Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/C39hCeMscg9M4gBluwO15Wy0-rI.roa
File: C39hCeMscg9M4gBluwO15Wy0-rI.roa (raw, json)
Hash identifier: W52wuusFAT29C/MAkuW7WNn8+utkrfw09dHtadYxa2Y=
Subject key identifier: 0B:7F:61:09:E3:2C:72:0F:4C:E2:00:65:BB:03:B5:E5:6C:B4:FA:B2
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 087B
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/C39hCeMscg9M4gBluwO15Wy0-rI.roa
Signing time: Wed 04 Nov 2020 08:56:47 +0000
ROA not before: Wed 04 Nov 2020 08:56:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 121.50.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2171 (0x87b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Nov 4 08:56:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0B7F6109E32C720F4CE20065BB03B5E56CB4FAB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:7e:58:d0:fc:31:d1:31:8e:d7:16:5d:79:22:
eb:73:fa:4d:97:65:4f:8c:da:fd:18:e8:b3:51:73:
66:0c:69:21:e8:6d:4e:7f:d9:dd:56:9e:0b:2f:56:
e3:ed:65:fb:fe:50:50:be:a5:f1:a5:52:36:28:95:
df:3d:a0:fc:df:76:91:5b:4a:f3:6f:63:81:03:f4:
f2:c6:9f:1b:76:6e:49:34:bd:c4:86:57:0f:b6:6b:
56:ff:ce:5f:25:3a:8e:69:42:73:93:d9:5c:63:9b:
0e:46:d6:fb:32:5b:0b:b3:12:87:be:2e:c2:8f:7d:
b6:3d:65:d8:77:2f:74:06:ff:2c:e8:4a:f2:db:e5:
0a:c2:41:ab:1c:51:77:4f:72:6a:eb:86:9d:67:a6:
2a:69:fa:5f:f1:2d:63:42:2e:7e:e6:75:bf:3c:6a:
f0:5c:8c:76:cc:b5:a6:f0:e6:54:1f:43:5b:9a:d7:
02:77:bb:93:89:73:3c:fa:9f:19:8a:cc:f7:90:f5:
4f:7e:45:ee:4c:d3:26:5c:02:96:ee:5c:7b:ae:84:
08:54:9f:09:de:f4:4c:57:1d:60:b7:b4:82:57:a2:
50:b1:8d:c1:31:ba:10:7c:24:c3:f6:3e:27:0f:6d:
f0:c6:19:1b:b3:93:b2:bf:cf:3f:39:87:aa:3b:06:
1b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:7F:61:09:E3:2C:72:0F:4C:E2:00:65:BB:03:B5:E5:6C:B4:FA:B2
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/C39hCeMscg9M4gBluwO15Wy0-rI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.144.0/21
Signature Algorithm: sha256WithRSAEncryption
28:fa:25:6b:69:62:82:58:eb:81:d7:f9:ad:b1:16:21:a4:45:
15:6d:ba:87:3d:45:8f:fb:8b:36:b0:1d:6b:43:1e:fe:25:ce:
6a:4d:f1:44:ef:89:39:44:46:0b:ac:f5:2b:66:f0:6b:57:81:
60:02:95:48:68:84:dd:27:18:92:52:51:15:9f:68:05:f6:ed:
45:92:1c:83:89:f1:c5:38:60:6f:de:d6:ed:fa:d0:8a:73:26:
72:a0:94:f9:f4:9d:13:39:7c:b2:a5:39:1d:51:de:ac:08:64:
70:d5:b7:49:41:12:86:f5:bb:9c:70:5d:95:53:b5:71:5b:a3:
0e:e9:7b:2d:82:58:36:b3:27:b0:2e:db:5c:ce:9b:ea:da:a3:
0f:cc:8c:a9:56:6a:3d:73:d5:c3:fb:a5:6d:2b:16:c3:01:08:
e9:93:81:95:a1:8f:6c:57:3b:1d:02:f4:ca:53:83:a2:bf:0a:
fa:7e:06:d6:90:a3:53:e8:d9:00:58:6c:9e:c9:16:e4:9a:f7:
87:73:f8:26:10:ff:bc:b2:05:b0:b2:68:14:c0:24:f5:35:db:
22:dd:86:f1:78:60:e1:88:fc:7e:2f:83:b6:ba:67:97:96:ce:
3a:6f:32:be:eb:ed:ce:95:b2:e9:14:6e:f5:7a:92:13:ef:18:
e9:1b:4c:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org