Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/kfZHMCzi_M1M0Hwuj_Jxpxxx7iQ.roa
File: kfZHMCzi_M1M0Hwuj_Jxpxxx7iQ.roa (raw, json)
Hash identifier: ghu7+6hRWUpneXeJUlcvKl13LczLxcrsp8qkeA1FSmU=
Subject key identifier: 91:F6:47:30:2C:E2:FC:CD:4C:D0:7C:2E:8F:F2:71:A7:1C:71:EE:24
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0A3B
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/kfZHMCzi_M1M0Hwuj_Jxpxxx7iQ.roa
Signing time: Wed 29 Sep 2021 02:52:48 +0000
ROA not before: Wed 29 Sep 2021 02:52:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24168
IP address blocks: 121.50.144.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2619 (0xa3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Sep 29 02:52:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=91F647302CE2FCCD4CD07C2E8FF271A71C71EE24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:70:05:d0:5c:27:9b:9e:6a:2f:d0:cb:9e:69:
fc:b8:e4:8a:5a:0a:63:c5:f4:f8:4c:08:e6:98:21:
a3:2b:36:39:c9:6a:7d:c0:a5:a2:8e:c9:ae:77:fe:
43:af:11:cc:4c:be:1a:67:d4:34:43:f6:ef:6c:4d:
7b:3b:47:10:77:13:5c:a4:42:ca:aa:50:4d:d3:50:
c9:e4:b7:83:40:56:01:be:c7:03:4f:08:e9:cf:96:
ab:7e:60:fd:d0:32:22:a3:ea:cd:63:4b:68:57:32:
44:ec:9d:84:33:56:b9:55:ef:89:b6:05:6f:f4:43:
97:49:34:df:78:b2:8b:73:f6:9e:2f:74:33:61:f8:
97:df:6a:2c:27:44:a2:11:a8:34:96:ee:6f:af:9c:
ce:05:2f:31:5f:d1:19:92:33:08:f7:71:e2:b4:fb:
ce:6a:db:0c:2f:a3:83:e6:de:4c:29:bc:b3:cf:01:
8a:f3:ec:98:1e:ce:6c:7f:6e:22:71:ea:66:15:00:
65:65:36:ff:06:62:08:9e:9c:67:71:d1:a7:05:45:
c3:c9:28:f7:6a:f6:8e:7f:7c:07:f3:42:fa:f9:af:
8f:2d:f6:44:3b:dc:d1:89:d5:95:60:74:16:a5:7e:
7f:52:c8:57:f6:cc:df:eb:bd:22:99:c3:a3:89:33:
6a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:F6:47:30:2C:E2:FC:CD:4C:D0:7C:2E:8F:F2:71:A7:1C:71:EE:24
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/kfZHMCzi_M1M0Hwuj_Jxpxxx7iQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.144.0/21
Signature Algorithm: sha256WithRSAEncryption
9a:e8:a7:14:97:17:42:6c:59:3f:a6:66:88:48:3e:a0:6a:94:
d6:86:ef:90:13:7a:c9:56:e9:4a:e4:fd:46:bf:e3:89:11:67:
f9:88:af:37:cf:7f:3b:d6:ff:0e:3b:2c:b3:2b:a4:f3:22:56:
3e:ca:52:83:fc:77:9f:72:e2:15:ea:fe:0c:fa:5d:f6:e4:33:
a6:15:98:62:d9:e4:57:92:81:d8:e4:8d:35:8f:ae:b0:01:c6:
92:f6:9c:4d:5b:2d:03:93:01:0f:a0:21:44:1c:10:5b:ed:7b:
4b:a0:04:ac:db:f4:1e:aa:b4:28:0a:ec:43:cd:30:35:6d:49:
59:ca:f5:54:76:fa:d9:1f:0f:46:0e:d0:48:4d:e0:73:4d:44:
31:bc:8c:66:0d:6f:ed:e2:9f:3e:91:42:5b:35:e9:f9:ab:a3:
3e:62:5f:e3:b6:89:3f:2b:e3:30:1a:26:69:0d:39:07:68:93:
03:f7:db:50:14:26:f4:95:c0:e4:da:79:7f:29:e1:d1:5f:36:
47:e6:d3:ab:2f:e0:7a:02:6b:c6:c6:c3:ee:8d:db:88:03:85:
bb:0c:b1:74:3f:9d:d7:c8:41:05:42:a7:92:b5:a4:0a:66:02:
c9:47:86:a2:58:11:a5:4d:d6:2d:de:79:15:72:a8:23:0e:b4:
0f:24:66:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:43 2023 by rpki-client on console-ams.rpki-client.org