ae:44:3d:10:57:1f:6d:e2:c9:af:
2e:36:f9:03:c9:96:46:5f:e5:69:7c:ad:8d:ee:20:d0:88:b0:
17:62:db:da:62:9a:da:9e:9a:0a:b0:e1:f0:8e:bf:87:6f:31:
f0:18:c1:1b:b6:83:b9:b3:7b:25:19:d8:9f:27:5d:ef:20:94:
b9:c9:fb:31:25:d0:22:aa:f2:b3:24:ce:04:bd:09:fe:1a:68:
5b:24:b6:8d:1b:fe:75:65:0c:14:e2:1d:3a:09:f0:28:dd:38:
4f:fc:ce:af:b5:38:9b:a7:45:2a:49:0c:16:f1:ff:00:00:44:
25:5f:3f:92:45:ce:bb:8c:4e:99:da:ba:d1:02:65:1c:85:7d:
23:10:72:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org