Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/B72N0ozX7saz1zBJtq3AMs_95hg.roa
File: B72N0ozX7saz1zBJtq3AMs_95hg.roa (raw, json)
Hash identifier: OEXJ0YQSf4A1OREe7E7+G2shyIgxPbUigUq28D3j14o=
Subject key identifier: 07:BD:8D:D2:8C:D7:EE:C6:B3:D7:30:49:B6:AD:C0:32:CF:FD:E6:18
Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Certificate serial: 0175
Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/B72N0ozX7saz1zBJtq3AMs_95hg.roa
Signing time: Mon 13 Apr 2020 09:20:13 +0000
ROA not before: Mon 13 Apr 2020 09:20:13 +0000
ROA not after: Tue 02 Feb 2021 02:23:38 +0000
asID: 131671
IP address blocks: 103.146.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373 (0x175)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Validity
Not Before: Apr 13 09:20:13 2020 GMT
Not After : Feb 2 02:23:38 2021 GMT
Subject: CN=07BD8DD28CD7EEC6B3D73049B6ADC032CFFDE618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c8:f6:46:38:ef:b8:f6:c1:49:30:0e:2d:ab:
f5:48:ca:a3:a5:74:76:0f:1c:fb:e2:29:64:0a:95:
8e:aa:55:8c:27:73:f0:03:3e:17:fb:5e:6b:df:19:
ba:3e:c2:d9:f1:0e:0b:40:b7:98:81:fe:ca:43:64:
da:ba:41:21:db:13:37:6e:f3:f6:09:57:3c:e8:84:
81:ad:28:7b:2b:8f:75:d9:db:69:47:65:0c:2c:9a:
f2:ca:73:19:b0:4e:db:d8:70:55:ee:00:41:31:42:
b0:c3:39:a8:32:15:ab:00:c3:13:b7:ff:7f:f2:a8:
4d:83:32:90:62:d7:6b:ea:3c:d4:ea:48:e5:c9:d3:
1f:d3:80:73:bc:24:6c:f8:78:dd:c9:f5:42:5c:43:
22:d1:f3:ec:47:dc:cd:67:f3:e0:3c:93:39:4d:c4:
3e:f3:11:4f:3d:b1:85:18:90:f3:5f:84:c7:00:eb:
af:0d:be:6f:09:bc:7c:f2:c5:cb:d9:b1:56:aa:9f:
a0:c5:a3:de:ef:ea:46:b6:6c:f4:3f:9b:5b:ae:8f:
ac:7d:66:6c:69:c8:ce:2e:9b:79:1d:cc:17:43:16:
4b:3c:b0:81:7a:a0:f5:64:1b:46:34:cb:00:2c:d4:
8b:91:e4:5a:ec:35:29:9b:39:24:e5:ea:f7:39:8f:
b9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:BD:8D:D2:8C:D7:EE:C6:B3:D7:30:49:B6:AD:C0:32:CF:FD:E6:18
X509v3 Authority Key Identifier:
keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/B72N0ozX7saz1zBJtq3AMs_95hg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.146.213.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:59:31:1b:1d:f1:18:75:40:1d:e2:3b:14:a3:19:67:70:ef:
bd:65:a0:4b:b8:71:21:8a:43:1c:0a:f6:10:50:3b:b4:53:75:
fe:74:bf:11:36:36:35:f0:c9:b1:5a:58:bc:78:cc:c7:db:11:
41:d4:1e:8e:a8:e5:01:37:38:a2:12:8a:d8:af:27:d1:b9:c9:
ca:d5:da:92:ce:77:b8:db:a5:2e:89:b7:45:6a:cd:fc:56:a1:
5c:25:1a:7b:34:c6:f9:be:b8:11:6d:db:b1:6c:e9:20:9a:f2:
85:09:1e:ca:49:73:c9:eb:f5:d2:2e:97:61:60:9b:d2:47:40:
2e:13:bb:a9:b8:df:88:85:15:a7:b7:03:c2:2c:71:a4:fe:ff:
0f:55:31:6c:9b:40:f7:b4:f5:c3:c3:f4:1b:cf:c1:fe:ca:64:
34:a0:59:d7:bc:94:94:81:6e:c8:9c:57:9e:38:a3:b0:07:27:
32:dd:55:75:ca:36:1b:43:0e:fd:f2:9c:a5:67:bb:b3:e7:82:
41:89:da:16:9a:f8:7f:7d:e9:a0:c3:0f:51:c7:f2:81:63:1f:
0b:3c:19:9c:ac:33:22:ed:94:f5:e7:f3:be:c6:1c:46:99:f8:
0b:43:44:c3:f1:bb:90:f4:6d:7f:df:17:3f:ac:25:0f:ac:2c:
68:9d:22:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org