Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/lCeCyPdczd9ZUg2owunNfJkdF50.roa
File: lCeCyPdczd9ZUg2owunNfJkdF50.roa (raw, json)
Hash identifier: 3BKSewn0pqeuSYWwvDNrJkVMDcGjHzGazaScaLXVD+M=
Subject key identifier: 94:27:82:C8:F7:5C:CD:DF:59:52:0D:A8:C2:E9:CD:7C:99:1D:17:9D
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0943
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/lCeCyPdczd9ZUg2owunNfJkdF50.roa
Signing time: Sun 07 Feb 2021 11:53:08 +0000
ROA not before: Sun 07 Feb 2021 11:53:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 121.50.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2371 (0x943)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 11:53:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=942782C8F75CCDDF59520DA8C2E9CD7C991D179D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:d7:7d:f3:9b:71:27:b8:f6:bc:14:48:13:02:
a7:2e:d2:fc:77:51:05:64:6d:ce:26:4d:0b:4f:24:
37:92:b0:76:59:4a:0f:ae:30:18:e1:9f:81:e8:3b:
a7:7d:3b:59:09:00:d0:47:4a:a4:de:22:98:b5:ec:
b4:f7:e5:cd:72:77:ac:b1:24:66:79:0f:fe:dc:49:
74:19:1c:17:eb:84:6e:e4:85:c7:ac:79:6f:34:22:
25:34:7e:af:1c:77:d2:99:35:d3:18:02:51:16:5a:
8d:62:1f:62:5d:c9:4d:62:1a:6b:60:89:3e:48:a4:
06:70:17:9d:08:7c:ce:c6:be:e9:de:26:88:29:5b:
ff:10:af:2d:87:9d:43:b8:eb:03:74:8a:4a:7d:ef:
a3:5f:cf:90:84:9b:41:21:b5:c8:25:29:9a:13:79:
3d:cb:ca:4d:26:7b:7f:45:fd:ae:23:03:f7:dd:ff:
2f:5a:8a:0e:2f:0e:45:76:e9:d8:af:b9:a2:df:71:
56:b2:db:f1:cb:d2:dc:d1:74:23:33:88:45:75:c8:
7a:6b:a2:cb:7c:99:0e:d4:fb:38:ad:aa:38:db:36:
7d:de:11:dd:bc:23:bf:b5:d5:3e:d8:99:b3:3f:f8:
81:76:be:6e:74:cc:bd:36:29:24:5e:99:9a:86:71:
3a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:27:82:C8:F7:5C:CD:DF:59:52:0D:A8:C2:E9:CD:7C:99:1D:17:9D
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/lCeCyPdczd9ZUg2owunNfJkdF50.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.147.0/24
Signature Algorithm: sha256WithRSAEncryption
36:bf:ea:4b:c6:04:e6:0d:6f:08:8b:28:36:08:04:cd:bc:7e:
76:2a:4c:46:c6:bf:97:ac:f4:11:09:ee:c3:ba:da:27:ce:87:
4d:0c:3d:6e:87:9e:3b:f4:4c:d4:05:73:10:64:9e:9d:c6:39:
b9:90:86:b3:60:d3:0c:65:72:ab:53:1e:5f:cb:eb:aa:c9:f9:
90:6b:4d:34:d3:71:88:6b:78:ce:c8:e4:ae:0d:7c:1f:57:45:
7b:c0:f0:65:3b:76:76:9e:5e:4c:e9:45:2d:0f:08:31:d1:34:
36:43:07:fa:3e:b6:c2:bc:b3:f0:4d:c5:9e:c6:1c:b7:08:d8:
32:4d:4a:16:13:2b:89:91:fb:30:94:dc:0e:2e:87:1e:ec:54:
3c:11:07:c9:86:10:b8:a5:ad:45:a6:44:b8:70:9e:dc:a7:8a:
9b:d0:95:e6:88:42:89:b9:97:51:00:af:80:2f:f4:fe:0f:2b:
a0:22:37:98:3b:a0:b4:2e:a1:3a:87:d0:8d:e3:43:d5:7d:98:
df:b2:e2:8f:ec:99:e9:39:27:e4:3f:59:54:78:fb:b7:b6:f0:
8f:82:fb:3d:d5:5b:f4:15:83:e6:d2:dd:92:be:19:0e:6a:c6:
68:9f:06:46:2c:f6:30:2b:f7:74:99:93:c4:b1:7f:08:a4:a2:
9e:28:02:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:43 2023 by rpki-client on console-ams.rpki-client.org