Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/zuz_M981SiSKLT1ep9PyhsKUu20.roa
File: zuz_M981SiSKLT1ep9PyhsKUu20.roa (raw, json)
Hash identifier: zBmEzx9wdzesdQwa+pJ1pmNA0EPjW8XFImq23VoXWxI=
Subject key identifier: CE:EC:FF:33:DF:35:4A:24:8A:2D:3D:5E:A7:D3:F2:86:C2:94:BB:6D
Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Certificate serial: 0959
Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/zuz_M981SiSKLT1ep9PyhsKUu20.roa
Signing time: Wed 29 Sep 2021 02:53:49 +0000
ROA not before: Wed 29 Sep 2021 02:53:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131618
IP address blocks: 103.122.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2393 (0x959)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B
Validity
Not Before: Sep 29 02:53:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CEECFF33DF354A248A2D3D5EA7D3F286C294BB6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a5:6a:6c:09:7c:03:4e:40:20:a1:b3:3a:63:
f1:25:db:ae:ba:d0:61:10:06:b0:dc:24:5b:3a:98:
b5:04:70:d1:03:c5:b5:3e:c3:6e:42:00:e5:7e:e2:
be:ab:6b:b1:12:8c:67:64:10:42:86:f1:2d:20:69:
a6:62:b2:a8:2f:44:cc:3a:12:7c:b3:ec:60:e2:48:
b6:c0:2c:de:e6:cc:a5:9f:26:c4:b3:99:cc:34:59:
cb:4d:a2:de:14:14:8d:bb:be:b1:b1:25:f3:45:a4:
cf:f3:b2:32:a7:b2:7e:5d:55:9a:ba:f1:99:4c:8d:
c3:d9:7c:00:ff:09:b1:87:56:f5:13:a4:95:94:bc:
24:71:7b:bb:f9:87:cd:61:98:0d:c1:c4:c1:b1:79:
24:15:66:a0:21:63:f1:f1:6a:20:a3:10:0d:43:c6:
13:35:ec:cd:e2:6e:69:56:47:d4:5e:5c:f4:b3:49:
09:a4:c3:b7:fe:56:67:7a:a9:fd:0e:97:17:34:5e:
6c:cb:d4:da:9e:24:61:ab:c4:e7:3b:d3:31:09:0b:
7f:20:a6:6a:b9:4a:f9:b3:02:b1:d6:b4:f5:05:60:
45:41:51:cc:e1:2c:1c:83:b1:95:e8:2d:f2:10:b8:
e4:12:de:65:91:48:83:46:7e:c3:ac:f9:fc:45:01:
de:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:EC:FF:33:DF:35:4A:24:8A:2D:3D:5E:A7:D3:F2:86:C2:94:BB:6D
X509v3 Authority Key Identifier:
keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/zuz_M981SiSKLT1ep9PyhsKUu20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.226.0/24
Signature Algorithm: sha256WithRSAEncryption
22:f3:55:71:6d:82:e1:f4:6c:fe:0d:8a:0d:8d:0d:8a:65:7e:
cb:09:a7:b7:f8:78:91:26:2e:41:5c:20:0e:54:2c:aa:78:b2:
75:92:5f:94:97:a3:db:d6:d1:0c:75:ba:ad:b0:2b:5a:51:c4:
e8:bb:2a:55:d1:4e:e3:a7:71:98:26:c8:78:33:fe:d7:cf:1a:
3a:02:96:ac:f5:86:f1:74:f4:bb:fb:04:d8:54:d0:71:42:64:
59:a0:48:e2:a3:b8:42:b7:c9:49:2b:11:69:cb:fd:38:8a:2b:
f5:c5:5d:2d:7c:f4:68:a8:57:22:e7:72:c8:12:4b:f9:13:3f:
a0:a1:88:29:80:ce:d7:65:9d:70:11:43:a4:4b:9d:cb:e0:56:
f9:77:13:f2:eb:7a:a3:cd:11:5b:d8:a4:57:5b:70:65:21:a3:
8f:ee:a1:eb:6a:9c:41:18:f7:3e:31:84:f2:ac:c6:f7:f4:66:
39:88:c8:52:04:c6:07:05:7e:7f:7a:3c:78:84:63:0e:15:b6:
d4:e1:df:45:05:33:e8:87:b1:c0:00:c2:f2:4b:42:db:0a:ad:
99:65:c1:d1:c1:a0:0a:2b:7b:2a:6b:20:85:76:f7:b2:87:fa:
9e:e2:67:1a:f5:f0:25:66:aa:a2:53:22:59:29:49:af:0c:28:
f9:4e:9a:07
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org