Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/U_X7NrLCzeCzm1qNZrP7aWKgPLo.roa
File: U_X7NrLCzeCzm1qNZrP7aWKgPLo.roa (raw, json)
Hash identifier: ic0NpKF+Cxao8H20vwZJmzTr2agBsLByX88xTQXaPcE=
Subject key identifier: 53:F5:FB:36:B2:C2:CD:E0:B3:9B:5A:8D:66:B3:FB:69:62:A0:3C:BA
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 0763
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/U_X7NrLCzeCzm1qNZrP7aWKgPLo.roa
Signing time: Tue 29 Sep 2020 10:09:11 +0000
ROA not before: Tue 29 Sep 2020 10:09:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131618
IP address blocks: 103.122.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1891 (0x763)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Sep 29 10:09:11 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=53F5FB36B2C2CDE0B39B5A8D66B3FB6962A03CBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bc:a5:7c:a9:60:e6:ad:b3:21:19:b5:42:02:
ef:05:80:d4:d0:83:69:70:06:f8:4b:23:5c:33:2c:
7b:a2:cd:95:25:da:f2:0c:ce:ce:4e:b9:65:34:13:
00:71:b0:90:90:d3:87:e5:e5:91:45:b7:62:5f:72:
17:cd:08:ad:9a:6b:19:d2:d4:d7:71:c7:7a:98:e1:
b9:ed:5a:a5:4a:98:b1:53:da:93:e0:f5:3c:94:48:
b6:d6:a8:c0:3e:47:ea:6c:b6:fc:f5:58:ab:db:11:
7f:da:b6:7b:97:31:d3:74:a6:62:aa:d8:63:82:a3:
84:86:bd:2b:59:0b:a7:76:d6:69:15:eb:60:65:07:
58:b4:08:4c:07:b1:28:43:5e:08:4e:bf:e3:48:2a:
18:d2:87:24:13:fe:21:a2:4d:2d:75:74:10:d1:92:
26:87:ac:f8:9a:46:71:b4:1c:25:ab:2a:07:c5:f9:
e1:65:85:51:ea:9f:c3:00:df:09:9d:c5:d7:9a:2e:
ff:40:b8:f2:ca:6c:b3:1f:6f:3d:26:3b:32:e8:96:
61:9d:11:42:ce:37:97:2c:d5:19:c8:65:1c:da:59:
78:40:84:fb:d2:7a:b3:eb:14:f6:a5:de:02:f2:f5:
3d:c3:65:3c:db:5a:d5:d6:bb:df:d2:83:94:01:2c:
f2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F5:FB:36:B2:C2:CD:E0:B3:9B:5A:8D:66:B3:FB:69:62:A0:3C:BA
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/U_X7NrLCzeCzm1qNZrP7aWKgPLo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.225.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:dc:45:2d:40:32:95:55:d8:70:a5:6e:15:13:6a:5a:95:6c:
2c:cf:75:d8:fd:41:1b:30:8a:e8:92:4f:3a:91:f1:f4:ef:26:
ff:31:d9:83:4f:56:34:b5:8b:a4:d7:de:cb:ab:3c:38:c4:37:
36:38:bd:88:e1:81:19:84:b3:37:aa:dd:f9:9b:20:4a:7b:c1:
be:0f:4b:f1:2a:b0:4b:c5:a4:8d:12:64:18:e0:e4:2f:b8:79:
e8:14:db:63:f1:3f:c9:ee:63:94:5b:b9:04:ed:58:fc:0b:97:
ae:ab:f2:41:fe:05:e0:bd:59:67:49:54:27:ce:6e:e3:b6:f3:
90:ff:bb:d0:46:4f:a0:59:d9:d7:cc:30:1a:a3:ce:69:4b:50:
0a:44:75:ac:34:21:7b:5f:87:bd:ac:14:34:98:69:e1:62:d1:
60:3c:48:3a:7c:59:e3:15:9e:3f:f6:d6:e9:5e:40:17:e2:1d:
9f:c3:4a:bb:b2:2d:c5:49:3d:e5:2f:d6:50:38:c0:cd:7a:d1:
87:06:fe:19:6b:c6:15:9b:7b:79:96:9f:e6:fc:b4:2d:a2:6f:
81:8f:ab:86:2f:81:93:3f:ce:4f:f9:9c:b5:37:4e:ab:ac:e3:
71:6a:0c:7a:ae:de:f0:a2:9e:53:57:3d:07:1e:d3:b7:18:52:
e7:d6:43:2c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org