Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/afBL3TR04yeobC1XohfSkXBIUfU.roa
File: afBL3TR04yeobC1XohfSkXBIUfU.roa (raw, json)
Hash identifier: 2Ipg25riHfOMmgDMkmd4BUQ5ds7NHJIN1K2nZG/UfQM=
Subject key identifier: 69:F0:4B:DD:34:74:E3:27:A8:6C:2D:57:A2:17:D2:91:70:48:51:F5
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0878
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/afBL3TR04yeobC1XohfSkXBIUfU.roa
Signing time: Wed 04 Nov 2020 08:50:30 +0000
ROA not before: Wed 04 Nov 2020 08:50:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 121.50.144.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2168 (0x878)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Nov 4 08:50:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=69F04BDD3474E327A86C2D57A217D291704851F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1f:6b:3a:8e:cf:59:3a:ed:fa:e4:8a:91:0b:
e7:ff:ad:70:dc:9a:0c:08:c4:7e:05:84:62:55:82:
91:b4:ef:9c:50:a5:29:ca:0d:d9:8b:b5:05:b7:c6:
ba:24:e0:09:b5:c2:5a:97:36:7b:c0:97:31:9c:a1:
e9:86:bb:09:12:0b:7c:2b:cc:c5:9e:87:15:ef:94:
91:24:a0:da:90:f9:83:6c:a6:75:cf:86:96:7d:30:
58:b3:f1:77:73:27:15:a6:7f:ad:87:ff:37:1c:4f:
58:e7:35:36:e3:0c:7a:70:8d:8b:ac:fd:54:a2:c1:
d0:73:52:10:6d:57:b9:e1:13:86:df:21:3e:38:9d:
02:0b:b6:c5:f9:bf:c8:69:9f:76:73:14:64:bc:96:
93:4f:52:fe:c2:87:42:3a:b1:a5:3e:c2:ab:24:d7:
df:bb:5d:4f:5d:9f:44:f8:97:d7:c8:70:1d:2f:78:
48:5e:b0:6d:6d:35:97:86:89:b1:43:24:5a:fe:ee:
4a:34:9c:44:02:d5:83:04:91:a0:ef:99:6d:9f:b2:
f5:ad:e7:8a:fa:24:c7:b8:8b:1f:54:c3:8f:d8:69:
85:68:0b:e6:d3:c8:55:25:a5:27:cc:fe:e5:7f:46:
bd:3a:d8:53:fb:f3:dc:d1:46:ab:d9:5b:e4:22:b2:
f0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F0:4B:DD:34:74:E3:27:A8:6C:2D:57:A2:17:D2:91:70:48:51:F5
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/afBL3TR04yeobC1XohfSkXBIUfU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.144.0/21
Signature Algorithm: sha256WithRSAEncryption
65:c9:74:5c:d9:d6:3b:06:e2:d3:ad:87:64:66:c1:53:bb:b6:
10:bc:d9:b4:2f:4e:26:1c:a2:5b:31:2f:42:6c:1f:b3:8b:91:
63:05:f0:c6:2a:19:ed:d2:a8:82:5c:b9:66:43:db:28:39:c1:
0a:7a:ad:fb:4d:9a:57:32:9d:31:e1:e9:a2:79:e3:1b:e9:0a:
fd:4f:51:b8:5b:59:e1:f8:e1:e9:31:d6:e7:1a:b9:a9:e6:cb:
32:8d:67:83:9c:81:79:0d:26:45:2f:0f:13:28:15:f6:b1:eb:
18:6e:b6:01:b8:6c:ce:7b:e3:8d:40:39:3b:00:b3:5c:d6:cb:
ca:6b:5e:c6:cc:e9:14:a9:1a:ef:38:0e:42:c5:17:cd:0f:b9:
a4:2f:4c:3f:2e:be:1a:5d:5a:ec:e3:d4:40:ff:21:35:38:60:
f3:01:9e:d4:c6:55:d6:02:59:a2:ce:89:af:6a:43:1e:3b:76:
6f:90:9c:ac:45:e7:a4:81:27:6a:50:17:59:2b:65:38:fa:bb:
0f:1a:c2:88:73:d1:71:9d:99:d7:89:59:a3:a5:99:da:a6:a3:
d5:52:76:c1:d0:7c:ab:33:29:05:7b:2a:de:5b:b7:cb:0d:58:
bb:76:82:45:01:44:a4:0b:00:4d:67:03:2f:79:e4:a9:a8:f5:
2b:d3:46:43
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3
RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMDExMDQw
ODUwMzBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDY5RjA0QkREMzQ3NEUz
MjdBODZDMkQ1N0EyMTdEMjkxNzA0ODUxRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6H2s6js9ZOu365IqRC+f/rXDcmgwIxH4FhGJVgpG075xQpSnK
DdmLtQW3xrok4Am1wlqXNnvAlzGcoemGuwkSC3wrzMWehxXvlJEkoNqQ+YNspnXP
hpZ9MFiz8XdzJxWmf62H/zccT1jnNTbjDHpwjYus/VSiwdBzUhBtV7nhE4bfIT44
nQILtsX5v8hpn3ZzFGS8lpNPUv7Ch0I6saU+wqsk19+7XU9dn0T4l9fIcB0veEhe
sG1tNZeGibFDJFr+7ko0nEQC1YMEkaDvmW2fsvWt54r6JMe4ix9Uw4/YaYVoC+bT
yFUlpSfM/uV/Rr062FP789zRRqvZW+QisvAVAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUafBL3TR04yeobC1XohfSkXBIUfUwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN
caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ
V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL2FmQkwzVFIwNHll
b2JDMVhvaGZTa1hCSVVmVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAN5MpAwDQYJKoZIhvcNAQELBQADggEBAGXJdFzZ1jsG4tOth2RmwVO7thC8
2bQvTiYcolsxL0JsH7OLkWMF8MYqGe3SqIJcuWZD2yg5wQp6rftNmlcynTHh6aJ5
4xvpCv1PUbhbWeH44ekx1ucauanmyzKNZ4OcgXkNJkUvDxMoFfax6xhutgG4bM57
441AOTsAs1zWy8prXsbM6RSpGu84DkLFF80PuaQvTD8uvhpdWuzj1ED/ITU4YPMB
ntTGVdYCWaLOia9qQx47dm+QnKxF56SBJ2pQF1krZTj6uw8awohz0XGdmdeJWaOl
mdqmo9VSdsHQfKszKQV7Kt5bt8sNWLt2gkUBRKQLAE1nAy955Kmo9SvTRkM=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org