Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/P4vI1u_KvmzMu0APpmWytAYh2ks.roa
File: P4vI1u_KvmzMu0APpmWytAYh2ks.roa (raw, json)
Hash identifier: hFR4PskarxGgFZfMVwc2F7HXlxb9YGBsycMklSnfaPE=
Subject key identifier: 3F:8B:C8:D6:EF:CA:BE:6C:CC:BB:40:0F:A6:65:B2:B4:06:21:DA:4B
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 03DB
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/P4vI1u_KvmzMu0APpmWytAYh2ks.roa
Signing time: Wed 16 Feb 2022 14:23:25 +0000
ROA not before: Wed 16 Feb 2022 14:23:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131657
IP address blocks: 103.153.176.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 987 (0x3db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Feb 16 14:23:25 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3F8BC8D6EFCABE6CCCBB400FA665B2B40621DA4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:03:48:e3:a9:61:a6:2f:9d:95:f9:6d:a4:2a:
a4:8e:dc:84:1e:17:16:b4:51:5f:02:b9:38:31:b9:
cf:83:65:cd:7c:b1:aa:27:69:e4:09:fb:55:b1:fc:
68:28:66:2d:12:be:9a:57:33:1e:63:f2:dc:2a:bc:
40:0b:e0:24:02:91:b7:6f:66:01:56:d9:09:6c:af:
18:99:6e:24:b5:ac:a1:e3:1f:86:3c:50:15:0c:19:
97:8b:c0:dc:69:24:98:ea:d3:64:3c:7e:1b:96:b1:
5a:09:5b:ef:75:9a:7b:a6:a1:d4:c0:6b:77:6c:ff:
87:7c:5b:83:34:ae:a1:a0:de:2d:45:8d:4b:23:5a:
0f:17:de:15:31:19:fe:b8:de:61:49:1e:9e:56:7d:
1e:e0:74:30:78:43:89:13:d0:66:e0:a9:56:97:6c:
34:4a:17:a5:a4:95:87:b2:69:ea:27:38:94:82:84:
35:b3:e5:5b:cd:dd:37:1f:c6:a3:84:55:04:63:e3:
6e:31:19:a9:9b:c9:73:d3:fc:7d:fe:84:c5:22:ad:
ea:56:6a:75:2b:f4:eb:5b:6f:20:d7:8b:3d:d2:e3:
8f:b8:1c:8e:7b:1b:96:35:05:65:01:57:a0:f3:f3:
3d:11:f9:d9:ef:6b:90:53:de:58:9b:eb:29:6f:5e:
95:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:8B:C8:D6:EF:CA:BE:6C:CC:BB:40:0F:A6:65:B2:B4:06:21:DA:4B
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/P4vI1u_KvmzMu0APpmWytAYh2ks.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
46:b6:d2:6e:15:fc:27:8d:d7:64:8f:bd:e5:c9:28:2f:d6:67:
75:96:31:e1:72:b4:ed:0f:94:5f:d5:95:ec:bc:14:fb:01:6c:
80:70:e2:af:0d:90:e9:22:22:6d:b5:f0:3f:0e:a3:7b:0f:74:
02:9f:aa:9b:59:44:22:a7:6f:f8:25:ea:71:50:28:f8:af:06:
6b:87:de:17:ec:96:3c:aa:90:cd:0f:aa:0e:4d:56:24:87:14:
7f:d4:d7:02:3b:3f:4a:2e:f1:10:42:72:79:40:c7:e2:6f:8c:
b5:c1:d1:f0:48:5b:c7:6a:f2:c0:4b:25:57:96:7a:73:16:a8:
40:46:bd:2c:af:07:98:44:01:10:aa:91:f2:ee:b4:06:60:f1:
7e:65:ca:a6:51:36:90:13:e4:b8:e4:cf:3f:56:e3:f2:94:0d:
01:e6:2b:cf:ca:ad:d8:f2:0b:ba:db:7c:a2:12:3c:56:7c:39:
5e:54:ba:c1:d2:63:18:da:e2:c0:92:4e:88:7a:65:51:47:8d:
51:c1:9b:30:54:b2:79:04:6f:bc:57:bc:e1:40:f4:2a:88:14:
a4:c3:62:05:44:23:ac:15:80:73:8a:f1:99:00:a4:dd:9c:e6:
cd:43:f1:1c:06:b9:93:7f:cc:d4:e5:0f:f9:f6:2a:52:67:f2:
6a:9f:18:e8
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICA9swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMjAyMTYx
NDIzMjVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDNGOEJDOEQ2RUZDQUJF
NkNDQ0JCNDAwRkE2NjVCMkI0MDYyMURBNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHA0jjqWGmL52V+W2kKqSO3IQeFxa0UV8CuTgxuc+DZc18saon
aeQJ+1Wx/GgoZi0SvppXMx5j8twqvEAL4CQCkbdvZgFW2QlsrxiZbiS1rKHjH4Y8
UBUMGZeLwNxpJJjq02Q8fhuWsVoJW+91mnumodTAa3ds/4d8W4M0rqGg3i1FjUsj
Wg8X3hUxGf643mFJHp5WfR7gdDB4Q4kT0GbgqVaXbDRKF6WklYeyaeonOJSChDWz
5VvN3TcfxqOEVQRj424xGambyXPT/H3+hMUirepWanUr9OtbbyDXiz3S44+4HI57
G5Y1BWUBV6Dz8z0R+dnva5BT3lib6ylvXpVvAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUP4vI1u/KvmzMu0APpmWytAYh2kswHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL1A0dkkxdV9Ldm16TXUwQVBw
bVd5dEFZaDJrcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn
mbAwDQYJKoZIhvcNAQELBQADggEBAEa20m4V/CeN12SPveXJKC/WZ3WWMeFytO0P
lF/Vley8FPsBbIBw4q8NkOkiIm218D8Oo3sPdAKfqptZRCKnb/gl6nFQKPivBmuH
3hfsljyqkM0Pqg5NViSHFH/U1wI7P0ou8RBCcnlAx+JvjLXB0fBIW8dq8sBLJVeW
enMWqEBGvSyvB5hEARCqkfLutAZg8X5lyqZRNpAT5Ljkzz9W4/KUDQHmK8/Krdjy
C7rbfKISPFZ8OV5UusHSYxja4sCSToh6ZVFHjVHBmzBUsnkEb7xXvOFA9CqIFKTD
YgVEI6wVgHOK8ZkApN2c5s1D8RwGuZN/zNTlD/n2KlJn8mqfGOg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org