Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/ew5gcWXq2ejW7rSeKDT3M7pn_yI.roa
File: ew5gcWXq2ejW7rSeKDT3M7pn_yI.roa (raw, json)
Hash identifier: s62AahsBUzyT0J1oBDxjOZxzw54rHoVa6mZFkWTb0Ss=
Subject key identifier: 7B:0E:60:71:65:EA:D9:E8:D6:EE:B4:9E:28:34:F7:33:BA:67:FF:22
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0A43
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/ew5gcWXq2ejW7rSeKDT3M7pn_yI.roa
Signing time: Wed 29 Sep 2021 02:52:51 +0000
ROA not before: Wed 29 Sep 2021 02:52:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18424
IP address blocks: 121.50.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2627 (0xa43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Sep 29 02:52:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7B0E607165EAD9E8D6EEB49E2834F733BA67FF22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3e:8a:87:f7:5e:15:ec:b2:b1:b1:c1:07:68:
41:7c:7b:d0:56:0e:b6:6f:26:78:e3:00:00:2d:40:
08:1a:25:e5:91:bd:b9:65:93:5f:7f:f1:6a:a9:99:
d8:c7:09:ca:18:9b:20:db:25:06:d8:6a:04:1b:30:
c0:4e:2e:cc:30:93:17:69:c5:b8:c2:12:03:64:51:
4c:c8:a7:20:e8:2b:7b:0c:22:24:47:7a:d1:08:2a:
66:74:4b:5a:7b:f6:51:fd:b1:bb:af:9d:0a:8c:31:
b4:74:84:98:9a:b3:37:ea:dd:1d:92:86:c6:5a:2a:
49:dd:cd:8d:dd:13:67:9b:25:fa:2d:c8:8c:be:e1:
0d:9b:44:84:98:30:c8:a5:9b:76:58:db:3f:e2:67:
ae:cb:f4:9f:d5:1e:05:7b:b3:d8:b6:c3:ee:e6:b2:
a0:5c:bd:c2:d1:ae:3d:cb:6b:cd:fc:ec:3c:bb:33:
90:ee:d1:08:3e:57:7b:77:bb:66:b9:63:54:17:1a:
ca:53:20:8b:c5:c1:d8:d8:e9:5c:57:53:09:7a:f6:
a3:ce:6b:15:8f:92:84:45:49:8f:98:6f:0b:04:11:
ce:4c:d3:85:9a:ae:fd:a7:d0:88:09:fb:c3:25:2f:
b3:8b:5f:cd:3a:bc:aa:c0:10:21:ad:d6:87:3f:7f:
13:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:0E:60:71:65:EA:D9:E8:D6:EE:B4:9E:28:34:F7:33:BA:67:FF:22
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/ew5gcWXq2ejW7rSeKDT3M7pn_yI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.145.0/24
Signature Algorithm: sha256WithRSAEncryption
50:36:7a:75:f8:ee:94:68:b9:7f:b0:52:dd:a1:dc:21:f1:2e:
9a:c9:f8:4e:c7:55:de:45:e1:d0:26:a4:a4:2b:8f:d3:c0:b8:
cb:d7:6a:32:7c:75:17:5b:7d:4d:6d:2b:00:69:b4:b5:fd:00:
c5:b4:71:fa:e2:73:a6:04:cb:4c:50:4d:c2:b8:1c:70:5f:de:
f5:50:4c:6f:e2:7f:89:54:33:38:20:8b:61:4d:e6:b2:e2:17:
46:5c:67:1e:3f:03:ad:68:33:26:99:31:f2:f2:70:bc:1c:69:
73:11:a8:ec:32:80:5f:9a:45:ca:4e:e1:73:0d:43:89:b0:20:
bb:8d:82:30:f5:98:3e:4d:05:f9:1d:09:65:d7:da:ef:61:a2:
33:c6:c4:63:8c:44:d8:c0:90:8c:94:59:ac:e2:e5:49:44:a5:
f1:5b:1c:05:50:66:6a:b8:22:40:97:c4:b1:7f:6a:95:e7:85:
ce:db:de:8c:bd:c8:ff:e0:39:e4:cf:60:4f:eb:a0:ad:34:8c:
bf:84:28:c9:74:4d:25:40:31:cd:19:2a:5e:02:4f:e8:81:2b:
8a:80:bf:6f:01:d6:87:58:39:3b:b2:0d:97:c3:ef:66:3f:d8:
79:bd:39:fc:f7:12:73:28:58:8a:a4:45:80:83:54:b2:ef:96:
84:e2:3e:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org