Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/hFrtd_zTiBYrKRIjFPUQofwul5U.roa
File: hFrtd_zTiBYrKRIjFPUQofwul5U.roa (raw, json)
Hash identifier: zoXbKciXRoB+/U3xjX888kfZs6ly0hEnOJcnOuwmMJA=
Subject key identifier: 84:5A:ED:77:FC:D3:88:16:2B:29:12:23:14:F5:10:A1:FC:2E:97:95
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 097D
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/hFrtd_zTiBYrKRIjFPUQofwul5U.roa
Signing time: Sun 07 Feb 2021 13:05:42 +0000
ROA not before: Sun 07 Feb 2021 13:05:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 121.50.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2429 (0x97d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 13:05:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=845AED77FCD388162B29122314F510A1FC2E9795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4b:97:5f:ed:68:c6:60:3c:c6:70:24:a5:03:
02:31:97:c4:01:74:57:2d:22:1e:06:e6:44:6c:da:
31:bd:19:b9:e5:15:4e:86:28:00:eb:68:03:04:c1:
a6:5f:07:88:f5:92:05:e1:d5:9b:11:eb:1b:fa:ac:
d3:8c:90:7f:ae:b4:81:92:fd:63:b6:ab:3b:c3:ee:
ff:cc:12:72:69:86:f7:5c:fc:0f:72:6a:de:ff:fe:
7d:c4:b0:ba:63:02:f0:ee:fb:35:bf:c2:60:c2:38:
03:60:a2:c8:d6:fb:7a:ac:79:cd:68:24:8f:be:b5:
e0:95:8a:29:ef:8b:67:f2:55:26:48:e2:2d:c1:f6:
5e:0a:51:b2:c7:8d:32:df:43:34:b6:96:9f:b6:25:
34:a9:45:d4:53:c9:37:e6:4d:10:47:46:6b:15:0a:
c6:b4:a9:f3:87:fd:93:72:b7:f1:02:8d:55:37:14:
14:fb:b3:57:a5:43:2c:4b:3e:ca:06:1f:93:f6:0a:
22:e1:b0:bb:99:7d:48:36:ec:9b:25:e4:83:3a:f5:
c3:1a:07:3c:0a:c6:6b:dc:8d:e4:91:6e:1a:50:38:
85:30:5c:93:91:d4:0e:17:bc:ed:20:b3:60:5e:54:
62:89:40:f7:30:6c:b7:c0:21:e1:06:c1:a1:0b:14:
aa:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:5A:ED:77:FC:D3:88:16:2B:29:12:23:14:F5:10:A1:FC:2E:97:95
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/hFrtd_zTiBYrKRIjFPUQofwul5U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.151.0/24
Signature Algorithm: sha256WithRSAEncryption
38:44:cf:f8:8d:89:c0:17:f8:f9:62:8d:54:a4:0e:75:9b:f8:
dc:2f:60:96:57:f7:38:9b:07:cd:1d:64:f2:d5:9a:0a:5d:b1:
f6:9c:c3:d4:12:73:69:c6:d4:3f:72:12:86:7b:1b:a4:39:2e:
f9:c3:35:12:7f:03:3a:ad:61:32:29:22:ad:e4:f7:cf:6f:5b:
97:3b:f7:82:7a:88:76:9f:4b:da:60:49:e3:df:80:18:ef:d6:
2a:a7:70:2d:b4:02:9b:aa:95:ee:14:f5:0e:38:cf:95:37:56:
22:7c:8a:9a:69:c8:f2:13:ae:12:39:a4:f8:8b:c7:3c:97:9e:
a7:32:dc:ab:de:30:45:b9:76:9b:5f:91:9e:e6:a2:ed:d1:c4:
5b:3f:c4:b5:46:85:51:46:6d:ea:b5:34:d7:89:6f:79:1e:6d:
33:03:ce:4f:a6:2b:f5:2f:f5:09:e5:83:cb:61:36:85:92:ae:
d8:0b:28:b7:74:0c:d6:6c:3f:c4:a0:bc:24:ef:5c:97:de:f4:
54:83:2f:85:80:0d:ac:da:43:1d:a6:c4:cb:18:81:f6:6a:80:
55:5b:73:c1:56:4b:4e:6a:22:0c:30:ab:d2:17:12:72:a5:60:
46:ba:c3:5d:c6:a4:32:88:26:05:d3:bd:dd:73:76:a2:f3:9c:
24:b3:db:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org