Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/4jZcyBh9Tv9vCkTeODUWoAW0abM.roa
File: 4jZcyBh9Tv9vCkTeODUWoAW0abM.roa (raw, json)
Hash identifier: TZ9RnV3hpRRxbFzjLo6HW8e8lXlJ+CFeML58r3MjNl4=
Subject key identifier: E2:36:5C:C8:18:7D:4E:FF:6F:0A:44:DE:38:35:16:A0:05:B4:69:B3
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0971
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/4jZcyBh9Tv9vCkTeODUWoAW0abM.roa
Signing time: Sun 07 Feb 2021 13:05:30 +0000
ROA not before: Sun 07 Feb 2021 13:05:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 121.50.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2417 (0x971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 13:05:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E2365CC8187D4EFF6F0A44DE383516A005B469B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:78:0d:c0:9a:f4:a1:64:27:9b:67:b7:4e:48:
2d:97:30:b3:fe:27:62:79:c7:95:a2:c8:75:7c:c4:
27:35:ad:ed:3c:20:d5:e0:fe:53:b1:93:66:03:cf:
c7:13:e4:01:51:fc:13:e9:70:76:3c:bc:f6:4f:64:
c9:b7:c9:4f:ce:8b:f5:5d:de:2f:dd:a9:af:35:e2:
bb:c2:b5:bd:6c:48:06:2c:09:f4:e6:27:1b:81:28:
eb:3b:03:23:46:f9:fb:b0:6d:6e:cf:45:62:2e:5b:
be:6f:14:9e:9e:0b:db:a6:00:72:7b:09:26:57:2c:
82:e8:d2:a8:0f:76:a3:bd:c4:96:ad:2c:c9:c1:21:
f5:13:c9:8d:04:75:70:ac:3c:dc:a8:17:1e:5a:52:
00:67:e7:46:c8:33:56:a6:dc:fc:a6:cf:d2:b8:6e:
36:65:2e:33:8b:11:e9:8c:78:3d:d9:0c:a1:78:8a:
8d:0b:37:f7:0e:64:ec:dc:2a:4b:d0:6f:dc:d3:84:
0e:36:6d:58:1b:c8:34:f4:d7:18:50:08:ca:ab:c0:
c3:b1:70:b1:b6:30:4c:32:4e:2d:40:12:e1:dc:c0:
a9:93:5c:21:dc:ca:f6:9e:a4:e2:ec:39:9b:c4:a0:
e3:0a:a0:bc:8f:de:96:74:12:17:a8:7d:49:56:85:
eb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:36:5C:C8:18:7D:4E:FF:6F:0A:44:DE:38:35:16:A0:05:B4:69:B3
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/4jZcyBh9Tv9vCkTeODUWoAW0abM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.149.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:ad:6b:0c:51:68:74:9b:58:83:bb:3f:a5:5a:c7:e7:c8:69:
8e:80:24:0d:4a:73:d0:69:a5:c2:a4:c2:52:b7:c7:83:52:ac:
79:e2:51:8e:1b:ad:58:58:66:52:9b:4b:3b:be:fb:2d:0b:9d:
ff:de:59:02:79:7a:68:34:00:3a:30:53:b6:10:0f:37:5c:c3:
5e:da:90:dc:b7:74:9e:d8:65:7a:e4:9f:49:f8:ab:f8:98:c9:
81:e7:92:aa:4b:3a:72:4e:28:c0:95:eb:00:c0:b7:b8:fa:bd:
90:9b:96:83:9b:3f:82:99:2f:68:47:f7:43:82:18:ef:55:4c:
7b:d2:9a:8f:61:ea:aa:70:ad:b3:9d:32:73:d6:87:ae:5f:09:
1f:70:53:ba:54:79:15:b4:c2:96:01:69:ac:7e:6b:50:94:d2:
59:ff:d3:d9:74:07:ef:76:e4:48:11:46:f4:25:76:ab:73:a8:
5e:ca:51:7e:b4:f1:23:59:05:dd:da:65:3d:a7:77:a8:2c:85:
60:a2:97:5b:bd:77:3f:b7:b2:a3:12:f3:79:a3:a2:1f:11:73:
b8:ed:ed:1e:64:ac:6a:91:3d:68:83:6c:e6:04:7b:8c:b7:82:
cc:a2:41:75:d5:23:95:2e:24:d4:b4:d3:a2:b3:e4:98:56:ac:
ab:5c:f9:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org