Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/w8O5LlRxHMW_0iJ3j2_zYppXaiY.roa
File: w8O5LlRxHMW_0iJ3j2_zYppXaiY.roa (raw, json)
Hash identifier: 43KmGarYRj+sC7sCy0xRRdkLHnfnM0BQmPGRDsYkK7A=
Subject key identifier: C3:C3:B9:2E:54:71:1C:C5:BF:D2:22:77:8F:6F:F3:62:9A:57:6A:26
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0862
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/w8O5LlRxHMW_0iJ3j2_zYppXaiY.roa
Signing time: Wed 04 Nov 2020 08:38:58 +0000
ROA not before: Wed 04 Nov 2020 08:38:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 121.50.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2146 (0x862)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Nov 4 08:38:58 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C3C3B92E54711CC5BFD222778F6FF3629A576A26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9d:32:47:26:93:20:88:6f:db:0e:49:1b:89:
46:3a:a5:f5:59:90:8b:dd:fe:39:85:02:af:10:55:
62:6a:af:7d:50:20:19:99:ea:54:e9:52:bd:df:3f:
c2:3b:9e:84:4a:aa:80:d7:1c:13:85:b4:e3:e0:d8:
e4:95:34:22:2b:db:3f:e9:f5:0f:6b:d1:ce:f1:e0:
e0:d9:9e:7e:f9:5a:a7:53:a4:2e:9d:bf:1f:e2:13:
24:dd:82:02:1a:a8:5c:8e:10:0b:44:61:b0:2d:b0:
78:dc:c8:2e:8b:4a:96:32:72:4d:a4:8d:10:52:ad:
2c:ad:f6:de:c4:63:eb:37:bf:34:44:5d:39:37:98:
c6:d7:7c:43:dc:9f:24:da:ac:3b:f1:c6:e8:7c:2b:
ff:ae:5d:dc:0f:15:6b:d6:91:90:a8:d3:14:9b:28:
b1:2c:bd:a8:d1:21:03:07:f9:29:28:f7:ca:ca:5a:
05:0b:6d:bb:a2:45:01:62:22:cf:85:c4:a2:8f:6d:
2f:8c:00:51:41:1e:96:9c:d1:2f:ea:7c:d6:12:c0:
9c:27:ee:98:59:85:85:c0:98:83:6b:3b:67:53:72:
4d:76:a3:4e:84:6f:dc:a6:a8:44:4f:d3:26:c5:72:
9c:23:d1:b6:14:b2:33:b6:2b:c3:eb:c7:9c:54:cd:
63:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:C3:B9:2E:54:71:1C:C5:BF:D2:22:77:8F:6F:F3:62:9A:57:6A:26
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/w8O5LlRxHMW_0iJ3j2_zYppXaiY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.145.0/24
Signature Algorithm: sha256WithRSAEncryption
52:82:99:69:02:3b:57:40:b4:79:a1:63:d9:59:8b:7f:22:3c:
2b:b7:fd:ef:92:1b:4a:59:56:e6:5d:93:4f:c0:d7:e8:25:10:
7f:36:4b:9f:a9:0f:4b:a4:c5:ac:6a:ec:10:72:aa:91:d2:a6:
08:5c:cf:3e:cc:e1:7d:89:f7:6e:71:69:96:ea:8a:8e:b7:30:
31:97:65:17:29:9c:a1:36:09:5f:6f:88:eb:e4:5d:80:53:6a:
ee:08:d0:b3:fd:de:6e:b3:0c:12:50:65:f5:ba:74:19:3d:1d:
0b:89:ed:cb:b0:f3:34:fa:04:1f:ca:3e:c8:bc:c1:d6:fa:ef:
70:f4:a0:12:45:1f:7b:53:2f:2b:ba:c5:a2:24:0d:5b:e8:85:
0f:c2:7d:8e:1f:fb:e6:4d:e5:63:d8:95:91:79:a0:1c:2a:d8:
04:c8:9b:a0:e4:b1:75:4c:9b:fe:78:eb:9b:1e:fa:67:d4:fe:
e2:4f:7e:e6:29:71:eb:52:34:fb:2d:8f:56:19:db:2e:05:6d:
22:0c:7b:60:ba:45:fd:50:b7:c2:65:8b:02:63:20:fb:8b:5a:
dd:02:67:9c:79:bb:fb:68:38:05:25:ed:e5:e4:c5:97:2b:a7:
79:b2:6a:70:f0:56:af:3c:8a:d6:b2:b2:2e:8e:c3:43:78:fa:
a2:03:f1:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:43 2023 by rpki-client on console-ams.rpki-client.org