Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/czIosq9THZdd-ttRe6DL0qr2bhI.roa
File: czIosq9THZdd-ttRe6DL0qr2bhI.roa (raw, json)
Hash identifier: MvapaacJ7yyenZZpqS609kBGzOAA8LDsOCm8uViBL+k=
Subject key identifier: 73:32:28:B2:AF:53:1D:97:5D:FA:DB:51:7B:A0:CB:D2:AA:F6:6E:12
Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Certificate serial: 0755
Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/czIosq9THZdd-ttRe6DL0qr2bhI.roa
Signing time: Thu 24 Mar 2022 06:03:34 +0000
ROA not before: Thu 24 Mar 2022 06:03:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131671
IP address blocks: 103.146.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1877 (0x755)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Validity
Not Before: Mar 24 06:03:34 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=733228B2AF531D975DFADB517BA0CBD2AAF66E12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b1:60:e6:54:3e:67:ca:d7:bf:bb:ce:9d:75:
fe:41:82:e7:cc:aa:47:8b:0a:be:c2:e6:40:94:a7:
48:6f:8f:d1:7a:70:76:d8:40:a0:d1:6c:24:ae:9c:
8c:cf:df:12:9b:14:9f:67:34:30:16:a3:8d:b5:6f:
da:7c:01:26:b2:36:3a:02:b9:71:3a:6d:2d:29:66:
04:2e:9f:ed:56:e3:fb:0b:b7:ad:86:b7:dd:1f:b5:
12:1d:3f:39:b2:47:8c:fc:b7:bc:3f:00:1c:f3:60:
51:0d:e0:82:31:14:e3:22:67:e7:87:fc:48:ff:06:
24:7f:6d:79:d0:7b:2b:cc:a1:03:25:7a:ea:a2:bc:
44:0c:de:a4:bb:d1:98:f4:5e:ef:b5:5a:1c:f4:84:
6f:a6:15:5b:93:6d:17:ea:0a:3d:32:89:8d:20:20:
26:40:0b:d1:86:a0:4a:39:fb:9a:3d:4b:b3:09:9d:
26:0e:0d:c1:8c:1a:c2:79:28:93:26:82:5f:dd:99:
cd:4a:d9:9b:91:73:aa:5f:ec:4f:c0:e4:e6:f6:8a:
04:4b:cd:b8:f2:61:99:90:68:51:54:87:98:6c:e7:
c5:15:6c:26:3c:b7:ab:5f:80:73:43:94:8c:1d:65:
a0:f9:57:67:09:d4:da:1c:09:55:33:4b:c6:b4:fd:
24:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:32:28:B2:AF:53:1D:97:5D:FA:DB:51:7B:A0:CB:D2:AA:F6:6E:12
X509v3 Authority Key Identifier:
keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/czIosq9THZdd-ttRe6DL0qr2bhI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.146.213.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:26:14:8d:89:99:f2:70:d8:37:4f:1d:dc:35:0f:6d:a8:cf:
a4:19:81:d6:53:11:f4:76:7e:80:b2:cf:a6:db:1f:e7:1d:2b:
2e:52:7b:0b:14:36:60:e0:ba:0e:9c:61:47:77:ae:cf:88:8c:
68:9e:33:59:55:58:c2:e4:f1:40:ac:db:0e:54:78:3b:ef:5b:
fa:5d:e9:fc:4d:73:de:b5:7b:cf:cc:8a:16:58:4d:77:13:2e:
8e:8b:f3:9c:88:ba:3f:18:48:e1:bf:96:e6:c1:3d:69:48:84:
a5:17:34:94:41:02:93:12:5b:fc:06:f1:2a:3e:3a:8c:f0:b3:
ac:c5:89:65:85:19:89:36:c3:e1:76:62:5e:75:ef:22:56:59:
1c:ef:d4:72:0f:a2:10:29:98:90:5c:2f:d7:d1:db:c1:fc:4a:
5f:1f:6d:b5:dd:dd:93:dc:b8:f5:51:8d:8f:b2:7e:5a:ba:97:
88:aa:dc:a0:64:ea:ae:c0:01:b6:89:ad:90:a1:e2:41:6a:bb:
8c:e3:80:73:f9:50:36:3c:c0:41:a2:c8:5e:14:3e:31:e4:47:
5d:75:17:6a:b6:15:ac:2f:da:75:44:ca:0c:fd:ff:ff:78:0c:
35:a1:65:dd:d6:ef:ce:b6:c7:24:02:60:aa:b0:0a:6f:ad:c2:
dd:77:4c:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:39 2025 by rpki-client