Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/TzGP2kk3gD_2R6lPEeShiBn-iDw.roa
File: TzGP2kk3gD_2R6lPEeShiBn-iDw.roa (raw, json)
Hash identifier: 58+1xvPf970RzEcx+xFgGJ8gnoQlndmFMtRogS5DYr4=
Subject key identifier: 4F:31:8F:DA:49:37:80:3F:F6:47:A9:4F:11:E4:A1:88:19:FE:88:3C
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0975
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/TzGP2kk3gD_2R6lPEeShiBn-iDw.roa
Signing time: Sun 07 Feb 2021 13:05:35 +0000
ROA not before: Sun 07 Feb 2021 13:05:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 121.50.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2421 (0x975)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 13:05:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4F318FDA4937803FF647A94F11E4A18819FE883C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:07:e1:d9:71:ef:ec:a4:4b:6a:be:13:6f:0c:
f4:af:75:00:91:a1:b8:9a:0c:bf:68:ad:cf:3f:0f:
7e:76:86:27:af:54:95:24:4e:6b:d7:54:27:62:79:
81:e7:28:d9:98:0a:17:c4:58:5d:e0:63:4a:eb:9c:
14:b9:5a:a8:3f:27:ed:72:68:d1:37:bd:f5:5e:12:
cb:c9:c3:72:df:21:47:4a:16:80:f0:39:e2:2f:a8:
30:2c:3d:c9:e1:86:54:5c:92:1d:63:98:87:76:7b:
23:09:e1:aa:93:d7:9e:d6:bc:69:c5:da:ea:8b:15:
96:4f:97:01:44:39:8b:cf:b5:bb:53:00:e1:4d:02:
88:0c:df:cb:d8:52:50:97:11:67:b7:f1:b3:d6:b1:
fe:10:3e:d6:32:b4:56:7f:6a:48:a3:73:90:03:46:
1a:b7:d1:19:60:9c:2d:5b:3d:8d:c3:69:23:18:c2:
38:13:da:58:92:51:2e:8e:8e:11:f8:fb:b1:34:75:
f3:8f:59:33:62:d4:bf:4f:0e:8e:9a:3e:a5:35:76:
bc:16:14:3f:22:78:86:78:4d:7a:39:46:36:92:12:
92:ba:8a:9c:a0:f8:63:10:aa:1c:77:6a:47:74:ad:
2d:29:22:07:84:31:74:27:63:b2:52:5d:f5:b3:ab:
15:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:31:8F:DA:49:37:80:3F:F6:47:A9:4F:11:E4:A1:88:19:FE:88:3C
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/TzGP2kk3gD_2R6lPEeShiBn-iDw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.144.0/21
Signature Algorithm: sha256WithRSAEncryption
a2:ac:34:91:14:f7:18:b0:80:6b:2d:c7:70:5b:e7:a4:61:3b:
43:22:8c:45:f1:06:fc:bb:52:fb:5a:90:34:01:90:0b:e9:a7:
d2:1f:4c:fe:c6:d7:ad:de:c1:68:51:26:f5:54:39:6d:55:15:
52:e7:c6:69:37:0e:0a:c6:d2:3c:ff:36:a4:1f:3a:be:c9:2a:
ba:88:9a:f9:52:cc:95:71:36:16:14:4d:75:05:a7:38:c2:5f:
70:e1:38:e6:b8:bb:fe:22:59:30:5c:24:48:53:09:93:c2:e8:
6d:d9:18:48:38:10:9a:94:72:1a:62:52:c8:48:1d:b0:46:a5:
ad:48:ab:4f:e0:4e:e7:52:71:33:f7:91:b4:92:29:af:92:fd:
22:92:4c:81:b2:d7:89:05:b2:57:f2:e6:cf:d9:9a:fe:69:13:
85:11:3d:df:3e:ec:9f:50:10:60:da:05:19:af:9f:00:31:c9:
62:57:d9:8a:bf:70:92:7c:5a:40:df:12:21:cd:62:b3:94:8c:
75:f7:d3:0e:58:6a:2d:fd:a8:c6:5a:9b:88:95:53:f4:a9:f6:
81:2b:db:6b:de:61:fc:a4:77:57:1b:fd:11:f6:b2:22:5c:fd:
06:b5:d2:9e:71:41:57:59:13:7e:37:67:78:27:0d:b2:f4:6c:
44:65:ae:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org