Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/m9XSetBwvvqlwLuo9pJnFDXY3DM.roa
File: m9XSetBwvvqlwLuo9pJnFDXY3DM.roa (raw, json)
Hash identifier: x3hZB4ujpb+P6BZqAe3Tylr/4HZ0alpE356ZYnWH2jA=
Subject key identifier: 9B:D5:D2:7A:D0:70:BE:FA:A5:C0:BB:A8:F6:92:67:14:35:D8:DC:33
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0797
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/m9XSetBwvvqlwLuo9pJnFDXY3DM.roa
Signing time: Tue 29 Sep 2020 10:00:36 +0000
ROA not before: Tue 29 Sep 2020 10:00:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 121.50.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1943 (0x797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Sep 29 10:00:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9BD5D27AD070BEFAA5C0BBA8F692671435D8DC33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2c:64:c1:0b:99:aa:18:f5:90:29:30:06:e8:
71:f6:2d:4b:e7:41:70:af:32:e8:0d:9e:8d:e1:76:
7c:dc:a1:89:0d:be:26:ea:15:86:af:cf:e7:00:c2:
bf:5b:ae:7b:1d:61:36:f5:5f:29:43:9c:c0:a7:44:
01:8f:55:ed:60:41:3f:56:32:7a:52:03:42:3b:ff:
b4:a5:26:24:81:87:ed:e9:32:c6:97:67:87:89:46:
6f:60:db:0f:45:62:d2:ce:8d:29:01:de:aa:2d:55:
d0:b0:3c:8f:81:6c:98:1b:df:89:cd:67:de:05:fd:
e9:a3:f0:3b:29:35:a5:b4:92:d8:3d:5d:45:91:dd:
9b:1b:d3:0c:cf:2a:d8:a2:5f:4a:24:32:5a:db:08:
8f:f3:26:06:1e:f2:31:48:60:73:f7:45:b3:72:fa:
ce:a4:c7:da:0c:6c:74:3b:e4:25:d0:91:c8:a2:0f:
18:e9:f7:b7:65:fe:82:b8:3f:57:50:54:3d:d4:84:
1f:ff:f6:38:7e:1f:eb:7d:50:e1:70:4f:b2:d2:12:
78:ad:5c:1a:7c:aa:4b:11:3d:45:06:ec:52:eb:4d:
2e:32:6b:ca:1e:18:45:86:92:55:6e:69:7b:4b:87:
1d:0a:84:f8:1a:1e:ef:1b:55:fe:b9:c7:2b:f1:bb:
a2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:D5:D2:7A:D0:70:BE:FA:A5:C0:BB:A8:F6:92:67:14:35:D8:DC:33
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/m9XSetBwvvqlwLuo9pJnFDXY3DM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.144.0/24
Signature Algorithm: sha256WithRSAEncryption
51:ed:0f:98:60:f1:e0:43:17:ef:81:71:79:ae:35:4c:4c:a0:
4b:36:41:0b:77:84:bf:28:f9:36:31:f0:c2:d1:69:df:25:93:
1e:f3:50:ea:f9:50:0b:86:72:51:d9:ce:ac:50:31:87:73:f3:
2a:89:a3:63:40:d2:54:59:d8:7b:8e:c8:d0:c6:6a:37:fa:f7:
da:9b:11:ca:87:c6:8d:b8:a6:36:98:74:8d:55:b9:2a:e5:5a:
a5:dd:6e:60:d2:14:56:51:40:22:4e:05:ff:37:e0:c3:79:2a:
aa:c2:62:bc:32:9e:e4:9f:50:6f:4f:36:05:e8:f0:54:fa:03:
9a:fd:6b:cd:5c:ab:82:38:c7:51:48:1a:7e:40:d5:fe:bc:84:
22:e8:b6:da:ff:e3:9e:75:c7:d7:df:41:67:bf:1c:b1:6e:dd:
cb:8c:3a:26:96:4f:3b:08:bc:7d:08:32:53:ed:97:90:bc:7a:
f2:9b:c1:7c:92:97:90:fc:5c:0f:05:60:18:56:26:08:44:10:
09:93:c5:63:9c:8b:ca:fa:5e:22:9c:79:d1:00:ae:d2:02:ba:
7d:68:e1:42:ce:34:27:57:cb:89:88:68:f1:ad:c7:fe:24:00:
c6:cd:fa:d5:d9:6a:14:08:f6:2f:8d:83:e4:6b:16:a1:47:17:
b5:c4:5c:6f
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICB5cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3
RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMDA5Mjkx
MDAwMzZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDlCRDVEMjdBRDA3MEJF
RkFBNUMwQkJBOEY2OTI2NzE0MzVEOERDMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCdLGTBC5mqGPWQKTAG6HH2LUvnQXCvMugNno3hdnzcoYkNvibq
FYavz+cAwr9brnsdYTb1XylDnMCnRAGPVe1gQT9WMnpSA0I7/7SlJiSBh+3pMsaX
Z4eJRm9g2w9FYtLOjSkB3qotVdCwPI+BbJgb34nNZ94F/emj8DspNaW0ktg9XUWR
3Zsb0wzPKtiiX0okMlrbCI/zJgYe8jFIYHP3RbNy+s6kx9oMbHQ75CXQkciiDxjp
97dl/oK4P1dQVD3UhB//9jh+H+t9UOFwT7LSEnitXBp8qksRPUUG7FLrTS4ya8oe
GEWGklVuaXtLhx0KhPgaHu8bVf65xyvxu6I1AgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUm9XSetBwvvqlwLuo9pJnFDXY3DMwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN
caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ
V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL205WFNldEJ3dnZx
bHdMdW85cEpuRkRYWTNETS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAB5MpAwDQYJKoZIhvcNAQELBQADggEBAFHtD5hg8eBDF++BcXmuNUxMoEs2
QQt3hL8o+TYx8MLRad8lkx7zUOr5UAuGclHZzqxQMYdz8yqJo2NA0lRZ2HuOyNDG
ajf699qbEcqHxo24pjaYdI1VuSrlWqXdbmDSFFZRQCJOBf834MN5KqrCYrwynuSf
UG9PNgXo8FT6A5r9a81cq4I4x1FIGn5A1f68hCLottr/4551x9ffQWe/HLFu3cuM
OiaWTzsIvH0IMlPtl5C8evKbwXySl5D8XA8FYBhWJghEEAmTxWOci8r6XiKcedEA
rtICun1o4ULONCdXy4mIaPGtx/4kAMbN+tXZahQI9i+Ng+RrFqFHF7XEXG8=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org