Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/Mx5ngSYKv7vpDcTSWul1yJRtPb0.roa
File: Mx5ngSYKv7vpDcTSWul1yJRtPb0.roa (raw, json)
Hash identifier: Im5GvOEcvY4kXnWoqP8jJuv1Skz/B3yQkHje1MmcHW4=
Subject key identifier: 33:1E:67:81:26:0A:BF:BB:E9:0D:C4:D2:5A:E9:75:C8:94:6D:3D:BD
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 0377
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/Mx5ngSYKv7vpDcTSWul1yJRtPb0.roa
Signing time: Wed 29 Sep 2021 02:53:57 +0000
ROA not before: Wed 29 Sep 2021 02:53:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131657
IP address blocks: 103.153.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 887 (0x377)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 29 02:53:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=331E6781260ABFBBE90DC4D25AE975C8946D3DBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d3:22:78:a5:64:29:9d:8d:31:38:4b:47:fd:
ee:92:63:c7:63:0b:0b:f0:66:df:9c:03:c6:b3:f7:
96:c3:48:15:fe:b6:1a:c0:37:ca:ab:bd:b1:bc:33:
f8:1b:4c:dc:90:37:a2:20:42:fe:3f:5e:49:37:eb:
03:78:40:1e:1c:47:d1:27:f6:01:d0:c1:ac:7f:fa:
bb:16:7e:bf:9d:65:05:62:bf:0f:a5:65:2a:03:cb:
51:ee:49:b3:bd:e2:be:6e:8b:76:d8:c4:e4:bf:c0:
5d:85:90:9d:63:bc:31:a4:81:c2:82:d4:b5:aa:3d:
73:b8:58:88:3e:b5:a5:db:6f:e4:53:a0:7b:76:b4:
5e:b6:7b:d6:b9:e9:56:a2:ad:2c:e3:e6:48:b4:63:
76:b9:65:86:63:96:9b:43:e8:72:d9:10:03:c0:10:
a5:0c:a0:32:bd:99:01:7e:59:25:2b:7d:e8:93:e8:
95:7a:34:c1:25:e7:20:83:99:6f:00:e9:22:8f:c5:
1b:60:8b:37:3f:68:e3:ff:da:41:db:1e:5f:2d:68:
63:d4:78:e6:e6:9b:68:f1:94:d2:58:7b:4f:55:b1:
ed:20:e5:22:32:00:e1:18:ae:f7:62:4f:ab:25:ca:
60:39:0c:bf:3d:bc:be:91:b9:5a:a6:4c:93:57:b8:
45:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:1E:67:81:26:0A:BF:BB:E9:0D:C4:D2:5A:E9:75:C8:94:6D:3D:BD
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/Mx5ngSYKv7vpDcTSWul1yJRtPb0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.177.0/24
Signature Algorithm: sha256WithRSAEncryption
35:b2:98:d5:f0:10:94:16:0e:52:b3:57:a1:1b:2c:bc:0b:f3:
b4:5f:10:44:02:86:fd:1d:bd:90:b3:2a:70:36:7e:94:9b:a5:
1a:f0:e2:92:1b:09:04:da:e6:78:22:c0:f5:a5:72:b6:ed:b8:
0a:a0:24:05:b2:42:59:47:59:54:7d:66:37:2e:f9:22:36:9b:
a3:c0:d8:f7:fa:18:d6:2b:ce:82:74:12:c7:93:13:af:93:d6:
8c:6c:01:81:cd:48:47:54:73:be:04:60:66:c2:a5:b5:0e:b2:
c5:ee:56:38:4a:16:ad:ba:de:f7:5b:f5:49:e8:c6:5b:7a:9c:
4b:b0:2e:76:d8:74:18:8f:61:83:22:05:52:bb:15:b4:96:9c:
4f:72:93:7d:3e:0e:5f:d8:a9:61:62:e8:a7:eb:d6:f4:66:29:
62:cd:7f:1c:70:23:f4:d2:f0:d2:56:0a:7f:a1:eb:75:da:01:
f1:7d:1f:1c:f2:ab:65:cd:c7:fe:1b:c0:e9:ec:e4:66:1e:df:
01:2a:ef:a9:f4:77:d5:84:2a:60:77:a2:c4:22:e0:71:bb:e4:
b7:de:ea:f8:a0:5f:85:a2:fc:dc:56:76:02:e3:47:cd:51:88:
cd:d8:a6:dd:19:43:14:b0:6c:20:ce:b3:ed:34:16:b4:11:5a:
a5:17:87:1f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICA3cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMTA5Mjkw
MjUzNTdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDMzMUU2NzgxMjYwQUJG
QkJFOTBEQzREMjVBRTk3NUM4OTQ2RDNEQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDr0yJ4pWQpnY0xOEtH/e6SY8djCwvwZt+cA8az95bDSBX+thrA
N8qrvbG8M/gbTNyQN6IgQv4/Xkk36wN4QB4cR9En9gHQwax/+rsWfr+dZQVivw+l
ZSoDy1HuSbO94r5ui3bYxOS/wF2FkJ1jvDGkgcKC1LWqPXO4WIg+taXbb+RToHt2
tF62e9a56VairSzj5ki0Y3a5ZYZjlptD6HLZEAPAEKUMoDK9mQF+WSUrfeiT6JV6
NMEl5yCDmW8A6SKPxRtgizc/aOP/2kHbHl8taGPUeObmm2jxlNJYe09Vse0g5SIy
AOEYrvdiT6slymA5DL89vL6RuVqmTJNXuEWxAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUMx5ngSYKv7vpDcTSWul1yJRtPb0wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL014NW5nU1lLdjd2cERjVFNX
dWwxeUpSdFBiMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
mbEwDQYJKoZIhvcNAQELBQADggEBADWymNXwEJQWDlKzV6EbLLwL87RfEEQChv0d
vZCzKnA2fpSbpRrw4pIbCQTa5ngiwPWlcrbtuAqgJAWyQllHWVR9Zjcu+SI2m6PA
2Pf6GNYrzoJ0EseTE6+T1oxsAYHNSEdUc74EYGbCpbUOssXuVjhKFq263vdb9Uno
xlt6nEuwLnbYdBiPYYMiBVK7FbSWnE9yk30+Dl/YqWFi6Kfr1vRmKWLNfxxwI/TS
8NJWCn+h63XaAfF9Hxzyq2XNx/4bwOns5GYe3wEq76n0d9WEKmB3osQi4HG75Lfe
6vigX4Wi/NxWdgLjR81RiM3Ypt0ZQxSwbCDOs+00FrQRWqUXhx8=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:07 2023 by rpki-client on console-fra.rpki-client.org