Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/9YrviImXI5A0Mk1sZdNyecjhW0M.roa
File: 9YrviImXI5A0Mk1sZdNyecjhW0M.roa (raw, json)
Hash identifier: FWKGc12chdr84SobxXDJIcIYF8nvOIEwNZa4gr/GcoI=
Subject key identifier: F5:8A:EF:88:89:97:23:90:34:32:4D:6C:65:D3:72:79:C8:E1:5B:43
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 0957
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/9YrviImXI5A0Mk1sZdNyecjhW0M.roa
Signing time: Wed 29 Sep 2021 02:53:48 +0000
ROA not before: Wed 29 Sep 2021 02:53:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9311
IP address blocks: 103.122.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2391 (0x957)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Sep 29 02:53:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F58AEF888997239034324D6C65D37279C8E15B43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5f:38:3d:be:90:e5:52:8c:a2:9b:5c:ed:38:
bd:cd:6a:7a:9a:36:8b:22:77:c9:c1:27:ec:51:07:
61:e9:c0:ec:10:b6:ab:e7:cf:18:17:8b:65:bc:35:
c2:a6:37:e5:0a:9a:51:a6:12:45:be:08:fc:bb:4a:
f0:5d:de:62:3d:dc:7c:d6:1f:78:f3:5e:59:70:e3:
1a:9c:e4:2b:33:3f:50:b4:59:02:77:4d:0a:07:ea:
da:41:3f:00:30:81:17:dc:68:84:de:3f:b4:de:47:
3a:41:ba:d0:2c:5c:0c:ce:bb:06:68:e3:49:49:47:
2f:0a:bd:fb:60:a8:fd:1e:0a:e1:36:d8:b7:fb:2b:
3b:38:6e:b1:12:5a:7d:58:ef:db:92:12:a7:2b:5c:
3e:97:e7:36:5e:46:54:75:70:d9:c2:fb:c8:05:0b:
1f:a5:42:0f:ab:8b:a0:1e:02:13:08:f6:86:35:fe:
7f:bd:55:83:be:d2:b3:40:29:e8:49:30:a8:13:46:
3c:c5:0a:7f:ed:c7:9a:cf:0a:d4:5b:d2:ae:a8:6a:
2b:18:f4:d3:eb:5c:61:2b:50:9a:b0:63:5c:f6:0b:
ab:8b:36:40:38:6d:15:07:97:2e:c5:5d:79:69:e5:
a6:b6:68:65:ec:39:56:79:85:d1:59:f2:4c:18:f2:
74:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:8A:EF:88:89:97:23:90:34:32:4D:6C:65:D3:72:79:C8:E1:5B:43
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/9YrviImXI5A0Mk1sZdNyecjhW0M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.224.0/24
Signature Algorithm: sha256WithRSAEncryption
85:6a:61:62:af:a7:02:a1:1c:56:70:32:7e:1a:57:c2:c3:da:
91:10:6d:00:63:1c:a7:b3:f3:fe:1d:68:93:85:aa:c7:58:10:
cf:65:57:44:22:f1:6d:73:32:19:b3:5d:95:fb:ff:b8:7b:a4:
55:67:b2:c5:e7:f1:7d:cf:a9:63:35:ac:f2:73:1b:0f:f4:9f:
63:e4:33:f9:f0:c4:c5:6e:89:7f:b9:37:d2:93:fd:06:fc:c0:
d9:f7:33:5d:9e:19:86:f5:71:fa:21:d8:0b:2a:8e:e3:b1:fa:
99:18:de:cc:82:e4:d0:8c:6d:17:ae:89:9c:af:5c:4e:bd:4c:
e5:f7:6c:07:2f:0b:86:5a:ac:01:1d:fe:39:65:49:16:a6:4e:
45:da:b6:33:3a:4a:eb:f3:d1:99:ff:77:69:29:3b:14:54:e2:
e8:f4:24:61:71:ea:4e:11:61:22:b5:12:01:a1:bf:da:a5:4f:
08:6a:de:c5:fa:08:a3:d6:cc:32:38:64:94:4a:f3:b5:49:42:
2f:04:3d:9c:ab:99:95:c8:e9:c6:00:3b:18:a6:c0:66:68:9d:
f1:f3:0f:3f:c4:cc:9f:f6:76:57:56:d0:b7:b3:35:c1:a2:4e:
e1:ee:63:7f:16:74:8a:5c:6b:7f:f0:bf:37:1a:e8:5e:db:b2:
8a:46:5e:dc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org