Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/iGLG1FBcdtM757PIxwGtPuuG87s.roa
File: iGLG1FBcdtM757PIxwGtPuuG87s.roa (raw, json)
Hash identifier: oiqOgsi1tOQYbfdFVEPVz9m6iYQmFtPzM8ikaoLNAsQ=
Subject key identifier: 88:62:C6:D4:50:5C:76:D3:3B:E7:B3:C8:C7:01:AD:3E:EB:86:F3:BB
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 03
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/iGLG1FBcdtM757PIxwGtPuuG87s.roa
Signing time: Fri 24 Jul 2020 08:34:03 +0000
ROA not before: Fri 24 Jul 2020 08:34:03 +0000
ROA not after: Sat 24 Jul 2021 08:03:22 +0000
asID: 134823
IP address blocks: 103.153.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Jul 24 08:34:03 2020 GMT
Not After : Jul 24 08:03:22 2021 GMT
Subject: CN=8862C6D4505C76D33BE7B3C8C701AD3EEB86F3BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2b:d4:fa:9a:e4:05:bd:8a:69:ef:80:7a:e8:
3e:bf:d4:c9:eb:61:e1:81:21:73:77:b9:a6:e1:6e:
13:ea:31:fd:9a:09:fa:e7:e7:e2:a5:25:66:ef:5d:
26:c3:9e:af:34:c6:ba:e2:87:e8:e1:2d:87:1f:88:
c0:a1:2b:2e:ae:06:d6:f6:b0:88:b4:ee:a3:5e:f0:
d3:25:3b:b4:50:46:a5:bf:f2:dd:8b:82:cd:f3:3a:
48:b2:1c:1b:87:ea:51:9a:c1:9c:da:ed:60:de:3c:
52:c0:36:95:53:d6:5a:5b:0a:bd:0d:74:74:e1:60:
72:66:5a:05:52:ee:79:cf:c8:78:40:a2:85:47:7e:
01:45:ce:d9:a6:e4:bd:4e:c4:af:e0:01:2c:2b:ee:
f5:eb:21:1c:58:12:db:f2:ab:bf:e6:f0:97:a8:61:
46:8d:f4:c2:37:a6:a4:49:a3:18:4b:b8:25:4b:7d:
f9:47:63:0d:f5:46:d3:2c:d6:5e:f3:44:50:4a:2b:
ce:c0:ed:c6:ae:4f:26:99:1e:c3:88:54:94:8d:33:
2c:3a:8a:90:0c:4c:b8:f3:d4:7e:29:df:24:e2:be:
73:ea:5b:5a:1b:1b:9f:3e:63:c5:62:98:ff:9c:9d:
28:d7:22:7c:8a:ec:06:50:41:ba:de:be:8a:82:6f:
cf:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:62:C6:D4:50:5C:76:D3:3B:E7:B3:C8:C7:01:AD:3E:EB:86:F3:BB
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/iGLG1FBcdtM757PIxwGtPuuG87s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:45:b0:b8:f2:8d:96:50:cc:7b:d9:95:da:93:ff:89:d4:ee:
25:0f:f0:e8:5f:a4:f9:44:72:81:a1:79:5b:6f:24:d1:da:57:
1b:d1:52:b8:64:41:ed:bf:82:8c:64:03:fa:47:e3:e1:c7:b3:
26:f8:16:a6:4e:39:cd:ac:2e:ab:4b:cc:31:19:21:d9:30:a6:
ba:7a:64:9f:b8:ca:95:63:1f:d6:05:30:34:06:9f:c9:8f:12:
76:30:1d:e3:4a:c5:dc:b2:2b:13:42:42:79:b3:64:a8:31:22:
2f:49:f6:07:de:80:e2:6d:fb:5c:01:11:44:e5:73:cf:4d:fc:
7f:3a:9d:4d:56:bd:7c:62:a3:75:9d:fc:26:ed:b3:b6:ba:e1:
09:9a:aa:02:88:c4:48:03:e5:04:78:91:c3:1c:8d:46:8b:eb:
b4:ff:f9:aa:87:be:6a:81:9d:c5:87:be:bc:f0:cf:e9:8a:60:
b2:b2:a9:7b:eb:d1:cf:ee:02:6a:bb:83:8b:ba:51:52:6c:b6:
47:16:8c:79:59:8d:94:3d:87:f2:61:6c:df:54:bb:ee:b2:26:
2a:29:81:0e:28:3d:7c:2e:d8:01:6b:36:76:fe:28:2f:77:c8:
11:f4:3f:31:ed:ad:60:79:55:ab:d0:1e:2c:cd:9b:28:da:d4:
ef:e5:44:7b
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyNTdE
QjdCOTkxOTk3NTY5NzM2NkI3MDE0RjhDRkUyOEVGMzY0RTczMB4XDTIwMDcyNDA4
MzQwM1oXDTIxMDcyNDA4MDMyMlowMzExMC8GA1UEAxMoODg2MkM2RDQ1MDVDNzZE
MzNCRTdCM0M4QzcwMUFEM0VFQjg2RjNCQjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAM0r1Pqa5AW9imnvgHroPr/Uyeth4YEhc3e5puFuE+ox/ZoJ+ufn
4qUlZu9dJsOerzTGuuKH6OEthx+IwKErLq4G1vawiLTuo17w0yU7tFBGpb/y3YuC
zfM6SLIcG4fqUZrBnNrtYN48UsA2lVPWWlsKvQ10dOFgcmZaBVLuec/IeECihUd+
AUXO2abkvU7Er+ABLCvu9eshHFgS2/Krv+bwl6hhRo30wjempEmjGEu4JUt9+Udj
DfVG0yzWXvNEUEorzsDtxq5PJpkew4hUlI0zLDqKkAxMuPPUfinfJOK+c+pbWhsb
nz5jxWKY/5ydKNcifIrsBlBBut6+ioJvz7UCAwEAAaOCAe4wggHqMB0GA1UdDgQW
BBSIYsbUUFx20zvns8jHAa0+64bzuzAfBgNVHSMEGDAWgBQlfbe5kZl1aXNmtwFP
jP4o7zZOczAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP
oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9IT05HREEv
SlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9KWDIzdVpHWmRXbHpacmNCVDR6LUtPODJUbk0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9IT05HREEvaUdMRzFGQmNkdE03NTdQSXh3
R3RQdXVHODdzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3
L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeZ
sDANBgkqhkiG9w0BAQsFAAOCAQEAfkWwuPKNllDMe9mV2pP/idTuJQ/w6F+k+URy
gaF5W28k0dpXG9FSuGRB7b+CjGQD+kfj4cezJvgWpk45zawuq0vMMRkh2TCmunpk
n7jKlWMf1gUwNAafyY8SdjAd40rF3LIrE0JCebNkqDEiL0n2B96A4m37XAERROVz
z038fzqdTVa9fGKjdZ38Ju2ztrrhCZqqAojESAPlBHiRwxyNRovrtP/5qoe+aoGd
xYe+vPDP6YpgsrKpe+vRz+4CaruDi7pRUmy2RxaMeVmNlD2H8mFs31S77rImKimB
Dig9fC7YAWs2dv4oL3fIEfQ/Me2tYHlVq9AeLM2bKNrU7+VEew==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org