Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/kM4qiFrvqk1MX07Dt1vQ-CAvJm0.roa
File: kM4qiFrvqk1MX07Dt1vQ-CAvJm0.roa (raw, json)
Hash identifier: TSBgJXBHeo4M6+LikXKcRCAMgtuJGf6uRRvPG8++HvQ=
Subject key identifier: 90:CE:2A:88:5A:EF:AA:4D:4C:5F:4E:C3:B7:5B:D0:F8:20:2F:26:6D
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 096F
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/kM4qiFrvqk1MX07Dt1vQ-CAvJm0.roa
Signing time: Sun 07 Feb 2021 13:05:29 +0000
ROA not before: Sun 07 Feb 2021 13:05:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 121.50.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2415 (0x96f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 13:05:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=90CE2A885AEFAA4D4C5F4EC3B75BD0F8202F266D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3c:4b:26:8a:d9:1a:0b:d2:19:50:45:0a:d6:
8b:ab:a3:ae:9b:e3:6b:50:fd:2e:f8:af:ec:a0:fd:
35:37:0a:f8:9e:3e:a8:a8:b2:5f:d2:b1:75:fd:e6:
31:31:a6:e0:b9:bc:ba:91:95:36:f9:7c:46:28:b4:
02:2a:3f:6b:11:43:59:e9:62:27:a5:55:86:07:36:
54:36:67:6d:75:a2:02:75:26:74:68:11:ef:df:4a:
39:d4:57:78:af:7d:b0:c2:79:6c:b1:b5:82:56:6d:
83:61:18:29:9d:bb:23:98:8c:f2:01:a0:79:86:c6:
9c:ac:c7:82:85:2e:5f:fe:22:f2:53:2b:b4:6c:4b:
67:c7:dc:96:02:c2:ed:7b:7b:db:af:4c:47:57:45:
ed:e3:22:c7:0b:06:e7:ce:ad:78:25:e5:6b:2c:61:
13:67:97:85:c3:56:e0:36:1d:d0:a2:bd:e5:34:54:
f9:03:69:96:a0:d0:41:49:50:93:78:c9:1d:ab:96:
10:13:70:2c:ee:ad:38:a0:d6:ae:6c:6c:3d:21:94:
81:e3:77:ef:4b:0a:4f:d6:f5:09:d2:99:ed:48:04:
31:a5:16:da:06:5c:49:14:93:68:24:73:4e:20:e3:
5f:3c:54:78:dc:53:6f:92:61:b0:9d:3b:14:8a:1a:
e5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:CE:2A:88:5A:EF:AA:4D:4C:5F:4E:C3:B7:5B:D0:F8:20:2F:26:6D
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/kM4qiFrvqk1MX07Dt1vQ-CAvJm0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.148.0/24
Signature Algorithm: sha256WithRSAEncryption
29:87:18:a3:f5:60:53:ff:b7:11:8c:6a:21:4a:b1:18:a4:af:
66:19:1f:76:22:86:9a:77:47:1d:eb:73:68:2c:81:ce:29:af:
05:8a:f2:a6:80:dc:fb:8f:f1:ec:5a:76:d9:fb:18:ea:d1:e0:
0d:40:1a:f2:c8:f5:76:9e:02:1d:36:a6:02:bc:d6:4b:a4:79:
fe:84:dc:34:39:c3:f2:05:31:0c:fd:d2:4d:78:63:4e:c5:76:
74:ec:eb:e3:60:2f:8d:36:e2:0a:77:95:07:a9:cb:8c:43:d4:
2c:9c:7a:5b:b7:32:94:a5:79:b7:5b:fc:6c:c1:e7:4e:a6:ae:
89:48:85:ed:c9:78:b6:2b:60:c6:2a:55:0a:7a:95:fe:00:07:
71:0f:6b:c3:4e:a8:9a:e1:e1:bf:42:27:e4:b0:62:8f:9b:8d:
97:5b:28:ba:67:ce:ce:7c:3f:37:3e:bd:74:00:d1:cd:34:df:
f2:ff:90:b7:97:61:07:0a:28:6a:d7:69:cc:31:f0:82:1f:ff:
25:7c:01:a9:7e:31:1d:cf:2a:2e:50:90:04:31:a5:9c:73:4f:
bc:09:4c:58:68:1a:72:9c:87:03:5b:00:c9:1e:9f:aa:bc:73:
15:09:92:73:a3:b1:2a:70:9d:9b:10:1a:19:38:e9:dd:99:05:
ef:7f:b1:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org