Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/KtzPUVbTh-C34qCRwM4vKsNJgw0.roa
File: KtzPUVbTh-C34qCRwM4vKsNJgw0.roa (raw, json)
Hash identifier: DxwFO3dtKNVQUd+IfksGIOuRxdRkDJkfgen/4z1gFvU=
Subject key identifier: 2A:DC:CF:51:56:D3:87:E0:B7:E2:A0:91:C0:CE:2F:2A:C3:49:83:0D
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 0764
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/KtzPUVbTh-C34qCRwM4vKsNJgw0.roa
Signing time: Tue 29 Sep 2020 10:09:11 +0000
ROA not before: Tue 29 Sep 2020 10:09:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131618
IP address blocks: 103.122.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1892 (0x764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Sep 29 10:09:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2ADCCF5156D387E0B7E2A091C0CE2F2AC349830D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4f:35:d7:e2:15:38:c8:ca:ce:a9:8f:d8:72:
2b:70:42:44:0e:e6:f4:4d:ce:39:56:d7:92:79:db:
52:27:48:a2:fc:4d:fc:68:0f:bf:1e:3a:b9:c9:8d:
94:81:de:b9:35:e6:20:d3:29:f6:a0:56:02:55:19:
d8:ff:6c:a0:54:54:d8:58:bc:da:0b:6d:63:ac:97:
0e:e6:ef:52:32:10:63:18:ae:19:b6:2b:b2:90:5e:
ef:67:e4:63:4f:5e:05:dd:3a:3a:67:db:78:b0:9b:
f1:3c:a6:4d:1c:e1:2e:31:6a:c8:31:96:e2:28:df:
30:98:38:f0:b5:5c:10:e0:b6:cd:39:b1:64:a6:b1:
1c:40:b7:31:02:cd:bf:ac:ac:c7:8d:01:cf:c1:53:
31:b7:50:aa:05:ea:59:0a:1b:c7:1b:d0:ae:ce:7b:
85:32:63:3d:99:95:f2:0e:34:af:ee:21:4c:0d:4f:
40:ab:95:78:87:65:a0:4e:ff:4f:d5:8e:6e:fe:b7:
2d:29:a4:e6:56:f8:04:53:f5:14:7c:4d:ab:9d:5f:
04:4c:ef:4e:4e:9a:08:6f:19:80:11:60:58:cc:d4:
c4:88:97:82:f9:5b:27:74:e4:eb:0b:ab:b3:61:21:
d4:dc:d5:20:41:e4:12:5c:e1:03:b7:39:3a:42:d1:
69:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:DC:CF:51:56:D3:87:E0:B7:E2:A0:91:C0:CE:2F:2A:C3:49:83:0D
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/KtzPUVbTh-C34qCRwM4vKsNJgw0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.226.0/24
Signature Algorithm: sha256WithRSAEncryption
78:83:91:ab:74:62:ee:25:1f:86:32:77:71:0e:6f:e3:76:f8:
be:ed:91:b1:6f:b5:b3:9d:b4:da:f7:2c:19:5c:44:44:20:7b:
73:83:ff:a4:a7:f1:ff:07:b4:ab:d5:b3:73:77:b5:31:92:3b:
85:7e:2b:39:d8:74:4a:16:a3:9e:8d:55:53:1f:d9:5a:63:f8:
6e:76:d9:47:d0:a2:8a:74:a8:b7:b7:59:c5:41:24:e0:08:8c:
4e:b9:9d:56:ac:2c:75:47:08:9b:cc:15:ed:f0:ed:f0:47:ba:
99:ca:8e:e1:8b:6a:ea:b8:c6:47:0d:3d:3c:59:96:76:e7:7c:
1d:ba:c9:9a:ce:59:f7:f6:79:91:87:8d:06:a7:7d:52:95:e1:
68:8b:68:b3:ce:b0:1a:64:27:52:be:c4:8c:5a:d7:98:b6:9d:
e6:30:7c:a6:19:02:83:14:88:76:13:53:0e:be:e5:37:74:db:
9e:b0:51:0f:d4:0a:78:cd:03:a9:a9:fd:95:61:fd:e7:7d:29:
89:91:91:38:21:7c:4b:28:e9:c9:ce:cc:9e:ee:24:a2:da:91:
eb:3d:d3:56:d4:59:5c:dd:31:ee:a7:b5:b4:b3:bf:38:8b:c6:
e4:10:ff:bc:95:46:6e:ee:02:65:13:74:18:01:fc:25:90:87:
76:0e:8f:a5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org