Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/kNooh7O0f34CsS6dPVvkt5vO47U.roa
File: kNooh7O0f34CsS6dPVvkt5vO47U.roa (raw, json)
Hash identifier: +96QBMQ96HvsRz/+Gcti/sepkjsGamWsHnO8/dv+KnQ=
Subject key identifier: 90:DA:28:87:B3:B4:7F:7E:02:B1:2E:9D:3D:5B:E4:B7:9B:CE:E3:B5
Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Certificate serial: 06D2
Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/kNooh7O0f34CsS6dPVvkt5vO47U.roa
Signing time: Wed 29 Sep 2021 02:37:56 +0000
ROA not before: Wed 29 Sep 2021 02:37:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131671
IP address blocks: 103.146.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1746 (0x6d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Validity
Not Before: Sep 29 02:37:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=90DA2887B3B47F7E02B12E9D3D5BE4B79BCEE3B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:33:1b:61:d6:2c:4b:44:f1:78:20:b6:a3:bf:
5d:d0:74:df:e3:4b:cc:93:ce:49:55:a9:e2:51:ea:
2b:ed:69:a4:21:cb:4f:cf:bc:b4:42:23:50:e3:03:
f8:44:7f:30:fa:39:56:0e:b2:17:3a:70:9a:fa:11:
29:ec:37:04:13:75:18:27:57:07:e8:ec:8e:25:79:
5a:3e:55:c4:f5:6e:4e:34:2d:29:c6:1f:fa:c5:16:
36:b7:dd:72:52:64:98:51:2c:da:7e:e1:30:6e:80:
55:98:da:37:75:d4:19:d1:8c:8f:82:c2:c7:f8:93:
92:91:10:bf:20:9c:87:e3:e8:8a:6c:96:66:8a:58:
3f:c0:58:4c:ce:22:d5:f6:55:99:7e:30:fe:a2:f0:
0d:db:85:eb:6d:d9:f4:2b:ef:e8:d9:23:b8:88:23:
22:52:58:e4:5d:4b:31:3f:e6:e5:ac:f3:2c:5f:7f:
d2:51:f6:95:5f:ba:11:ac:97:0e:4b:0f:48:48:f3:
21:15:3b:07:4d:54:f4:49:42:f1:a0:18:cb:51:bd:
6b:3c:69:0f:e9:d7:3d:f1:51:74:1b:08:60:34:9a:
f2:28:32:26:67:9e:7f:21:51:d6:3b:29:db:97:05:
5f:9c:48:0f:c5:95:29:13:bb:88:ea:18:20:0c:56:
1b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:DA:28:87:B3:B4:7F:7E:02:B1:2E:9D:3D:5B:E4:B7:9B:CE:E3:B5
X509v3 Authority Key Identifier:
keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/kNooh7O0f34CsS6dPVvkt5vO47U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.146.213.0/24
Signature Algorithm: sha256WithRSAEncryption
28:cc:38:32:79:70:93:49:9a:1c:d2:60:a9:90:7b:33:5c:3e:
80:35:d2:4d:85:df:0b:e5:8a:43:e1:36:d7:ab:e6:42:af:97:
92:ff:05:4d:8f:f2:0a:47:a4:86:5e:35:e3:9f:f5:52:92:c7:
87:0a:6e:18:b0:7c:54:e8:73:8f:20:76:02:71:24:00:45:d4:
87:96:88:3e:f7:82:27:d4:44:9a:4e:6a:c5:70:8b:bc:aa:c8:
29:70:53:00:66:9e:1e:ef:02:99:93:de:13:a4:55:05:2d:02:
24:69:4b:c7:0f:3a:f0:22:e2:45:76:0f:27:d9:84:a1:37:c9:
df:4e:3c:e6:09:ed:24:fb:ce:42:70:7d:16:7e:39:9f:05:d9:
92:2c:9d:3a:fb:5d:0f:be:be:6b:22:8d:a2:90:fa:6b:8e:f1:
15:07:e7:8a:0e:16:5e:c3:7a:b7:84:71:ca:89:2e:b2:fb:b7:
c5:ad:33:7c:e4:0d:1c:7a:db:55:29:8b:20:cb:3d:c4:16:33:
b6:ef:16:e8:97:02:4e:a6:b7:6d:0b:ac:fd:b7:0c:b0:24:f2:
da:a5:64:57:0b:93:8b:ea:73:ad:4c:94:ce:44:0e:2d:73:11:
04:df:a5:b1:44:e4:30:12:05:7f:5f:99:64:3a:a2:43:19:67:
c9:81:cc:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:02 2023 by rpki-client on console-fra.rpki-client.org