Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/t5Gqxfv5ZIbzj-n6nPDQzHrc-6Q.roa
File: t5Gqxfv5ZIbzj-n6nPDQzHrc-6Q.roa (raw, json)
Hash identifier: zRUMZqkucF4C0uaMyRdo2toLDHTyuIs9Z18Ob52vqBY=
Subject key identifier: B7:91:AA:C5:FB:F9:64:86:F3:8F:E9:FA:9C:F0:D0:CC:7A:DC:FB:A4
Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Certificate serial: 0745
Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/t5Gqxfv5ZIbzj-n6nPDQzHrc-6Q.roa
Signing time: Mon 14 Mar 2022 09:01:21 +0000
ROA not before: Mon 14 Mar 2022 09:01:21 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131671
IP address blocks: 103.146.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1861 (0x745)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C
Validity
Not Before: Mar 14 09:01:21 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B791AAC5FBF96486F38FE9FA9CF0D0CC7ADCFBA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5b:63:5e:13:a5:cc:50:23:26:02:c7:32:33:
b0:d9:86:94:76:35:1d:30:94:77:5a:a3:23:38:28:
39:ba:eb:18:a6:15:14:ce:e1:a7:a2:cb:ed:3a:09:
25:fa:f5:2d:4a:50:cd:08:6c:8c:ea:f5:d7:7d:dc:
eb:98:36:dd:0b:8c:cc:3f:b7:c8:7a:37:5a:c2:e5:
14:2e:f5:88:2c:b5:88:5e:90:64:1a:49:35:6b:e2:
a1:ed:f0:1f:3d:09:34:81:44:06:bf:66:f6:a1:84:
a7:62:de:36:80:63:51:fe:65:63:58:1d:ac:bf:e9:
c9:7b:6c:b5:6d:49:d8:27:c3:57:6e:bd:db:94:98:
5d:10:ff:40:81:8b:23:ba:b5:53:7f:c7:ac:82:28:
e7:4e:94:b2:39:80:29:31:b4:e0:11:59:30:48:b7:
23:08:71:43:99:d7:ee:cb:98:c9:5e:49:10:98:38:
90:71:1b:9e:df:ad:de:9d:96:8b:bd:88:42:59:8e:
80:8a:25:9a:2d:03:0e:ae:75:56:15:42:26:bd:fe:
8f:02:14:be:a7:0d:b4:f6:fc:f1:7c:b3:56:ca:21:
62:75:1c:9e:ee:31:73:88:5c:6b:51:94:ed:3d:d3:
ca:44:ee:f1:7f:45:d0:d9:b9:fe:e0:af:ed:2d:69:
d3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:91:AA:C5:FB:F9:64:86:F3:8F:E9:FA:9C:F0:D0:CC:7A:DC:FB:A4
X509v3 Authority Key Identifier:
keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/t5Gqxfv5ZIbzj-n6nPDQzHrc-6Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.146.212.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:c4:b2:d3:8b:83:78:34:6e:5f:09:53:f0:c0:fe:fc:6a:f6:
5e:3f:f9:94:f2:86:93:0f:51:41:8b:78:0e:d2:7b:e1:37:38:
25:35:db:8f:a5:10:92:97:5f:f2:00:80:32:53:18:ab:46:ab:
0a:f7:8f:a7:e8:f8:8d:d3:58:e4:a7:60:b5:e8:2b:ad:14:1f:
26:e0:2f:9e:9d:c6:e7:86:70:e2:0e:e3:82:0c:92:ec:df:f2:
44:56:4e:8e:2f:5c:ea:a0:35:9e:5c:b4:e3:03:aa:8e:b0:2e:
4e:b7:0c:1b:61:24:27:6d:cf:d3:c1:e7:55:19:30:fd:9b:89:
66:fc:1c:48:32:51:b3:28:70:66:47:60:52:49:35:2f:d6:3e:
72:18:41:f4:ac:bd:74:ac:dc:5d:fa:5e:90:b5:1e:0a:af:60:
b8:d2:82:50:2c:76:c7:05:a9:df:55:48:2f:f2:89:c4:92:8d:
d0:d0:e7:b1:a1:43:54:26:79:a7:16:d5:f5:5d:db:0d:19:c9:
3f:92:5e:64:4b:34:f6:34:5c:46:c8:64:99:f4:57:a6:a7:6a:
ad:0e:10:c6:f1:e7:85:27:72:1c:39:28:42:59:bf:39:2a:df:
ba:fe:d2:89:5f:15:47:12:e2:2a:49:93:f3:19:d1:03:3a:b1:
5b:c2:68:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org