Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/p_mZuuoNvijpKF1GBi12zE9z8Qs.roa
File: p_mZuuoNvijpKF1GBi12zE9z8Qs.roa (raw, json)
Hash identifier: 1tyFZDv2B37kHmOZD04m4RTRPwcDVH9O0f2JTq5WjAU=
Subject key identifier: A7:F9:99:BA:EA:0D:BE:28:E9:28:5D:46:06:2D:76:CC:4F:73:F1:0B
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0864
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/p_mZuuoNvijpKF1GBi12zE9z8Qs.roa
Signing time: Wed 04 Nov 2020 08:39:12 +0000
ROA not before: Wed 04 Nov 2020 08:39:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 121.50.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2148 (0x864)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Nov 4 08:39:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A7F999BAEA0DBE28E9285D46062D76CC4F73F10B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7b:6d:66:98:f1:ca:1b:21:12:74:11:ba:6d:
93:52:9a:68:c6:86:0e:7b:7a:6c:ff:55:04:fe:4a:
0f:cf:69:44:df:7c:a9:51:4d:bf:d6:d3:23:9a:80:
82:35:b0:66:7e:de:c5:b0:fc:3c:1b:e4:2d:13:07:
03:cd:df:fd:e7:ea:de:48:66:2b:de:d6:f4:c0:c9:
19:a3:fb:18:59:d1:5c:af:88:15:f8:44:b6:9d:3d:
8d:cd:4b:f1:82:f0:da:50:a6:64:c2:81:9a:c6:4a:
6b:04:ec:1c:68:5c:3c:ac:77:b7:71:46:68:e5:e6:
30:8e:7b:2a:46:8d:25:c1:86:aa:4a:11:72:87:4d:
b5:b6:85:00:d4:73:2a:93:2b:25:17:a8:79:8a:21:
c9:a0:a3:9b:e6:37:82:3d:4d:e5:d9:54:8c:f3:4d:
68:8e:01:06:2f:12:37:6c:1f:52:1c:7d:40:c0:bd:
e0:8a:f6:fd:c5:35:02:9c:87:2f:8f:e1:9b:d0:13:
66:60:d1:40:87:06:bb:3d:50:de:73:16:58:d3:2e:
37:e1:de:ed:1c:82:82:25:8d:71:89:65:ea:bf:8e:
8f:31:63:4d:1b:b2:d7:57:26:57:7f:ea:6b:21:de:
ec:95:ec:51:97:31:4d:5e:49:ee:a0:be:9d:a9:a2:
0c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F9:99:BA:EA:0D:BE:28:E9:28:5D:46:06:2D:76:CC:4F:73:F1:0B
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/p_mZuuoNvijpKF1GBi12zE9z8Qs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.146.0/24
Signature Algorithm: sha256WithRSAEncryption
88:8b:4d:94:bc:67:ff:ca:19:a0:db:44:58:0d:a2:1e:bf:d4:
c6:77:70:ea:42:94:63:6d:ae:52:aa:8a:0d:30:c6:f7:1a:51:
4c:bf:47:53:4c:f3:30:e2:7e:43:95:67:76:29:13:7c:c8:c4:
6f:3a:fe:99:54:11:3c:85:5e:4b:d0:43:f7:d3:38:91:53:ba:
0f:0b:9c:c8:80:c6:25:d4:59:36:02:1c:1e:fa:54:51:57:8c:
a6:0f:59:2f:ea:83:da:ce:d4:77:8b:95:de:47:24:c7:11:b6:
12:35:f3:f7:bf:2e:dd:3d:94:ff:bc:6d:df:f6:63:d9:e8:9b:
38:67:1d:09:dd:4a:4a:ec:0a:d0:c1:54:4c:1d:5b:ed:8a:fc:
90:a8:d1:c3:f4:f0:9c:21:a7:e2:d1:4b:d8:53:2a:c4:f5:34:
45:94:19:a8:13:27:3e:e0:5b:4c:23:6b:b0:40:65:e8:58:22:
d1:44:f2:bb:ad:97:4b:e9:c0:bd:5a:d2:ea:3c:ff:9d:9a:65:
da:9f:d6:8a:10:20:b9:fd:88:8a:1e:69:15:57:b3:55:8e:74:
cb:8f:fd:21:67:55:e6:5c:03:fc:b4:df:ed:44:24:b0:9c:56:
52:5a:18:ac:ad:80:e7:29:06:55:69:64:2b:11:56:e2:53:26:
e9:3a:55:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:43 2023 by rpki-client on console-ams.rpki-client.org