Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/KmDk_f-Q0FUN1NBlnLYTfhhJD2o.roa
File: KmDk_f-Q0FUN1NBlnLYTfhhJD2o.roa (raw, json)
Hash identifier: NHS5F12/0L+8rHGx8eNxmVNtdRBtwe7V9wH9ezdir1Q=
Subject key identifier: 2A:60:E4:FD:FF:90:D0:55:0D:D4:D0:65:9C:B6:13:7E:18:49:0F:6A
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0860
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/KmDk_f-Q0FUN1NBlnLYTfhhJD2o.roa
Signing time: Wed 04 Nov 2020 08:38:46 +0000
ROA not before: Wed 04 Nov 2020 08:38:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 121.50.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2144 (0x860)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Nov 4 08:38:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2A60E4FDFF90D0550DD4D0659CB6137E18490F6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:2a:49:71:93:6d:6f:ea:8c:cc:06:54:b2:d5:
31:f7:27:12:07:c1:af:95:75:b9:c6:d9:a0:69:0c:
3f:3e:76:b9:9e:e8:ec:69:31:91:96:1e:86:67:3b:
4a:5a:d7:f3:df:32:e4:30:4c:df:20:12:a9:66:f2:
c8:3c:24:2c:42:ba:a2:fe:59:15:f7:a9:0b:83:4b:
21:bb:da:14:44:54:8e:89:b3:e4:8b:dd:ae:ab:da:
dd:05:fe:5d:57:df:12:fe:81:dc:25:77:b8:26:8b:
a4:68:e8:a6:8e:fe:f2:79:21:1f:3a:d2:71:97:66:
b4:34:03:e0:1d:7c:5d:89:42:bf:d0:7e:a5:fe:ca:
64:bb:ab:04:b5:12:be:a8:d6:6e:ec:23:8e:7e:23:
96:40:89:37:b3:53:34:2a:a7:b6:d6:aa:de:92:c3:
eb:dd:2b:a3:af:86:ab:b9:b0:8b:4f:d7:93:28:bf:
fb:b2:fb:d6:42:15:e3:bc:25:d2:a0:bf:e2:5a:b1:
76:42:91:4c:40:ea:c8:ba:72:c6:25:4c:d5:df:b3:
5c:ac:f8:a5:35:df:d0:03:b5:ef:0d:7f:91:c7:c7:
08:14:d0:b7:0f:a2:36:e9:70:7f:f3:f0:4f:08:0c:
df:7d:06:52:6a:34:ac:1a:7f:2d:75:8a:40:81:4c:
28:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:60:E4:FD:FF:90:D0:55:0D:D4:D0:65:9C:B6:13:7E:18:49:0F:6A
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/KmDk_f-Q0FUN1NBlnLYTfhhJD2o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.144.0/24
Signature Algorithm: sha256WithRSAEncryption
15:ec:5f:28:d8:5e:79:6a:0d:91:ea:a7:bc:be:3e:1d:e6:65:
f7:6a:c1:cc:8c:a5:5f:84:f1:6f:db:56:5b:75:ea:8c:56:a0:
c0:c9:0b:53:f3:04:e2:06:b3:b8:d6:97:0f:bb:48:61:1b:2d:
96:e3:4e:4a:13:69:99:57:0f:ec:27:b9:d6:2a:ec:2d:71:1f:
95:7e:07:73:08:cc:9d:e1:f2:ee:ce:a4:54:a0:29:e5:89:1f:
50:c2:ab:b5:50:c5:56:06:3d:b0:de:47:11:99:d7:b3:f7:cf:
8d:cc:db:3f:b5:39:65:20:2b:91:a4:1e:4c:2b:8f:8f:cc:08:
9f:78:bb:e7:fb:a5:ad:b8:35:61:d1:f6:ea:60:9b:c4:83:f1:
8e:fe:42:6a:8f:37:d3:4f:e5:0f:c7:ce:81:71:6f:81:6b:56:
33:a5:25:4d:9d:8c:6a:12:0f:82:53:4b:f9:6f:44:1f:b0:24:
53:68:52:7e:8f:5c:ae:79:09:3e:ca:10:1f:2e:5b:e9:fc:35:
5e:0a:97:3b:c6:59:19:6e:40:22:c5:c1:73:ce:7d:9a:04:1e:
02:f3:66:0b:2c:3f:10:0b:09:e7:9c:15:4d:67:59:83:2d:17:
8f:87:c1:fd:76:1d:89:18:40:cf:62:68:15:09:0f:c6:d0:f7:
dd:a0:7b:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org