Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y3kiBR8tMGVcSlN_wV-NHLILs_4.roa
File: Y3kiBR8tMGVcSlN_wV-NHLILs_4.roa (raw, json)
Hash identifier: Pnb0QvCiqJLTKmc1iVrR6HOfqh+Ula1T5TGXj8P4pMs=
Subject key identifier: 63:79:22:05:1F:2D:30:65:5C:4A:53:7F:C1:5F:8D:1C:B2:0B:B3:FE
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 0766
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y3kiBR8tMGVcSlN_wV-NHLILs_4.roa
Signing time: Tue 29 Sep 2020 10:09:12 +0000
ROA not before: Tue 29 Sep 2020 10:09:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 103.122.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1894 (0x766)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Sep 29 10:09:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=637922051F2D30655C4A537FC15F8D1CB20BB3FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9d:b8:20:fa:fd:ad:4f:6c:08:a5:05:27:94:
1b:a3:b9:65:cb:58:a3:7b:72:db:46:4a:5d:28:ec:
f3:0b:f4:fd:55:f8:20:3f:fd:8c:07:a8:fd:f3:f4:
34:4f:ad:84:33:90:03:83:9c:35:f3:aa:16:fa:50:
99:42:67:5b:9f:ea:fc:19:9e:1f:bc:54:85:2d:fb:
22:da:17:a2:70:49:64:6d:23:fa:c1:b5:e6:5d:24:
19:7b:00:c4:61:99:52:20:c1:10:29:78:68:92:89:
86:09:2d:2e:0c:d0:68:ec:9e:9b:3b:64:cf:1b:3f:
9f:53:d8:30:81:5f:cb:71:6c:ec:cd:99:9e:6a:8e:
ca:d6:dd:f1:51:d0:b2:98:0d:e4:c1:58:3e:dc:5d:
80:37:56:d8:2f:e6:a6:88:83:2f:56:9c:b1:af:15:
11:c3:46:59:e5:7a:7a:b2:0c:d1:89:c0:05:dd:0f:
f9:c8:91:67:c4:1f:07:46:f2:95:bc:c1:aa:e2:b1:
5e:48:fc:13:cf:5f:eb:86:1f:d3:4a:75:78:2b:2f:
7a:d2:ef:b9:a3:e0:97:4a:32:c7:a6:9d:4f:5d:a9:
d3:ae:d8:e1:88:cb:64:64:54:96:63:2f:c0:f4:9c:
d0:d0:7f:f3:f3:49:63:da:19:2f:28:6f:ea:df:bc:
e5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:79:22:05:1F:2D:30:65:5C:4A:53:7F:C1:5F:8D:1C:B2:0B:B3:FE
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y3kiBR8tMGVcSlN_wV-NHLILs_4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.224.0/24
Signature Algorithm: sha256WithRSAEncryption
14:ec:55:6b:9e:b0:2c:da:b0:69:a2:75:eb:eb:4d:e8:7c:a8:
31:e7:fa:54:c2:b2:68:76:8f:62:6a:62:5f:f7:82:de:76:2f:
7d:98:4a:4f:9b:5d:cf:6c:e8:70:9d:69:82:c8:0d:e4:84:1a:
99:65:92:81:6f:b1:7e:82:5c:37:75:10:5b:e1:6d:a9:bf:2c:
23:32:33:80:3e:be:9a:dc:46:b1:36:d9:6f:02:a6:43:e4:b6:
47:ab:1c:38:a8:66:41:cf:4c:7a:9c:91:70:78:d5:8f:53:96:
ce:3f:cd:71:2a:82:53:5e:00:51:76:40:7c:58:4a:ae:ce:b9:
4b:42:69:92:48:a8:06:0b:ba:b8:2a:7e:da:97:46:4c:cc:22:
de:47:fd:b6:87:08:cf:44:66:1e:e7:aa:44:09:ce:d5:68:40:
59:4c:45:b8:fb:3b:b6:68:8f:f4:34:ac:94:20:df:18:c2:7b:
be:ec:2e:db:b2:8c:11:a2:e1:10:63:e1:eb:1c:90:37:ac:d9:
62:60:ee:ac:1c:b5:71:97:19:3f:8d:ce:30:05:a5:7e:0f:40:
cc:b9:57:85:2e:a2:a8:2f:a0:1f:2d:89:cd:15:d0:ae:36:40:
66:28:c9:a9:0a:40:1e:f7:af:0f:68:88:b2:9f:d5:3d:e5:1a:
d8:3a:a3:b0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org