Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/1fs1H_ltbl_GlTc2jMpzR-PEfT4.roa
File: 1fs1H_ltbl_GlTc2jMpzR-PEfT4.roa (raw, json)
Hash identifier: jSaAjOQyixDtNywVSk3+1wAanCgE5pci+lraKp3scto=
Subject key identifier: D5:FB:35:1F:F9:6D:6E:5F:C6:95:37:36:8C:CA:73:47:E3:C4:7D:3E
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 08B3
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/1fs1H_ltbl_GlTc2jMpzR-PEfT4.roa
Signing time: Sun 07 Feb 2021 12:59:19 +0000
ROA not before: Sun 07 Feb 2021 12:59:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131618
IP address blocks: 103.122.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2227 (0x8b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Feb 7 12:59:19 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D5FB351FF96D6E5FC69537368CCA7347E3C47D3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e8:b3:42:2a:47:d0:01:27:44:13:5f:59:3a:
07:37:21:26:11:0c:8d:68:6a:44:bc:18:da:31:0b:
a7:d9:7a:9a:68:5e:00:ce:01:a6:22:7b:60:d0:4d:
dc:f5:73:a7:96:01:67:e3:25:d9:05:90:0a:04:d8:
73:30:66:b5:5f:75:24:38:9e:15:96:59:f2:c6:06:
86:bf:66:6e:e5:ea:75:69:fd:fe:21:f0:1f:f3:89:
f1:1f:2b:36:08:1c:4c:e6:5a:42:d1:67:0c:82:13:
e1:80:dc:6e:33:40:ea:fb:dd:24:b7:83:4c:a3:08:
9b:5b:98:bf:38:39:3c:0b:c2:8f:d2:37:c3:ad:d4:
9b:c8:c7:28:3d:37:d8:d9:cf:25:bf:f4:48:f4:62:
b0:8c:e9:77:61:4e:e4:c7:fb:a3:bb:36:25:ae:0f:
de:98:c0:86:71:5f:7d:b5:db:6b:51:e5:13:99:70:
3b:e7:f5:a4:48:c1:9a:f8:f1:94:20:dc:67:e1:27:
bc:90:83:7e:a4:8b:15:be:2c:2a:e9:1e:14:40:a1:
3e:82:af:11:2b:76:6d:15:ca:1a:64:06:5a:23:b7:
13:2c:f9:fc:6c:b8:76:20:ce:51:84:ec:42:eb:82:
93:89:b8:e8:a6:88:b6:c5:56:24:c2:98:d0:cb:46:
5a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:FB:35:1F:F9:6D:6E:5F:C6:95:37:36:8C:CA:73:47:E3:C4:7D:3E
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/1fs1H_ltbl_GlTc2jMpzR-PEfT4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.225.0/24
Signature Algorithm: sha256WithRSAEncryption
88:93:77:6a:f2:46:f1:6f:6d:89:1c:e7:fd:13:af:bf:a5:51:
75:cc:16:ec:76:cb:b8:1c:94:96:cc:f8:95:67:2e:cd:e5:ad:
65:83:ad:a7:a8:51:b1:10:87:8b:bf:fd:3f:b7:1f:e1:65:04:
0a:02:91:40:86:5d:57:db:2e:5e:af:8d:de:00:a9:57:32:86:
25:28:58:98:7c:84:83:7f:73:8d:e9:eb:4a:6f:00:89:5f:b0:
90:46:8d:c8:de:e4:7e:f4:f9:ee:37:3f:37:be:3d:e6:1c:7c:
8b:6d:56:b8:29:bb:f1:38:b5:69:01:18:5b:f5:07:31:c3:85:
0d:c1:ba:1b:fc:b5:d5:4b:7d:60:7d:97:b6:44:b3:7d:85:53:
3b:1a:84:0b:83:2e:89:ec:e0:14:06:30:96:99:98:6c:ee:db:
8d:07:a4:de:b5:ec:e7:1a:49:e3:cb:45:9c:b9:6e:42:29:ef:
7c:ae:b2:84:d6:6f:7d:5e:92:d4:42:ed:92:2c:4b:7d:1b:09:
16:36:78:ae:5e:39:4b:58:e5:4e:ca:33:ee:df:1e:2d:ab:13:
14:46:ca:71:09:bb:cd:74:d4:0d:2d:d1:41:d0:63:d1:c2:ec:
28:4f:8b:07:63:3a:82:a3:e3:cb:08:ab:0c:90:cf:4f:22:26:
d0:58:20:08
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org