Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/ipNv-JWmd7usNa1iwCQPABXzmR4.roa
File: ipNv-JWmd7usNa1iwCQPABXzmR4.roa (raw, json)
Hash identifier: dRgavEL2J+wKgLB3PWHVVQo63bDFUo2G+1asTuWdcto=
Subject key identifier: 8A:93:6F:F8:95:A6:77:BB:AC:35:AD:62:C0:24:0F:00:15:F3:99:1E
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 0B35
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/ipNv-JWmd7usNa1iwCQPABXzmR4.roa
Signing time: Fri 01 Sep 2023 10:19:28 +0000
ROA not before: Fri 01 Sep 2023 10:19:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9311
IP address blocks: 103.122.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2869 (0xb35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Sep 1 10:19:28 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8A936FF895A677BBAC35AD62C0240F0015F3991E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f8:d1:63:b8:35:7e:f2:39:a9:50:96:2f:59:
8b:20:8a:83:a8:c5:9d:b5:1f:12:a4:78:e3:23:30:
a3:42:39:28:0b:89:1e:f4:12:44:bc:71:18:80:bf:
52:d4:af:68:6d:35:08:1f:55:b4:f0:7d:2f:62:71:
e9:01:24:85:68:de:28:aa:eb:8d:10:e3:06:a9:9d:
e2:49:3d:10:41:18:60:0e:f8:85:4f:34:db:6c:25:
3f:ae:89:4e:bc:8e:eb:96:3c:d8:c3:0e:89:d9:48:
2f:14:b8:86:f7:7b:36:ce:c2:4d:d1:05:2b:be:d0:
6e:4b:1b:ab:87:20:7b:7e:84:2d:aa:a2:98:3b:e2:
90:fb:f6:ed:b8:d5:e4:bb:28:30:50:4b:87:40:92:
68:81:ba:8c:20:6e:ff:4a:48:f9:fb:ab:10:b0:5e:
20:19:2c:b8:58:19:08:1e:a2:8d:d7:5c:96:c6:66:
43:7e:e5:96:35:66:25:f4:29:32:44:c4:52:1d:a0:
71:17:97:c7:89:a0:90:4e:60:06:59:59:04:19:ca:
17:c3:26:2b:a0:c7:e4:74:13:8a:a4:e5:be:9f:68:
d2:18:79:22:aa:8f:4f:07:a8:ac:4d:71:82:f7:b3:
21:d7:62:b9:ca:6e:f7:cc:22:da:a1:0c:96:83:39:
e6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:93:6F:F8:95:A6:77:BB:AC:35:AD:62:C0:24:0F:00:15:F3:99:1E
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/ipNv-JWmd7usNa1iwCQPABXzmR4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.224.0/24
Signature Algorithm: sha256WithRSAEncryption
55:57:01:49:03:cd:2c:2d:17:9c:38:48:41:5b:1a:9b:ff:11:
9a:e7:08:65:59:ea:2d:b4:d6:0d:34:4b:cd:51:a2:c8:e9:db:
c0:8a:9b:01:5e:dc:db:d2:7b:fb:8e:24:1b:c8:64:5d:5e:d0:
10:19:bc:74:84:ce:7e:40:9d:fc:35:ab:80:71:23:24:96:a2:
98:4f:03:de:ce:c7:69:32:6e:d6:72:fa:0f:27:66:1a:dc:3d:
78:80:02:f6:0c:68:ee:6e:20:95:5a:07:86:03:d7:e9:de:b6:
2a:e1:70:95:7e:f6:73:bb:b7:3c:b1:02:2e:b5:38:cb:6b:cf:
35:9d:01:02:93:bd:ac:c8:78:fa:fa:5c:80:55:9a:e9:48:da:
bb:b0:f9:83:4a:a5:4f:fa:9a:2b:16:1e:b9:f6:8a:73:61:d4:
78:78:f3:0b:db:9e:8c:6e:ec:0d:87:41:42:f5:9a:6b:c7:6e:
9d:52:a4:28:a9:7b:a3:e2:f5:a4:83:44:57:ec:a4:85:3d:c2:
16:9b:04:9f:e8:d7:f2:8a:c3:35:c2:0d:ed:5f:75:b6:8c:75:
9f:28:4c:7f:c2:37:e1:a3:f2:a3:f1:b8:46:c2:0c:06:f9:a6:
a3:0e:d9:b7:06:f3:27:b6:72:72:5c:73:41:eb:a8:3e:ea:e5:
bf:80:2f:52
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:51 2025 by rpki-client