Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/IgHtDPgxzKxdTBbYqSRggFYS_mI.roa
File: IgHtDPgxzKxdTBbYqSRggFYS_mI.roa (raw, json)
Hash identifier: /OCh2NfrzWMBvAtRmA/zWwlWme1dG7NuT4BN9iwFSiM=
Subject key identifier: 22:01:ED:0C:F8:31:CC:AC:5D:4C:16:D8:A9:24:60:80:56:12:FE:62
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 086A
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/IgHtDPgxzKxdTBbYqSRggFYS_mI.roa
Signing time: Wed 04 Nov 2020 08:39:44 +0000
ROA not before: Wed 04 Nov 2020 08:39:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 121.50.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2154 (0x86a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Nov 4 08:39:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2201ED0CF831CCAC5D4C16D8A92460805612FE62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:8b:a8:28:10:f3:df:12:c2:09:81:ca:b1:b4:
44:4d:83:f7:ce:8b:ba:0d:38:dc:55:cb:7a:39:1a:
01:2e:b5:90:5b:c7:a2:d6:4b:be:05:3f:2c:7c:03:
83:5d:27:f4:26:f1:87:eb:e6:4c:7d:f6:46:b7:36:
8a:b2:e9:a4:c6:f0:47:c8:4f:fc:d6:33:a5:80:97:
3d:05:f0:b2:44:e0:a4:56:cb:95:f4:9e:d7:b0:37:
43:93:02:e6:0d:14:cb:a1:f5:a9:92:e1:c6:5c:ab:
b7:2a:b7:7f:77:d6:9c:0f:b1:98:22:62:e7:56:51:
1a:15:b7:d7:52:70:86:a7:14:aa:23:2f:9c:b4:a9:
b1:e2:f0:b6:4d:56:2d:83:73:94:bb:77:c3:70:7a:
55:40:c1:e8:b2:80:8f:ec:2e:ce:9f:45:26:60:8b:
d2:75:fb:ca:00:fe:02:9c:8a:b4:1c:2b:fa:5c:7b:
e3:5e:c8:d7:62:1e:88:b6:9f:28:48:6b:69:f4:2b:
2b:f7:b5:12:fd:c9:35:89:5a:3a:c0:06:38:e9:b6:
d3:cd:66:96:af:45:af:0e:fa:3e:9c:77:f3:dc:c4:
e1:2f:f1:2d:0d:39:ea:13:20:fe:4a:73:07:25:01:
7f:99:9c:a6:35:b6:99:ad:31:30:33:e8:7f:58:73:
4e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:01:ED:0C:F8:31:CC:AC:5D:4C:16:D8:A9:24:60:80:56:12:FE:62
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/IgHtDPgxzKxdTBbYqSRggFYS_mI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.149.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:dd:d0:de:c8:a6:98:0f:57:2c:db:20:11:82:12:68:e2:08:
6b:a3:84:f8:dc:79:e6:b9:65:ab:c2:c3:e7:73:db:41:52:23:
87:cc:93:a0:0d:8f:b9:df:b8:cb:79:10:a2:d6:ac:07:56:37:
20:3b:65:dc:9e:70:28:52:99:bb:19:d4:4e:f0:a6:26:4f:e6:
49:d9:17:1f:51:04:13:9e:6d:2a:0b:85:35:7a:09:09:13:2f:
0d:9f:61:f3:fd:02:9c:bc:20:b0:a4:65:95:5d:87:df:84:55:
95:78:02:6b:83:b8:2d:6b:e5:ac:ca:77:0b:be:40:e2:3c:70:
6a:93:fb:78:a5:4c:1e:da:e1:f0:7e:c9:b1:ca:36:12:1b:f4:
a0:b4:51:60:e3:23:ee:21:f0:0b:c5:32:95:28:f1:85:21:41:
1b:a8:71:12:e4:b1:f7:ec:d4:3c:9e:0a:58:03:6b:75:ba:4c:
30:44:59:6b:9a:12:33:42:74:93:03:a7:5d:9e:ee:b5:88:c5:
53:15:8e:b7:7b:7c:e8:72:fe:8d:ca:b2:24:6b:ed:f0:04:63:
cc:84:2e:c5:ff:03:0d:75:d9:74:94:4e:17:4c:0d:fd:ee:34:
89:e6:cd:79:c4:80:30:87:82:e8:5b:14:4f:fb:76:79:47:57:
97:80:b3:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org