Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Bg-uZRJqpfjLZk2XBpj1Wqd5QX0.roa
File: Bg-uZRJqpfjLZk2XBpj1Wqd5QX0.roa (raw, json)
Hash identifier: zXlp9o+I2U4EaVPTvfIkxUL/lQbET8frLuIpJYd+ghk=
Subject key identifier: 06:0F:AE:65:12:6A:A5:F8:CB:66:4D:97:06:98:F5:5A:A7:79:41:7D
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0986
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Bg-uZRJqpfjLZk2XBpj1Wqd5QX0.roa
Signing time: Wed 17 Feb 2021 16:09:55 +0000
ROA not before: Wed 17 Feb 2021 16:09:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 121.50.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2438 (0x986)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 17 16:09:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=060FAE65126AA5F8CB664D970698F55AA779417D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1c:2d:06:42:bf:d7:0f:b6:ee:e9:d0:6f:c8:
f7:0c:ff:78:22:11:78:fc:b1:01:d5:14:72:43:22:
34:04:8b:53:46:db:2d:17:7e:86:cf:05:c3:6f:87:
fb:73:40:88:84:bb:fb:ca:a4:4b:cd:c3:52:3e:d2:
bc:f5:98:f5:ae:44:d9:ab:cf:e5:fa:d2:22:3d:76:
bb:2e:e3:46:db:b4:92:e5:28:92:2b:04:8a:b5:92:
bf:db:ea:3c:e6:e3:aa:35:44:5b:53:6f:36:bb:d0:
1a:9d:a7:23:22:bc:3e:5c:0d:86:77:f8:88:50:cb:
81:d4:4c:59:6a:5a:ef:29:91:ca:a3:08:1c:dd:dc:
fc:ce:1c:ba:ee:c1:87:91:db:3c:ce:42:f6:b2:7d:
0c:2d:84:2d:7c:43:7e:5f:c5:52:47:83:62:c6:78:
98:24:0a:17:12:e1:1c:e8:bb:26:e2:ae:95:01:b0:
16:46:41:3e:2e:cd:70:64:b2:36:8d:5d:f6:35:73:
1f:60:05:40:64:45:65:b7:6b:bb:8d:a3:93:99:56:
b5:f7:06:9a:9f:42:0f:f3:40:85:15:1b:cc:5b:03:
bc:80:61:a6:8f:3f:1f:df:93:1a:f6:3b:78:fb:4e:
58:76:3a:b7:c8:b2:18:8b:69:26:ab:01:85:de:6f:
3d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:0F:AE:65:12:6A:A5:F8:CB:66:4D:97:06:98:F5:5A:A7:79:41:7D
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Bg-uZRJqpfjLZk2XBpj1Wqd5QX0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.151.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:3e:15:94:ff:4d:4d:2e:a9:69:e4:b5:a7:83:1f:85:f4:a7:
7a:6c:f6:fd:59:8d:19:f6:ff:c3:ab:b0:39:f1:a5:76:13:c0:
10:81:ef:c4:a3:b4:cb:cf:cb:a9:61:aa:c0:6d:dc:c5:c4:93:
99:c5:1c:af:f0:b0:61:e3:4b:4c:ab:48:97:e7:bf:29:c8:bd:
4b:0e:e4:d3:c0:bb:33:d0:58:76:a3:41:c1:26:b4:67:17:8f:
2f:6c:40:44:36:e9:90:a4:e8:61:eb:07:cc:f8:ab:01:03:bc:
6f:9b:d9:da:62:d3:bb:78:c5:1e:3c:dd:ad:bf:b4:0b:e2:57:
82:47:ce:eb:5a:32:16:c0:78:86:d1:e3:d3:1f:fc:3e:60:72:
76:dc:ef:8f:a6:74:44:c2:ef:75:f0:39:ce:04:a1:bb:c8:10:
93:40:f2:ee:0b:ca:a2:68:b4:95:24:a1:9b:9e:cf:c7:e2:0f:
04:27:70:99:ad:02:ae:b4:94:da:f2:b2:e4:57:8f:59:e6:dd:
26:a3:42:f5:15:c6:93:4c:b0:f6:28:6e:06:41:23:be:75:50:
bd:2f:ee:bb:73:ef:14:b3:c9:c1:9e:f0:1b:56:2d:9b:b6:8e:
e0:bd:59:b9:0a:5a:66:5c:d1:15:9b:36:d7:6f:4d:75:79:35:
28:db:96:83
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCYYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3
RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMTAyMTcx
NjA5NTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA2MEZBRTY1MTI2QUE1
RjhDQjY2NEQ5NzA2OThGNTVBQTc3OTQxN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQHC0GQr/XD7bu6dBvyPcM/3giEXj8sQHVFHJDIjQEi1NG2y0X
fobPBcNvh/tzQIiEu/vKpEvNw1I+0rz1mPWuRNmrz+X60iI9drsu40bbtJLlKJIr
BIq1kr/b6jzm46o1RFtTbza70BqdpyMivD5cDYZ3+IhQy4HUTFlqWu8pkcqjCBzd
3PzOHLruwYeR2zzOQvayfQwthC18Q35fxVJHg2LGeJgkChcS4RzouybirpUBsBZG
QT4uzXBksjaNXfY1cx9gBUBkRWW3a7uNo5OZVrX3BpqfQg/zQIUVG8xbA7yAYaaP
Px/fkxr2O3j7Tlh2OrfIshiLaSarAYXebz0XAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUBg+uZRJqpfjLZk2XBpj1Wqd5QX0wHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN
caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ
V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL0JnLXVaUkpxcGZq
TFprMlhCcGoxV3FkNVFYMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAB5MpcwDQYJKoZIhvcNAQELBQADggEBAD4+FZT/TU0uqWnktaeDH4X0p3ps
9v1ZjRn2/8OrsDnxpXYTwBCB78SjtMvPy6lhqsBt3MXEk5nFHK/wsGHjS0yrSJfn
vynIvUsO5NPAuzPQWHajQcEmtGcXjy9sQEQ26ZCk6GHrB8z4qwEDvG+b2dpi07t4
xR483a2/tAviV4JHzutaMhbAeIbR49Mf/D5gcnbc74+mdETC73XwOc4EobvIEJNA
8u4LyqJotJUkoZuez8fiDwQncJmtAq60lNrysuRXj1nm3SajQvUVxpNMsPYobgZB
I751UL0v7rtz7xSzycGe8BtWLZu2juC9WbkKWmZc0RWbNtdvTXV5NSjbloM=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org