Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/7qC_dOdSAjY3-sP0FjjpiLhhB2Q.roa
File: 7qC_dOdSAjY3-sP0FjjpiLhhB2Q.roa (raw, json)
Hash identifier: WMrwi+QXh8tCEOViNrdHNPCqg0lPG6wmyw/4XYHBV74=
Subject key identifier: EE:A0:BF:74:E7:52:02:36:37:FA:C3:F4:16:38:E9:88:B8:61:07:64
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 0469
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/7qC_dOdSAjY3-sP0FjjpiLhhB2Q.roa
Signing time: Thu 15 Sep 2022 02:34:59 +0000
ROA not before: Thu 15 Sep 2022 02:34:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 134823
IP address blocks: 103.153.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1129 (0x469)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 15 02:34:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EEA0BF74E752023637FAC3F41638E988B8610764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b7:cd:d7:27:5a:70:b2:67:01:0d:d6:34:8d:
da:5b:13:7b:d9:8d:24:93:39:27:bd:26:ba:98:6e:
fa:cf:14:44:5e:24:fd:ae:c4:9d:54:54:0f:5a:79:
63:15:67:e0:23:11:92:b0:d6:93:75:5d:f8:42:82:
97:39:7f:13:a5:68:65:2b:5a:93:d4:32:e1:a1:ab:
1a:5f:ab:59:98:31:e1:c1:2a:2c:98:c3:af:49:27:
bf:33:c3:d9:d6:46:7a:03:80:40:f8:d0:08:b3:b5:
1c:d7:48:ef:15:da:bf:6a:17:ef:77:53:c6:9f:a1:
5a:81:e3:c3:f0:8c:e0:43:31:f1:40:5e:4f:03:f7:
43:ea:e4:b1:40:c7:2c:a3:14:1e:28:52:03:a5:0a:
29:4d:54:ac:98:2d:83:fc:0f:b0:ea:9a:6e:29:57:
a5:8c:41:58:2a:e8:b6:77:10:c2:f6:e6:e6:5d:82:
f8:bc:c8:6c:df:3d:dc:9f:3b:c7:8b:2f:9e:80:02:
e6:52:6c:94:64:10:e0:4e:b9:6f:84:73:8e:e7:34:
2e:96:39:f6:2a:7f:12:dc:45:3b:4a:0c:f7:0f:e6:
0b:22:0e:f6:0b:73:1b:22:e7:b5:7f:58:5c:5f:3b:
40:43:f7:98:db:3d:6c:f4:a4:f7:ba:fe:c4:bc:8f:
f7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:A0:BF:74:E7:52:02:36:37:FA:C3:F4:16:38:E9:88:B8:61:07:64
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/7qC_dOdSAjY3-sP0FjjpiLhhB2Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ea:db:65:5d:bc:4a:7a:ee:02:d4:56:84:d4:84:0f:49:51:
19:90:79:0f:7b:99:1a:b8:9c:4c:6e:68:64:37:7f:5a:cf:49:
c1:8b:b1:40:83:33:23:b7:99:65:3d:73:da:92:5c:52:14:a5:
01:94:05:7c:36:83:35:34:e6:0e:95:32:ec:5c:2f:81:9e:6a:
dd:cd:25:73:93:45:3b:0c:1b:cc:97:71:26:d8:cd:73:d9:60:
18:a7:5b:cc:ac:83:1a:1a:23:07:77:cc:10:9c:6c:79:4c:75:
8d:21:6a:c9:6c:9b:df:76:ad:8e:18:ae:80:ef:98:6a:83:4a:
08:c8:80:68:32:cb:ae:ec:1a:f7:1d:b3:b6:a8:f1:8d:30:b3:
f0:05:6f:bb:a8:86:1c:b4:c0:08:98:ad:d0:a3:b5:ee:cd:8c:
61:ab:a2:6a:ca:01:e4:11:da:75:b0:db:2b:7e:d4:de:d3:34:
ac:85:87:5c:a2:90:56:0e:d5:ba:5f:0f:a2:28:b0:0e:96:32:
ef:4f:2e:38:f8:6b:42:a6:fd:57:84:a1:38:25:cc:a0:ea:6b:
39:0a:a6:39:8f:49:20:f4:26:05:17:22:92:81:4b:ef:f4:af:
4b:8b:88:34:e7:a9:6c:2f:31:38:49:93:fa:83:39:1b:eb:10:
43:ec:2e:29
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICBGkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMjA5MTUw
MjM0NTlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEVFQTBCRjc0RTc1MjAy
MzYzN0ZBQzNGNDE2MzhFOTg4Qjg2MTA3NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6t83XJ1pwsmcBDdY0jdpbE3vZjSSTOSe9JrqYbvrPFEReJP2u
xJ1UVA9aeWMVZ+AjEZKw1pN1XfhCgpc5fxOlaGUrWpPUMuGhqxpfq1mYMeHBKiyY
w69JJ78zw9nWRnoDgED40AiztRzXSO8V2r9qF+93U8afoVqB48PwjOBDMfFAXk8D
90Pq5LFAxyyjFB4oUgOlCilNVKyYLYP8D7Dqmm4pV6WMQVgq6LZ3EML25uZdgvi8
yGzfPdyfO8eLL56AAuZSbJRkEOBOuW+Ec47nNC6WOfYqfxLcRTtKDPcP5gsiDvYL
cxsi57V/WFxfO0BD95jbPWz0pPe6/sS8j/ffAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU7qC/dOdSAjY3+sP0FjjpiLhhB2QwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLzdxQ19kT2RTQWpZMy1zUDBG
ampwaUxoaEIyUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
mbAwDQYJKoZIhvcNAQELBQADggEBAFDq22VdvEp67gLUVoTUhA9JURmQeQ97mRq4
nExuaGQ3f1rPScGLsUCDMyO3mWU9c9qSXFIUpQGUBXw2gzU05g6VMuxcL4Geat3N
JXOTRTsMG8yXcSbYzXPZYBinW8ysgxoaIwd3zBCcbHlMdY0haslsm992rY4YroDv
mGqDSgjIgGgyy67sGvcds7ao8Y0ws/AFb7uohhy0wAiYrdCjte7NjGGromrKAeQR
2nWw2yt+1N7TNKyFh1yikFYO1bpfD6IosA6WMu9PLjj4a0Km/VeEoTglzKDqazkK
pjmPSSD0JgUXIpKBS+/0r0uLiDTnqWwvMThJk/qDORvrEEPsLik=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org