Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/ZJiWoeLHwR4vQZqN8HYpAaU4JSY.roa
File: ZJiWoeLHwR4vQZqN8HYpAaU4JSY.roa (raw, json)
Hash identifier: d12se4GilNbCinqwqlUxVOkvCKms+trkOqf0IfeuRSI=
Subject key identifier: 64:98:96:A1:E2:C7:C1:1E:2F:41:9A:8D:F0:76:29:01:A5:38:25:26
Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Certificate serial: 062E
Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/ZJiWoeLHwR4vQZqN8HYpAaU4JSY.roa
Signing time: Sun 07 Feb 2021 12:48:01 +0000
ROA not before: Sun 07 Feb 2021 12:48:01 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131671
IP address blocks: 103.146.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1582 (0x62e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Validity
Not Before: Feb 7 12:48:01 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=649896A1E2C7C11E2F419A8DF0762901A5382526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d1:da:13:1a:fa:51:9a:68:d5:91:4d:36:e5:
9e:63:af:a0:07:f1:00:41:6e:46:e3:bb:99:2c:39:
63:47:1f:16:a2:39:5a:ee:42:2b:0a:f6:6e:ee:bb:
bb:5e:e0:88:0d:1c:71:08:62:d7:b7:35:7d:fa:4c:
73:0c:2a:57:2b:ec:a1:30:6a:46:13:5b:09:db:1f:
c0:a3:f6:57:de:e2:8b:18:be:3b:78:32:ce:e6:5b:
47:1b:d9:d2:79:68:56:a4:cb:95:0a:d5:1b:7c:5f:
ce:92:15:88:17:76:b0:54:a1:ca:03:61:65:79:af:
69:69:2b:aa:c3:83:bf:51:2e:cb:a1:c3:2d:e0:a0:
54:25:f9:87:f6:18:2d:52:28:7b:0b:16:79:a3:ee:
db:48:62:1b:4d:71:6e:f9:31:48:8e:77:7a:8c:a9:
59:78:6f:ec:4b:65:bf:95:27:00:e1:1a:9d:23:4b:
1b:6b:6d:2a:15:8b:63:59:51:18:45:ec:33:b6:4a:
fc:5e:53:3d:78:55:7b:39:6c:63:5e:62:55:b0:06:
2d:11:5c:a2:e4:42:84:60:b0:24:d8:f6:ff:df:d9:
c7:38:64:c7:73:a1:eb:a3:39:db:c5:42:b1:c0:dc:
dd:19:80:83:db:75:ca:a1:9a:c0:89:5a:b1:67:6f:
cf:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:98:96:A1:E2:C7:C1:1E:2F:41:9A:8D:F0:76:29:01:A5:38:25:26
X509v3 Authority Key Identifier:
keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/ZJiWoeLHwR4vQZqN8HYpAaU4JSY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.146.212.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:fb:c5:c0:a6:37:12:37:f4:70:04:ee:e4:af:04:83:f1:05:
72:b2:5a:6a:fd:ed:4d:6a:f1:d5:63:39:09:3f:3d:b8:dd:9e:
06:93:8b:65:8c:78:45:36:92:59:c0:7b:f1:4e:74:d8:33:71:
75:9c:89:c8:6f:1d:c4:15:a3:6d:97:67:a5:5f:a3:b1:51:0f:
dd:a1:22:2c:8a:30:bc:66:ae:da:b6:51:ff:02:6d:dd:75:6b:
b8:67:bb:d6:19:74:6e:e1:3f:b1:c2:42:9b:a6:20:99:d0:fe:
f5:12:d2:f2:c7:72:02:5e:6c:d3:f0:69:1c:a0:04:0f:ae:e3:
ff:6a:20:77:6e:06:3b:f5:ef:7b:77:f9:70:c8:ff:45:63:a3:
dc:87:9a:ac:09:8a:b5:bd:ae:5a:d8:ac:bc:fc:cb:b9:85:cf:
17:09:92:b2:cf:3c:ee:53:a2:4b:b9:44:5a:b6:f3:4f:0b:67:
37:aa:a6:fb:5a:41:23:8e:95:09:8a:fc:60:ea:f5:65:84:d3:
18:25:cf:a0:e2:5d:75:cb:e3:00:c7:fc:8f:74:6c:42:29:5d:
2c:f8:d6:8d:c6:70:0c:ee:eb:53:3a:e2:2b:02:d4:68:53:9b:
4b:76:6f:40:4e:60:00:ab:5e:31:ac:c2:59:40:ac:4f:4b:f2:
78:f2:c4:4a
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICBi4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTlE
RUYyQ0Y4MjhGMEQ5QUI2QUQ5NEY0MjYxMzE3NjREMjU0Q0M1QzAeFw0yMTAyMDcx
MjQ4MDFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDY0OTg5NkExRTJDN0Mx
MUUyRjQxOUE4REYwNzYyOTAxQTUzODI1MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDZ0doTGvpRmmjVkU025Z5jr6AH8QBBbkbju5ksOWNHHxaiOVru
QisK9m7uu7te4IgNHHEIYte3NX36THMMKlcr7KEwakYTWwnbH8Cj9lfe4osYvjt4
Ms7mW0cb2dJ5aFaky5UK1Rt8X86SFYgXdrBUocoDYWV5r2lpK6rDg79RLsuhwy3g
oFQl+Yf2GC1SKHsLFnmj7ttIYhtNcW75MUiOd3qMqVl4b+xLZb+VJwDhGp0jSxtr
bSoVi2NZURhF7DO2SvxeUz14VXs5bGNeYlWwBi0RXKLkQoRgsCTY9v/f2cc4ZMdz
oeujOdvFQrHA3N0ZgIPbdcqhmsCJWrFnb8/nAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUZJiWoeLHwR4vQZqN8HYpAaU4JSYwHwYDVR0jBBgwFoAUWd7yz4KPDZq2rZT0
JhMXZNJUzFwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFOVEFT
WS9XZDd5ejRLUERacTJyWlQwSmhNWFpOSlV6RncuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL1dkN3l6NEtQRFpxMnJaVDBKaE1YWk5KVXpGdy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTlRBU1kvWkppV29lTEh3UjR2UVpx
TjhIWXBBYVU0SlNZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGeS1DANBgkqhkiG9w0BAQsFAAOCAQEAG/vFwKY3Ejf0cATu5K8Eg/EFcrJaav3t
TWrx1WM5CT89uN2eBpOLZYx4RTaSWcB78U502DNxdZyJyG8dxBWjbZdnpV+jsVEP
3aEiLIowvGau2rZR/wJt3XVruGe71hl0buE/scJCm6YgmdD+9RLS8sdyAl5s0/Bp
HKAED67j/2ogd24GO/Xve3f5cMj/RWOj3IearAmKtb2uWtisvPzLuYXPFwmSss88
7lOiS7lEWrbzTwtnN6qm+1pBI46VCYr8YOr1ZYTTGCXPoOJddcvjAMf8j3RsQild
LPjWjcZwDO7rUzriKwLUaFObS3ZvQE5gAKteMazCWUCsT0vyePLESg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:49:01 2025 by rpki-client