Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/kwHppmn57RxDsAJUq3FB-Imj7M4.roa
File: kwHppmn57RxDsAJUq3FB-Imj7M4.roa (raw, json)
Hash identifier: ekWL8JVpzyX8ODBB4EJGoMBHPuPsSMAOP8EDhV7mIHk=
Subject key identifier: 93:01:E9:A6:69:F9:ED:1C:43:B0:02:54:AB:71:41:F8:89:A3:EC:CE
Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Certificate serial: 061B
Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/kwHppmn57RxDsAJUq3FB-Imj7M4.roa
Signing time: Tue 19 Jan 2021 02:30:58 +0000
ROA not before: Tue 19 Jan 2021 02:30:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131671
IP address blocks: 103.146.212.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1563 (0x61b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Validity
Not Before: Jan 19 02:30:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9301E9A669F9ED1C43B00254AB7141F889A3ECCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e8:50:e6:f8:52:f0:bd:6f:b7:88:6f:43:a7:
a0:ee:9f:a8:09:10:b0:61:57:e9:c3:3c:56:9a:6a:
1c:8a:56:79:d0:54:11:30:5f:6d:02:21:9d:2a:85:
38:4a:7f:d6:be:51:ad:c5:2a:1a:c3:8a:c2:72:da:
55:38:a1:f4:41:f3:db:23:0e:e3:6c:24:0b:6c:9f:
b8:84:35:63:f2:62:de:67:c6:a4:64:dc:1c:e1:b3:
7c:81:f8:ad:37:95:ee:b8:df:6a:b2:82:eb:93:7b:
38:1f:ff:b8:d5:3d:01:0f:24:be:af:41:f1:14:7e:
46:7e:ae:5b:1e:db:65:1e:7d:6e:69:99:a2:55:1e:
78:b6:3c:0b:e8:85:30:58:69:51:7f:f5:ad:cc:cf:
21:5d:f7:51:02:51:0e:96:39:ca:90:de:a8:51:86:
47:48:9e:28:80:02:9d:d3:2e:3d:fd:97:91:b6:37:
2b:9f:b5:84:5d:30:d8:a2:8f:6b:ab:ea:b5:34:e2:
1b:e8:e6:f5:3f:f9:81:af:61:41:64:05:dc:b4:db:
ef:71:ed:6e:39:cd:d5:34:f5:de:7e:dc:e6:1f:35:
96:4a:57:19:ae:4e:d3:18:c8:4c:89:bf:52:65:f3:
06:70:07:54:08:9b:c0:81:83:8f:c9:ce:a4:40:55:
3c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:01:E9:A6:69:F9:ED:1C:43:B0:02:54:AB:71:41:F8:89:A3:EC:CE
X509v3 Authority Key Identifier:
keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/kwHppmn57RxDsAJUq3FB-Imj7M4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.146.212.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:00:11:c5:25:b3:c6:85:b3:bb:5c:ff:cd:72:d5:5e:25:82:
2b:d0:53:16:19:86:af:e2:f2:37:b8:6d:93:03:e4:5e:b5:97:
8c:8d:46:55:fd:35:73:ed:1a:5b:3e:69:33:c4:b8:2c:4d:26:
e8:96:09:3f:71:35:0e:39:cd:88:ec:5e:dc:4b:37:ee:d4:37:
35:16:4c:ec:a9:35:8a:c9:0a:5f:f3:cc:f7:07:8c:86:a4:47:
64:3f:24:eb:f9:86:fc:21:b9:91:d2:5e:af:91:bb:26:0f:83:
e2:e2:d5:56:ac:cb:17:fb:a7:8f:2c:2c:ac:6e:63:26:43:39:
81:0c:fd:e1:ae:ed:aa:50:fd:56:63:b1:ce:4c:34:c1:18:e4:
8d:47:4c:e6:11:09:d3:e1:f1:45:b8:a3:cf:ec:4b:65:49:c9:
e4:9c:cc:52:8d:c3:26:d3:5d:88:2b:75:dc:2c:76:44:2b:e6:
3e:87:60:e4:e2:82:35:f9:6e:f0:fc:54:14:b8:0b:35:c8:85:
be:bd:a2:73:85:ed:86:ae:87:0e:72:c1:a0:a1:dd:1b:f0:e7:
d7:b6:f7:6a:bb:1a:d3:14:a3:77:aa:4a:b9:35:db:57:60:77:
a8:e0:7b:86:86:ea:e9:2b:63:46:ed:f8:c9:32:f0:4a:2b:75:
4e:22:3b:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:08 2025 by rpki-client