Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/VR0foaw6yvmBjGseYD4j7ukNWDg.roa
File: VR0foaw6yvmBjGseYD4j7ukNWDg.roa (raw, json)
Hash identifier: 5kgjYSFsHT09HDgu7AEvLXZASv5zCU6IqFwnkOhmx3c=
Subject key identifier: 55:1D:1F:A1:AC:3A:CA:F9:81:8C:6B:1E:60:3E:23:EE:E9:0D:58:38
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0965
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/VR0foaw6yvmBjGseYD4j7ukNWDg.roa
Signing time: Sun 07 Feb 2021 13:05:20 +0000
ROA not before: Sun 07 Feb 2021 13:05:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 121.50.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2405 (0x965)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 13:05:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=551D1FA1AC3ACAF9818C6B1E603E23EEE90D5838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9d:c3:a1:9a:2a:34:6c:0f:92:1e:3d:87:fd:
af:b5:8e:9c:ec:e3:3e:da:b4:2b:6a:23:09:e3:fa:
03:3c:b5:91:23:ff:37:02:ef:26:03:7e:1f:3e:aa:
d6:9f:93:99:65:21:a6:b6:0b:2f:6e:8f:bd:d5:72:
65:c8:b4:a8:76:2b:be:ae:1e:e4:c0:38:0d:e6:cc:
0c:e1:4f:76:99:67:fd:fc:7f:22:80:67:7d:94:76:
72:3d:fe:6f:e4:db:e7:e7:68:72:69:1f:de:cc:5d:
8b:b3:9b:ce:bd:4a:9d:a7:69:72:65:bc:28:5a:e4:
73:5b:f2:18:5a:3d:93:fe:d1:b7:9a:23:40:67:57:
b0:ba:b1:71:d4:37:5e:b4:a8:da:68:d8:c6:cb:35:
db:e6:e2:99:75:f5:a3:59:bc:bd:d6:fe:a6:32:29:
a9:64:6f:6c:68:05:75:b8:41:23:06:cf:87:02:1e:
20:fe:a5:e1:d1:95:79:36:d8:a2:08:28:4c:0f:ce:
14:e6:97:a5:ac:74:a6:11:9b:a6:6c:07:f7:53:a5:
8d:e5:68:93:48:2a:41:76:43:7c:ff:e5:93:aa:7e:
4f:fb:a7:2e:ba:fb:b9:94:5e:b6:4a:d4:69:d1:f6:
82:44:f1:ef:19:16:49:c5:a4:22:4c:84:af:ec:d6:
90:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:1D:1F:A1:AC:3A:CA:F9:81:8C:6B:1E:60:3E:23:EE:E9:0D:58:38
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/VR0foaw6yvmBjGseYD4j7ukNWDg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.144.0/22
Signature Algorithm: sha256WithRSAEncryption
28:65:cb:1b:2e:58:bf:a2:58:20:af:7f:30:f6:82:f7:de:71:
35:2b:4f:de:90:df:fe:b1:6a:aa:3b:a1:c0:61:df:e6:f5:a4:
86:bb:bd:f3:47:c1:7a:80:d4:9c:b4:f9:16:b7:86:49:1c:62:
cc:5d:f3:40:58:87:b2:4a:40:ff:33:be:45:7e:12:84:d8:d5:
04:61:98:40:aa:d9:11:b8:8d:63:e1:f7:49:3f:59:65:bb:8f:
ea:f6:ba:0c:75:64:86:49:1d:2e:16:62:9f:9e:82:a6:12:9e:
1e:9d:30:c9:d0:21:a9:bb:47:80:1d:c0:46:c9:15:dc:e5:6c:
7f:10:60:e8:e1:28:55:08:da:98:db:59:25:d1:c2:40:81:1e:
3e:ef:fe:76:3c:9b:32:5d:a6:66:1a:b0:ad:4d:d6:86:d9:15:
91:71:77:65:1f:ff:78:b9:55:31:95:74:60:1c:4f:d1:f2:4a:
5b:be:b2:a0:d3:8d:fe:d5:fe:e0:a9:98:f2:4a:4e:e7:11:2a:
4d:d9:cf:3f:a5:ca:10:fa:2b:63:f9:f6:7f:db:42:f0:f7:ab:
39:80:c1:bf:6f:96:54:6d:17:b7:5c:7d:59:08:f8:c8:1f:97:
a6:63:c1:98:40:39:d9:c6:13:85:57:01:10:38:85:f8:b9:ce:
f0:f4:87:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org