Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATVISP/pvAYnqKK5iIdaJ1T7_AO9xF2im0.roa
File: pvAYnqKK5iIdaJ1T7_AO9xF2im0.roa (raw, json)
Hash identifier: A3d21ghIgZeuXYT5yWhGwwUWo+nSf8eDoWjTE2KKNSk=
Subject key identifier: A6:F0:18:9E:A2:8A:E6:22:1D:68:9D:53:EF:F0:0E:F7:11:76:8A:6D
Certificate issuer: /CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61
Certificate serial: 0849
Authority key identifier: BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/pvAYnqKK5iIdaJ1T7_AO9xF2im0.roa
Signing time: Fri 22 Jan 2021 08:00:43 +0000
ROA not before: Fri 22 Jan 2021 08:00:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 103.233.68.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2121 (0x849)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61
Validity
Not Before: Jan 22 08:00:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A6F0189EA28AE6221D689D53EFF00EF711768A6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:08:58:f1:40:57:52:81:a6:10:6d:02:27:bd:
65:b9:49:4d:0a:5a:9d:54:7a:29:a2:cc:c2:e0:6f:
c1:98:9e:d2:a6:d7:be:74:b4:e7:d2:5f:52:48:4c:
5b:30:75:6b:8e:1d:7d:f5:58:ba:e2:d6:2c:f2:95:
87:ec:84:15:1b:9f:51:9a:2a:12:b0:c4:3c:ce:27:
21:fc:3f:62:76:8f:d9:94:1b:24:b1:e4:78:de:6e:
6f:ab:68:3e:1a:a4:b1:9d:b3:16:70:f3:95:a3:74:
a6:60:34:18:4c:87:1c:de:00:37:4f:fc:c1:5a:86:
53:4a:aa:33:8f:2e:cc:ad:1a:c0:67:ff:99:99:f4:
76:f1:3f:60:c9:66:5f:4c:a8:db:ab:89:81:94:5e:
8e:c1:98:d7:dc:68:fa:22:35:69:1b:fd:7f:3d:0e:
3f:b9:7e:48:d8:ab:06:48:ba:48:26:c5:fe:09:d5:
b3:8b:b0:7f:12:bf:d3:70:33:de:cf:51:9c:f2:35:
79:2e:d2:2d:3e:2f:ee:c8:41:5c:ad:7c:6a:ea:19:
ab:f9:61:d4:28:50:97:8d:27:af:d6:02:75:e6:9d:
6e:40:16:d6:e6:c0:e2:09:85:c5:4a:b7:33:29:02:
6a:94:f2:1e:de:7d:b3:5b:6e:43:a9:a7:a7:35:13:
df:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F0:18:9E:A2:8A:E6:22:1D:68:9D:53:EF:F0:0E:F7:11:76:8A:6D
X509v3 Authority Key Identifier:
keyid:BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/pvAYnqKK5iIdaJ1T7_AO9xF2im0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.233.68.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:f5:cb:4d:64:26:48:04:80:20:31:e7:83:13:38:56:f8:d5:
30:35:81:46:23:3b:62:bd:38:d5:9b:7f:35:ee:1a:ff:d5:17:
a4:4b:28:89:6c:95:c0:ec:fb:ea:32:07:da:45:84:bc:1b:78:
11:a9:94:f5:1d:d5:75:8b:25:9a:ac:c8:7f:90:94:e9:38:e8:
fe:28:f9:3f:a8:18:3f:14:54:5d:55:e4:4b:4e:a9:fb:71:00:
b7:68:5b:1e:4d:79:f8:15:6f:23:ca:09:8c:4b:97:a3:9e:3d:
d5:6b:88:d9:d3:67:cc:48:15:e2:c8:9e:60:a5:89:bc:d1:e5:
40:6d:bb:e4:94:ce:36:c1:88:9c:99:49:b1:09:4f:5a:95:ed:
27:b6:fb:ef:e0:ad:a7:bf:88:a8:5f:74:1a:b0:5c:ea:62:e5:
3e:0b:5b:ce:5d:9d:fe:29:40:60:dc:6f:df:47:bd:40:e5:4e:
0d:e6:c3:78:67:f5:7d:c6:28:81:2a:34:9e:5b:58:70:c5:3c:
58:68:b6:05:3b:3c:d2:db:bf:f2:db:72:e6:d0:77:a9:1d:d1:
f1:bc:ca:ef:4d:ae:07:68:3c:9e:5d:0c:14:26:74:47:7a:52:
44:00:ab:54:40:b0:d9:46:3b:e3:c9:f6:6c:c4:cb:0a:e8:c5:
9e:cd:fe:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org