Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/2oARzQ1T9wP1Bajwkg_qWblbUxA.roa
File: 2oARzQ1T9wP1Bajwkg_qWblbUxA.roa (raw, json)
Hash identifier: eTRz+5mUH08Jlmfh7oAgPqhZvN29bwIzcSeVoFpDnP4=
Subject key identifier: DA:80:11:CD:0D:53:F7:03:F5:05:A8:F0:92:0F:EA:59:B9:5B:53:10
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0784
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/2oARzQ1T9wP1Bajwkg_qWblbUxA.roa
Signing time: Tue 29 Sep 2020 10:00:30 +0000
ROA not before: Tue 29 Sep 2020 10:00:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 121.50.148.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1924 (0x784)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Sep 29 10:00:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DA8011CD0D53F703F505A8F0920FEA59B95B5310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a7:93:da:d4:4b:06:52:bb:6b:e6:86:e8:70:
a0:ec:71:28:61:f6:12:10:96:fe:5b:98:f1:fd:4d:
9d:70:58:b3:ef:38:67:b4:b6:a7:80:ec:95:7a:95:
30:4f:db:84:04:64:df:1a:27:17:6d:cd:bf:a2:9f:
91:10:e0:22:3d:49:60:c5:6c:5d:02:3c:99:f8:ce:
5f:e0:8b:7e:dc:af:bf:9b:bb:57:20:9d:d7:ec:c4:
42:50:0a:2c:32:37:74:db:11:91:44:0e:f9:de:f5:
31:50:50:5b:1f:78:09:ab:04:9b:dc:e7:1b:32:ab:
f2:83:a9:28:86:95:1f:f6:5a:31:37:01:ca:f9:0d:
67:c0:f6:d5:0f:f2:8a:0f:c8:20:34:45:ac:f5:34:
90:70:a7:84:f0:6b:21:f4:36:2b:e7:86:69:90:67:
3d:08:e3:f5:3d:69:f5:91:2c:47:ae:69:68:df:db:
4d:8a:7d:15:75:6d:7c:d1:ad:38:7b:88:43:64:43:
05:33:a5:e1:2e:62:f1:8b:9d:0f:61:a4:c1:1c:7e:
30:ec:5d:89:35:8c:91:48:c0:ca:01:65:8a:b4:77:
2c:3a:9f:8f:c3:de:11:9a:c4:bf:d0:9b:b6:32:c8:
2c:58:4f:33:e0:77:49:52:45:1e:83:2c:e5:9b:de:
75:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:80:11:CD:0D:53:F7:03:F5:05:A8:F0:92:0F:EA:59:B9:5B:53:10
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/2oARzQ1T9wP1Bajwkg_qWblbUxA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.148.0/22
Signature Algorithm: sha256WithRSAEncryption
61:cb:d2:5a:bb:53:dd:8d:d5:75:77:32:57:98:d1:78:44:6d:
2a:5a:29:b3:e5:87:82:d7:62:09:18:98:aa:95:ad:87:6f:d8:
35:7e:63:e1:73:4e:0d:2b:06:ee:2e:05:4e:c2:1d:ab:12:88:
7c:4f:fe:5f:10:aa:ad:72:cd:61:f1:9f:f3:44:ce:52:d0:13:
fc:85:d5:5d:77:fd:17:06:08:9a:b2:fa:75:2b:34:a0:55:a6:
11:26:e0:bf:b4:82:0a:75:22:5e:e6:59:cf:7c:a6:ac:c1:d8:
6e:b6:ab:ab:96:d4:0a:d7:01:3f:45:08:e3:f7:4b:72:88:d6:
84:55:0a:fe:3b:a9:5b:8c:65:f9:cd:ce:36:ce:d5:14:de:16:
21:86:45:97:8f:70:03:9d:4c:db:d5:d9:dc:cf:cc:9b:23:a3:
24:db:e6:df:c9:4c:37:9e:cd:a5:d1:21:b1:aa:da:14:fa:36:
0a:2e:68:42:1c:66:c7:24:b3:13:08:76:db:7f:75:c1:ca:dd:
8c:eb:81:88:ed:51:34:84:d2:aa:bd:d5:1b:b2:0f:59:18:4c:
e8:d7:89:a9:89:45:77:aa:92:5f:30:74:9c:e1:cb:c7:58:d5:
6a:0e:52:d0:25:48:8c:8e:02:47:b2:25:b5:74:1e:aa:df:8a:
44:83:19:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org