Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/YjavFS5XAVblVV3OHBvtp1dIAmg.roa
File: YjavFS5XAVblVV3OHBvtp1dIAmg.roa (raw, json)
Hash identifier: TSxspNNny0Ydbu2F11ri0TsM/E+meAnyp75FCXInZ68=
Subject key identifier: 62:36:AF:15:2E:57:01:56:E5:55:5D:CE:1C:1B:ED:A7:57:48:02:68
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0947
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/YjavFS5XAVblVV3OHBvtp1dIAmg.roa
Signing time: Sun 07 Feb 2021 11:53:11 +0000
ROA not before: Sun 07 Feb 2021 11:53:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 121.50.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2375 (0x947)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 11:53:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6236AF152E570156E5555DCE1C1BEDA757480268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:88:87:6a:5e:36:93:57:d2:62:76:31:43:9d:
2a:8a:28:6f:96:aa:f0:eb:3f:06:5e:07:9a:10:6b:
de:89:5b:8d:ec:87:42:f4:d1:8c:c4:f3:d9:28:c2:
c8:23:46:85:0d:ef:a1:e9:af:05:c9:a9:2b:a0:2a:
a7:7a:37:31:8c:be:d1:95:20:1f:3a:2a:0d:47:d6:
76:4d:44:2a:c3:f0:47:d9:f1:36:a5:21:3f:38:1f:
ec:5a:d9:4f:eb:84:cd:55:2e:0e:3c:66:35:d0:be:
c7:4f:b3:dc:22:87:13:71:98:b4:cc:a6:70:7d:f0:
08:42:19:af:2d:64:d5:ee:a7:5f:57:63:d5:71:41:
6e:ac:20:ba:e3:69:1a:16:09:45:c7:20:bf:a1:44:
09:23:39:fd:a6:a3:66:9e:82:e1:b8:b3:01:c7:16:
9d:5d:b6:7d:33:a6:2c:2a:67:60:00:23:ef:b5:3d:
0f:c7:ba:a4:b9:b5:72:f1:07:5e:46:ca:d9:be:9c:
4d:e6:cc:39:60:0f:57:be:33:99:03:84:e9:69:04:
55:72:ea:2b:36:8c:f1:25:2a:87:25:43:d7:57:46:
de:1c:d9:dd:64:6d:88:76:b3:63:a8:9a:f3:51:f7:
a5:28:c1:55:46:9c:00:86:5d:5c:ed:46:db:37:4d:
e4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:36:AF:15:2E:57:01:56:E5:55:5D:CE:1C:1B:ED:A7:57:48:02:68
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/YjavFS5XAVblVV3OHBvtp1dIAmg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.149.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:e5:58:8c:88:2e:e6:fb:eb:02:8a:5e:18:aa:cb:82:ee:5e:
04:f7:98:b4:08:52:7a:b4:18:ae:64:82:47:55:d1:83:04:79:
9c:bf:26:23:b7:23:5b:0e:e9:3c:7b:73:4b:c2:f6:c0:5a:48:
86:fb:59:bb:29:d9:87:ae:b9:3a:6e:b7:0d:48:92:8f:9a:e2:
ef:f0:b3:26:d3:b5:c4:61:ef:31:20:0d:dd:31:20:ac:4e:55:
f4:f4:2c:51:d9:7b:5e:44:a3:5e:f9:3a:b9:85:55:36:b2:72:
f8:84:41:01:a1:58:7f:3a:39:0f:cb:c9:d6:42:ab:12:e4:92:
40:08:76:d2:e4:b3:f2:26:23:55:59:44:dd:5e:fe:45:72:cd:
01:9c:83:42:cd:05:04:44:ff:10:33:e9:14:77:c5:04:7c:6c:
ec:89:79:a3:f9:a7:9c:5c:41:6b:dd:2f:7f:42:16:c6:4c:9f:
a7:d0:8c:a5:d8:e6:b7:67:5f:3f:5d:4a:0f:df:c8:72:2c:93:
50:e8:eb:46:95:94:4e:55:a8:a1:be:25:52:7f:02:34:7b:90:
44:e6:97:2b:eb:95:ba:ce:02:f8:19:d1:0b:c7:0a:bf:09:79:
3b:36:8d:0d:4b:eb:cc:9f:83:fb:de:ef:fd:68:0d:b9:5a:ca:
d0:c0:ae:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org