Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/g3plueJBGn0Mw_Vt6d-tjTWztPI.roa
File: g3plueJBGn0Mw_Vt6d-tjTWztPI.roa (raw, json)
Hash identifier: CGvRz0oW3UkSokVDKWH/wmSIIDKHH9hVUJ1ICgdGU9g=
Subject key identifier: 83:7A:65:B9:E2:41:1A:7D:0C:C3:F5:6D:E9:DF:AD:8D:35:B3:B4:F2
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 02C9
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/g3plueJBGn0Mw_Vt6d-tjTWztPI.roa
Signing time: Sun 07 Feb 2021 13:03:47 +0000
ROA not before: Sun 07 Feb 2021 13:03:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20473
IP address blocks: 103.153.176.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 713 (0x2c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Feb 7 13:03:47 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=837A65B9E2411A7D0CC3F56DE9DFAD8D35B3B4F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:53:45:34:2e:47:ae:72:8e:30:03:fa:cd:59:
33:02:93:a8:9b:13:c3:33:44:2d:07:e7:de:52:9d:
47:66:97:5f:bc:1f:48:bd:c6:d0:9e:00:f9:e3:a9:
6c:9d:55:d5:fe:20:fe:81:5a:14:5f:2f:b5:78:43:
db:f7:79:39:b7:6b:c3:c8:11:33:8b:bd:a0:c9:6f:
41:a8:97:15:f0:2b:2c:93:63:33:9f:eb:a5:01:c1:
18:d1:fb:a6:d0:66:99:3d:d5:2a:eb:01:80:37:85:
53:b4:06:23:36:87:1d:46:8e:f7:bf:07:be:a3:e8:
c8:4e:fb:a3:54:6a:7f:2c:b2:42:35:b0:90:9b:b7:
b2:3e:c9:b3:72:da:de:df:c0:96:c3:b4:19:92:07:
aa:1f:fc:18:19:ab:2d:e9:f5:ef:c5:fa:ac:42:f8:
41:37:82:fe:7c:fc:98:75:7c:7c:c9:e4:c1:c0:a3:
71:4d:b6:4d:4c:e2:7d:14:b0:7a:a7:41:a1:cf:95:
65:c5:2a:32:a3:fc:8a:99:cc:44:76:98:98:d4:f7:
1a:73:e5:4b:cc:ae:d0:92:c5:51:df:ed:f8:29:0d:
30:5d:ef:03:f0:ab:ee:29:fa:7f:25:de:c7:d7:7e:
dd:fc:72:7e:6b:03:57:36:bb:35:13:e4:a6:c1:d6:
cc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:7A:65:B9:E2:41:1A:7D:0C:C3:F5:6D:E9:DF:AD:8D:35:B3:B4:F2
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/g3plueJBGn0Mw_Vt6d-tjTWztPI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:39:f4:9d:67:75:94:66:a3:a4:3e:29:54:09:7c:61:57:4a:
74:5b:06:61:45:80:91:76:bb:0d:7e:99:61:67:16:fb:4e:67:
23:c5:ac:d9:ef:db:b8:1f:6e:ec:8e:46:53:0f:66:52:b8:6a:
c1:08:93:f0:13:49:6b:7f:a2:45:46:f6:95:87:52:33:ff:eb:
35:c0:4f:3a:bf:17:af:ed:f9:2e:ff:83:bc:1b:b3:42:2c:76:
eb:3b:06:60:64:e2:c9:82:94:ab:78:6f:eb:63:55:66:49:c5:
6d:55:d5:c0:96:f7:04:21:eb:49:4c:14:58:65:52:1c:28:d4:
25:9a:05:3a:e4:2b:15:70:dc:10:08:69:d4:e1:04:91:cc:68:
f6:33:6c:f0:c3:1c:68:a0:49:bd:fe:c5:56:88:11:0c:e9:30:
db:15:2c:a0:b1:59:cb:67:f8:18:28:da:19:de:c9:4e:1b:b6:
5b:6b:1b:ce:8a:46:8b:49:20:8e:e4:c2:bc:09:e9:65:47:9f:
f8:7f:03:8e:d7:7e:15:00:d7:f4:1f:ab:15:72:94:5c:47:11:
7b:cc:28:fd:b3:3b:d1:1d:5c:3d:fb:c3:0d:ee:df:c7:93:ff:
59:1b:d9:20:26:66:ba:9a:8c:7e:57:74:13:b1:76:de:04:6b:
92:9f:05:0e
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICAskwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMTAyMDcx
MzAzNDdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDgzN0E2NUI5RTI0MTFB
N0QwQ0MzRjU2REU5REZBRDhEMzVCM0I0RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpU0U0Lkeuco4wA/rNWTMCk6ibE8MzRC0H595SnUdml1+8H0i9
xtCeAPnjqWydVdX+IP6BWhRfL7V4Q9v3eTm3a8PIETOLvaDJb0GolxXwKyyTYzOf
66UBwRjR+6bQZpk91SrrAYA3hVO0BiM2hx1Gjve/B76j6MhO+6NUan8sskI1sJCb
t7I+ybNy2t7fwJbDtBmSB6of/BgZqy3p9e/F+qxC+EE3gv58/Jh1fHzJ5MHAo3FN
tk1M4n0UsHqnQaHPlWXFKjKj/IqZzER2mJjU9xpz5UvMrtCSxVHf7fgpDTBd7wPw
q+4p+n8l3sfXft38cn5rA1c2uzUT5KbB1sxlAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUg3plueJBGn0Mw/Vt6d+tjTWztPIwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2czcGx1ZUpCR24wTXdfVnQ2
ZC10alRXenRQSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn
mbAwDQYJKoZIhvcNAQELBQADggEBAI059J1ndZRmo6Q+KVQJfGFXSnRbBmFFgJF2
uw1+mWFnFvtOZyPFrNnv27gfbuyORlMPZlK4asEIk/ATSWt/okVG9pWHUjP/6zXA
Tzq/F6/t+S7/g7wbs0Isdus7BmBk4smClKt4b+tjVWZJxW1V1cCW9wQh60lMFFhl
Uhwo1CWaBTrkKxVw3BAIadThBJHMaPYzbPDDHGigSb3+xVaIEQzpMNsVLKCxWctn
+Bgo2hneyU4btltrG86KRotJII7kwrwJ6WVHn/h/A47XfhUA1/QfqxVylFxHEXvM
KP2zO9EdXD37ww3u38eT/1kb2SAmZrqajH5XdBOxdt4Ea5KfBQ4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org