Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATVISP/dv9HXwi-kZ1bVK_Tns-T2pAPPfc.roa
File: dv9HXwi-kZ1bVK_Tns-T2pAPPfc.roa (raw, json)
Hash identifier: n0Yw1UW+j/c1ZLX5FDBKTH1xVx5sNZquzhvV4L/tJ1E=
Subject key identifier: 76:FF:47:5F:08:BE:91:9D:5B:54:AF:D3:9E:CF:93:DA:90:0F:3D:F7
Certificate issuer: /CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61
Certificate serial: 08FC
Authority key identifier: BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/dv9HXwi-kZ1bVK_Tns-T2pAPPfc.roa
Signing time: Wed 29 Sep 2021 02:49:32 +0000
ROA not before: Wed 29 Sep 2021 02:49:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18046
IP address blocks: 103.233.68.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2300 (0x8fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61
Validity
Not Before: Sep 29 02:49:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=76FF475F08BE919D5B54AFD39ECF93DA900F3DF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bc:82:14:1a:b0:92:27:32:1a:fb:8d:bb:de:
d9:aa:bc:f7:f1:0f:f0:ad:2f:a9:09:64:2d:55:e8:
e0:21:e4:e4:69:3c:f5:94:b8:aa:44:18:b7:e0:ee:
19:cf:2a:00:9d:90:8b:3a:06:bf:5e:e4:6f:82:01:
da:88:75:ac:d9:2a:24:fb:53:5f:23:9f:50:21:b6:
d3:d5:d7:41:41:0f:f2:5c:11:85:f2:98:94:33:d4:
58:55:68:c5:a7:3e:bd:f8:8f:57:a3:f9:25:74:be:
b0:cb:a7:01:e2:ef:e3:90:1e:91:01:a9:4f:f1:d9:
8c:cb:22:ec:9a:1e:13:58:93:ce:6a:15:cc:f1:03:
6c:9f:b7:fe:ef:96:e2:3c:d7:cd:06:72:c8:4b:5a:
ab:50:89:4c:18:f1:bd:1b:61:e9:8b:1b:98:c3:c1:
10:63:33:69:3e:d8:1b:b6:19:75:88:64:99:95:6a:
eb:bd:b4:5c:69:f4:81:11:44:36:97:88:fd:74:f5:
fc:b9:89:a9:d7:98:c1:19:21:b8:ef:99:de:64:79:
18:08:2e:8a:a8:c4:c5:09:81:13:6c:36:f0:37:f4:
30:4b:1e:0e:7e:fd:39:67:39:5e:f2:c9:a3:82:7f:
6a:fb:3e:f3:e1:02:9f:65:fa:9e:56:fc:29:ea:87:
03:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FF:47:5F:08:BE:91:9D:5B:54:AF:D3:9E:CF:93:DA:90:0F:3D:F7
X509v3 Authority Key Identifier:
keyid:BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/dv9HXwi-kZ1bVK_Tns-T2pAPPfc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.233.68.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:02:c0:e8:a2:dd:cb:f3:77:87:fc:51:fb:03:b0:29:32:ea:
ad:ca:77:af:1e:cc:fe:d5:db:d0:39:52:b5:76:08:c2:dd:2d:
75:80:66:2d:75:d2:b5:5f:e5:71:71:e1:22:f9:f8:3a:5a:a1:
d1:7f:13:72:a2:50:8b:60:e6:91:9e:83:fa:08:a1:fa:2c:84:
d6:0a:33:e0:2a:3c:c6:ce:ff:f0:57:98:3e:e5:f7:41:ff:14:
7a:a6:82:2f:58:44:fd:92:34:ca:94:e7:b8:81:b8:71:0a:a8:
c8:03:dd:9d:c6:de:59:53:02:84:22:80:66:0e:90:c7:27:47:
83:b1:18:cb:cf:fb:c9:a1:d7:13:c0:b2:41:77:3d:4d:31:ff:
42:98:9f:a5:49:d9:69:3f:25:79:a8:f0:77:a8:4c:b9:a5:14:
10:4f:49:e0:cb:ee:25:51:dd:bc:d1:75:ad:fb:87:d5:7d:eb:
39:65:9b:29:6b:01:1d:ba:8f:f1:d6:71:ac:de:97:5f:38:51:
f7:c6:d0:be:be:25:4b:3b:a2:dc:a7:af:3b:11:76:77:d1:00:
6d:8f:31:9b:11:cf:15:33:38:90:5f:e2:ec:ed:8f:71:7f:87:
33:b0:06:0d:23:f9:ec:cc:cd:21:f1:ec:05:ce:61:53:bb:fa:
12:3c:1b:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org