Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/bN8ovZs2q1CvvF7xlI_HHzofOU8.roa
File: bN8ovZs2q1CvvF7xlI_HHzofOU8.roa (raw, json)
Hash identifier: RF7elotzgbpJ5DWVkhFidTKVSubWnh1nIdE7OafH7Xk=
Subject key identifier: 6C:DF:28:BD:9B:36:AB:50:AF:BC:5E:F1:94:8F:C7:1F:3A:1F:39:4F
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 0958
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/bN8ovZs2q1CvvF7xlI_HHzofOU8.roa
Signing time: Wed 29 Sep 2021 02:53:49 +0000
ROA not before: Wed 29 Sep 2021 02:53:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131618
IP address blocks: 103.122.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2392 (0x958)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Sep 29 02:53:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6CDF28BD9B36AB50AFBC5EF1948FC71F3A1F394F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c1:8c:02:41:f3:c4:7d:21:90:91:72:b0:87:
37:99:b0:7d:32:b0:eb:d5:f8:13:a9:95:fe:c1:13:
ac:9d:88:c3:05:5d:63:14:fc:77:72:9b:3d:69:00:
d5:11:26:d6:00:eb:a1:61:e3:a7:11:ab:c2:88:55:
ab:83:31:c3:34:f2:56:68:1d:9e:20:36:97:17:d1:
49:20:56:1a:89:fa:fe:5a:f8:92:ce:b8:75:f7:91:
4e:97:12:36:50:4d:f7:e7:86:d9:6f:7c:b9:17:49:
7f:20:5f:29:3d:1f:4f:4a:f5:1e:5d:5a:d2:f4:35:
b3:0f:bc:07:00:f8:98:50:6f:fa:7d:e0:08:30:44:
c0:72:2c:e5:69:74:a0:5c:44:83:e7:77:ee:0b:99:
2f:55:12:76:88:8f:4c:d2:81:ba:9a:5c:41:05:db:
a8:84:e2:74:ab:f0:77:e8:29:f5:df:d8:8d:cf:9f:
2b:ce:7d:3f:2c:dd:14:0a:00:6c:51:cb:49:28:c2:
16:da:ac:58:f3:75:32:8e:7f:8b:3a:e6:b0:a0:fd:
c7:60:aa:a7:86:7a:fd:7c:93:86:30:a6:c2:70:3d:
81:9f:22:38:d0:86:87:1d:8e:f7:6d:58:db:90:f4:
51:27:43:30:1d:62:2c:36:ed:f2:1a:a2:03:54:7a:
2a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:DF:28:BD:9B:36:AB:50:AF:BC:5E:F1:94:8F:C7:1F:3A:1F:39:4F
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/bN8ovZs2q1CvvF7xlI_HHzofOU8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.227.0/24
Signature Algorithm: sha256WithRSAEncryption
78:f1:91:c3:fe:16:eb:60:ba:c7:38:49:3d:91:2f:59:f3:46:
49:1f:6d:34:99:92:d2:6e:87:8d:3b:af:d4:bc:3b:62:eb:32:
4a:e7:78:15:9d:80:22:12:b2:c2:1f:4f:47:70:28:9e:a2:e5:
e6:62:41:9b:30:03:a0:53:b9:8a:01:b8:0c:16:f0:15:13:f8:
7a:51:99:c5:8f:a7:9a:7b:2d:a2:2b:01:74:89:46:11:a3:da:
cb:26:46:d8:bb:24:7f:18:cf:d5:d0:5d:76:59:cc:5c:03:aa:
45:86:04:fd:e1:0e:17:63:cb:2c:f4:76:8d:83:1a:36:43:66:
0d:b7:a6:9d:bb:ff:dc:2b:30:96:5d:4d:97:41:c6:cb:0c:36:
4d:f6:e1:a7:2c:31:7f:62:97:d9:cb:d3:30:74:94:bd:dd:dc:
b7:8f:a2:6e:97:30:40:fa:1d:c9:60:f2:37:99:46:34:36:66:
06:b0:41:15:64:d6:93:57:15:3d:58:b8:ad:00:0a:66:d8:3f:
2b:72:37:c6:b9:36:74:92:d5:88:21:42:f5:53:7a:61:39:d8:
2a:59:9b:b5:4f:58:21:0c:35:ad:e6:99:30:41:90:7d:4d:54:
60:28:a2:0f:5e:fb:dc:20:0f:27:f1:1e:8f:39:0d:8a:7a:1d:
8f:ee:02:b9
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org