Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/m1GBigR8FgQ_-9XOXJKQjezXwrw.roa
File: m1GBigR8FgQ_-9XOXJKQjezXwrw.roa (raw, json)
Hash identifier: Qx3+ztYHGXb6xwxLl95iVdPv9n18su3lQxCJq6BOlTQ=
Subject key identifier: 9B:51:81:8A:04:7C:16:04:3F:FB:D5:CE:5C:92:90:8D:EC:D7:C2:BC
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 0570
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/m1GBigR8FgQ_-9XOXJKQjezXwrw.roa
Signing time: Fri 01 Sep 2023 08:59:48 +0000
ROA not before: Fri 01 Sep 2023 08:59:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17418
IP address blocks: 103.153.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1392 (0x570)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 1 08:59:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9B51818A047C16043FFBD5CE5C92908DECD7C2BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c6:5e:9d:15:93:f9:5c:18:3c:9f:98:c3:1b:
d9:26:a0:ca:71:f0:b4:7f:b0:1f:6b:09:5b:bb:9d:
cc:a7:2b:7f:3e:d8:34:25:bc:ac:b5:cc:98:26:fd:
39:bc:5c:b7:03:cd:65:cf:49:e4:36:42:01:4e:43:
b9:c8:6f:b2:01:ac:55:eb:85:7a:4d:0f:16:f5:1b:
f9:39:aa:f0:39:43:e3:79:ed:e8:da:84:5a:ea:69:
d0:91:9a:80:b7:79:aa:ba:a2:2c:fa:c9:66:bb:64:
49:bb:25:64:1f:10:13:92:65:57:00:97:19:9d:50:
34:6c:bb:c1:c2:00:fb:92:30:8e:1e:c5:bd:e2:70:
f6:4a:7c:92:67:4a:af:8a:b0:39:ec:df:51:fa:77:
e6:3a:4a:ab:0e:1b:c9:4a:59:d7:ba:c2:39:34:26:
e3:aa:98:89:ae:2d:41:60:19:48:f8:2f:01:31:70:
06:f6:f9:5b:96:35:fb:a1:62:53:8d:40:c6:fb:3b:
77:f1:1a:02:09:58:75:51:34:d5:3b:c0:4c:fa:5d:
16:e2:b8:2a:a8:d1:2b:c4:dc:7c:7a:95:e9:cc:d0:
68:d8:36:aa:29:84:2b:ff:1c:ed:f6:21:57:49:ac:
b4:9f:66:e9:6b:5a:63:3b:df:33:6f:2d:a1:c1:5f:
ed:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:51:81:8A:04:7C:16:04:3F:FB:D5:CE:5C:92:90:8D:EC:D7:C2:BC
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/m1GBigR8FgQ_-9XOXJKQjezXwrw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.177.0/24
Signature Algorithm: sha256WithRSAEncryption
40:52:f5:aa:70:b4:6a:65:34:10:a8:8a:f5:7e:35:63:e5:d3:
2c:9a:00:42:d4:5a:52:d8:0c:18:78:e5:38:8d:9d:41:a6:4c:
4f:f4:fc:5a:5b:43:ae:6a:a5:ce:05:3b:51:ab:1f:32:56:30:
ff:fb:a0:32:df:f4:06:6c:b9:f6:7d:28:c5:6d:cd:4d:0b:cb:
fc:a0:7e:8a:47:a1:e9:99:fb:d0:37:86:aa:fa:89:02:b7:80:
03:32:f0:3a:20:7e:35:40:73:62:a7:c8:69:f9:97:17:50:6e:
f1:bb:f9:30:cf:54:28:6f:9d:e7:da:95:59:40:a6:ef:ac:14:
82:73:6e:5c:44:09:13:50:4f:15:83:c5:d2:c5:d6:1f:88:ce:
1f:e2:e2:37:67:65:98:42:dd:2b:1d:17:92:68:9e:a7:01:d3:
87:34:21:2f:c8:41:ea:63:b3:00:0a:d5:4c:cc:ea:03:40:2a:
89:c0:4e:9f:49:94:d0:ed:86:ff:19:65:57:b5:7b:1a:19:c6:
cd:98:7e:c7:99:7e:3e:61:63:ed:33:36:5e:01:5f:b2:db:f7:
e6:5b:fc:1c:e9:e6:60:b3:09:ff:f1:b9:f1:8d:44:0e:45:a1:
c8:92:a9:87:4d:ea:59:f1:ca:f6:a8:ac:7a:2b:9f:8d:cd:da:
35:af:26:7e
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICBXAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzA5MDEw
ODU5NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlCNTE4MThBMDQ3QzE2
MDQzRkZCRDVDRTVDOTI5MDhERUNEN0MyQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdxl6dFZP5XBg8n5jDG9kmoMpx8LR/sB9rCVu7ncynK38+2DQl
vKy1zJgm/Tm8XLcDzWXPSeQ2QgFOQ7nIb7IBrFXrhXpNDxb1G/k5qvA5Q+N57eja
hFrqadCRmoC3eaq6oiz6yWa7ZEm7JWQfEBOSZVcAlxmdUDRsu8HCAPuSMI4exb3i
cPZKfJJnSq+KsDns31H6d+Y6SqsOG8lKWde6wjk0JuOqmImuLUFgGUj4LwExcAb2
+VuWNfuhYlONQMb7O3fxGgIJWHVRNNU7wEz6XRbiuCqo0SvE3Hx6lenM0GjYNqop
hCv/HO32IVdJrLSfZulrWmM73zNvLaHBX+21AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUm1GBigR8FgQ/+9XOXJKQjezXwrwwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL20xR0JpZ1I4RmdRXy05WE9Y
SktRamV6WHdydy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
mbEwDQYJKoZIhvcNAQELBQADggEBAEBS9apwtGplNBCoivV+NWPl0yyaAELUWlLY
DBh45TiNnUGmTE/0/FpbQ65qpc4FO1GrHzJWMP/7oDLf9AZsufZ9KMVtzU0Ly/yg
fopHoemZ+9A3hqr6iQK3gAMy8DogfjVAc2KnyGn5lxdQbvG7+TDPVChvnefalVlA
pu+sFIJzblxECRNQTxWDxdLF1h+Izh/i4jdnZZhC3SsdF5JonqcB04c0IS/IQepj
swAK1UzM6gNAKonATp9JlNDthv8ZZVe1exoZxs2YfseZfj5hY+0zNl4BX7Lb9+Zb
/Bzp5mCzCf/xufGNRA5FociSqYdN6lnxyvaorHorn43N2jWvJn4=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:13 2025 by rpki-client