Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/3syFzer9HRr5mcvZyRQSjH2If4w.roa
File: 3syFzer9HRr5mcvZyRQSjH2If4w.roa (raw, json)
Hash identifier: +4VLbYML9qW0WtNOWMNBsnux9o8oB/r9DXZ+SU2SFQk=
Subject key identifier: DE:CC:85:CD:EA:FD:1D:1A:F9:99:CB:D9:C9:14:12:8C:7D:88:7F:8C
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 0371
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/3syFzer9HRr5mcvZyRQSjH2If4w.roa
Signing time: Wed 29 Sep 2021 02:53:56 +0000
ROA not before: Wed 29 Sep 2021 02:53:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17418
IP address blocks: 103.153.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 881 (0x371)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 29 02:53:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DECC85CDEAFD1D1AF999CBD9C914128C7D887F8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:40:7b:a0:65:d1:5c:5f:0c:0a:45:0b:91:c5:
c0:bd:2b:92:7f:d2:c0:9e:56:58:db:d0:11:1f:ef:
0a:ea:6d:4d:be:5c:da:06:cc:cd:b1:b1:d9:f5:10:
1c:a5:9e:b3:c0:17:c1:dd:b4:ac:29:01:50:cd:17:
f2:f0:1a:ab:55:e6:2e:28:c9:93:00:26:f8:9e:39:
f2:a4:fc:88:8e:73:b3:13:ec:33:b8:15:72:89:62:
eb:11:10:49:95:1a:ad:80:46:1f:b5:db:db:d8:0d:
52:2f:8e:dd:9d:66:80:8a:aa:8a:54:b6:e8:8e:0e:
2c:3c:e0:af:70:05:04:e1:dd:b7:e1:95:ad:01:7e:
35:5e:10:f7:a0:4d:67:58:c6:55:17:0d:47:13:f6:
1e:89:80:7b:ef:66:3f:77:45:ff:2f:80:a4:87:55:
d0:fc:d9:21:8e:3f:a5:9d:86:02:af:96:e6:d5:67:
19:ad:55:50:bb:c7:ad:a3:60:cb:c3:c4:19:67:3e:
16:22:db:c9:d6:18:a9:69:d6:f3:c0:94:d8:b5:d8:
45:fe:f6:b3:0a:10:cc:45:49:3f:2c:79:f2:66:7f:
31:16:eb:ea:b4:3f:25:4c:29:fc:86:b5:02:1f:9d:
39:8b:e8:29:e7:db:54:db:1d:ea:b3:4d:56:14:22:
5e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:CC:85:CD:EA:FD:1D:1A:F9:99:CB:D9:C9:14:12:8C:7D:88:7F:8C
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/3syFzer9HRr5mcvZyRQSjH2If4w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.177.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:73:aa:b9:c8:a4:f0:29:49:2c:69:ab:00:ea:6c:47:fd:86:
a4:69:f3:a8:8b:2b:02:1e:1d:ee:0f:78:72:63:6b:34:7f:a0:
df:d9:6a:ca:8c:94:f4:2d:9b:9e:a0:91:7c:07:db:89:e8:3d:
1d:7f:97:f4:13:11:f4:4f:bf:f6:39:e7:dd:4a:37:cd:19:12:
39:99:95:81:2f:60:4e:ef:5a:a4:7b:86:d3:f2:e7:20:4a:c3:
53:69:9f:e5:bf:d5:63:c6:bb:af:b6:23:66:fd:3e:78:d8:12:
f1:97:0c:e9:87:99:a7:e3:64:9b:e9:50:7f:d1:a7:0c:7a:da:
e8:da:21:ac:09:25:08:7e:1b:c0:68:0b:3a:94:f2:c2:ae:08:
c4:89:4b:bb:86:a0:7f:94:ab:e4:84:62:7e:52:55:c8:f6:9d:
0d:fa:7c:40:86:ec:1f:b4:fa:1d:6e:e3:b2:d6:76:de:b1:15:
52:88:72:7b:d7:84:7e:a2:d5:04:3d:9c:6d:02:e2:ed:6b:e1:
ca:7f:d0:c9:70:7a:43:6f:35:7b:44:6a:21:af:d3:1b:95:1a:
90:75:d9:55:08:2b:1f:2b:37:03:66:d1:14:ee:92:50:0e:d9:
14:f7:53:53:45:59:37:92:12:ca:d1:9a:91:6e:8c:c4:2a:b5:
82:56:5d:e0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICA3EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMTA5Mjkw
MjUzNTZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKERFQ0M4NUNERUFGRDFE
MUFGOTk5Q0JEOUM5MTQxMjhDN0Q4ODdGOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4QHugZdFcXwwKRQuRxcC9K5J/0sCeVljb0BEf7wrqbU2+XNoG
zM2xsdn1EBylnrPAF8HdtKwpAVDNF/LwGqtV5i4oyZMAJvieOfKk/IiOc7MT7DO4
FXKJYusREEmVGq2ARh+129vYDVIvjt2dZoCKqopUtuiODiw84K9wBQTh3bfhla0B
fjVeEPegTWdYxlUXDUcT9h6JgHvvZj93Rf8vgKSHVdD82SGOP6WdhgKvlubVZxmt
VVC7x62jYMvDxBlnPhYi28nWGKlp1vPAlNi12EX+9rMKEMxFST8sefJmfzEW6+q0
PyVMKfyGtQIfnTmL6Cnn21TbHeqzTVYUIl7VAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU3syFzer9HRr5mcvZyRQSjH2If4wwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLzNzeUZ6ZXI5SFJyNW1jdlp5
UlFTakgySWY0dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
mbEwDQYJKoZIhvcNAQELBQADggEBAMRzqrnIpPApSSxpqwDqbEf9hqRp86iLKwIe
He4PeHJjazR/oN/ZasqMlPQtm56gkXwH24noPR1/l/QTEfRPv/Y5591KN80ZEjmZ
lYEvYE7vWqR7htPy5yBKw1Npn+W/1WPGu6+2I2b9PnjYEvGXDOmHmafjZJvpUH/R
pwx62ujaIawJJQh+G8BoCzqU8sKuCMSJS7uGoH+Uq+SEYn5SVcj2nQ36fECG7B+0
+h1u47LWdt6xFVKIcnvXhH6i1QQ9nG0C4u1r4cp/0MlwekNvNXtEaiGv0xuVGpB1
2VUIKx8rNwNm0RTuklAO2RT3U1NFWTeSEsrRmpFujMQqtYJWXeA=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org