Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/lv2zSL_jwU5h11DNayICDZ00wSs.roa
File: lv2zSL_jwU5h11DNayICDZ00wSs.roa (raw, json)
Hash identifier: EgcdO7Y5y5qGClyDmjeZz9wRvkhwR2bRQ8pQO2iNEaI=
Subject key identifier: 96:FD:B3:48:BF:E3:C1:4E:61:D7:50:CD:6B:22:02:0D:9D:34:C1:2B
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 08B9
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/lv2zSL_jwU5h11DNayICDZ00wSs.roa
Signing time: Sun 07 Feb 2021 12:59:23 +0000
ROA not before: Sun 07 Feb 2021 12:59:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9311
IP address blocks: 103.122.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2233 (0x8b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Feb 7 12:59:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=96FDB348BFE3C14E61D750CD6B22020D9D34C12B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:20:c9:97:57:f9:43:67:cf:94:fe:1d:98:e6:
1b:92:bf:c2:a6:15:7b:cd:b9:b7:55:9c:00:36:bd:
e5:a0:e7:9f:de:1e:e7:f9:9a:13:21:61:b1:56:03:
2c:c0:2a:b2:77:10:28:e4:a2:94:40:89:cc:93:61:
77:fa:53:85:d5:b9:81:92:8b:44:f3:17:24:d9:d8:
6d:ad:b6:14:dc:4f:66:2d:09:44:57:24:e3:62:52:
2c:21:bb:f5:9b:31:8f:ac:7d:a9:ab:a5:2a:80:f0:
56:19:87:ab:df:75:8f:77:46:7f:6b:49:ec:35:d0:
d9:35:03:45:ed:dd:ae:f1:25:c9:ac:16:e3:70:2a:
63:40:f8:1c:49:da:11:ea:d8:97:cf:27:96:b0:54:
03:96:b9:ac:dd:a4:61:76:76:ef:c9:82:d9:71:a4:
94:1b:6b:9a:01:e0:cb:ff:67:c3:35:f0:b9:6c:f3:
30:cb:17:b1:3d:6a:a5:f1:1d:fa:3e:1d:e0:4a:ff:
20:ad:2f:b3:86:d3:98:cd:f4:d0:89:2a:59:50:6d:
f5:1c:70:3b:08:ac:17:77:c9:10:1d:c1:d9:75:ea:
79:3f:a8:a7:fa:90:47:c3:9c:d4:da:aa:40:1c:17:
77:85:61:21:f2:d5:1a:7d:66:be:a9:38:ee:e2:96:
49:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:FD:B3:48:BF:E3:C1:4E:61:D7:50:CD:6B:22:02:0D:9D:34:C1:2B
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/lv2zSL_jwU5h11DNayICDZ00wSs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.224.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:f8:41:8d:b4:9b:b0:4e:a4:39:89:ed:69:c5:6e:33:21:5c:
95:5a:58:0a:06:c6:80:1a:c9:de:51:c2:29:af:1e:c0:19:4b:
6e:10:41:67:48:07:99:c0:8a:af:18:8c:49:11:12:c7:da:3d:
13:5e:ab:54:81:0d:f5:e9:9a:16:80:5d:76:93:05:e5:8a:30:
75:02:79:54:44:11:ff:59:77:ad:bb:d1:30:4e:e1:2e:53:8c:
a1:09:3d:f7:d9:44:8d:dc:3d:59:e6:f2:00:70:8f:68:d7:08:
e9:86:89:82:55:05:87:8c:e8:e3:68:14:6c:58:a2:9b:88:0d:
a9:24:68:30:2f:fb:91:1a:a5:7e:1e:a6:68:7a:e0:ab:47:d1:
37:80:42:08:51:3c:14:54:fa:9e:10:ec:b8:d9:36:39:0c:b5:
df:17:7a:db:e2:f3:85:85:22:77:67:bc:6f:65:07:57:40:05:
3b:0e:c4:f7:f3:b9:c5:12:05:fa:7c:96:30:96:03:50:5e:d8:
b5:61:ce:2c:4c:b8:fc:94:ff:c0:8d:c2:f7:f8:88:99:fb:db:
75:2d:4d:d2:89:70:36:8c:34:a2:1b:8f:a8:34:9d:0b:64:c9:
7a:19:79:e7:23:49:da:11:8c:da:1f:2d:29:d4:e0:1e:71:b9:
6c:a3:31:7b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org