Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/r0UojAIsMP-4Obserlr_B8eFZvI.roa
File: r0UojAIsMP-4Obserlr_B8eFZvI.roa (raw, json)
Hash identifier: DywToUVlpb6kbxXXGB6Z6T6FbtEPNNdIYQdlEenMoXk=
Subject key identifier: AF:45:28:8C:02:2C:30:FF:B8:39:BB:1E:AE:5A:FF:07:C7:85:66:F2
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 048F
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/r0UojAIsMP-4Obserlr_B8eFZvI.roa
Signing time: Sun 06 Nov 2022 13:12:03 +0000
ROA not before: Sun 06 Nov 2022 13:12:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131657
IP address blocks: 103.153.176.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1167 (0x48f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Nov 6 13:12:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AF45288C022C30FFB839BB1EAE5AFF07C78566F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3f:32:c0:d2:46:24:ca:54:70:c5:c5:1f:10:
39:7a:c9:1a:9b:f3:d6:80:5d:00:7f:18:87:be:3b:
ce:f1:14:16:3f:55:15:30:8e:3a:d3:d2:b1:24:ed:
bf:c7:db:d9:ad:f4:af:dd:48:0c:b2:83:71:b9:af:
b2:fc:45:c4:40:12:a0:8b:f4:0a:0b:87:ee:5c:5d:
58:bb:16:64:ba:e3:99:06:82:52:45:f4:0a:75:45:
c5:73:02:18:eb:ac:ed:08:6f:dd:8c:e9:bf:3c:6c:
90:5e:a5:34:86:b9:14:65:48:05:3f:cb:e1:37:65:
aa:15:b0:fd:2e:8c:74:b0:80:5f:04:52:38:bb:0f:
9d:fb:3a:48:fd:85:35:c7:05:4f:4d:4f:c6:00:52:
6c:d1:65:e8:32:d9:f8:f0:ed:8a:3a:54:7f:77:b8:
6e:ab:e6:0e:bd:18:54:90:b4:29:7b:a6:7a:d8:1d:
63:25:d0:0f:41:27:6e:dd:42:40:37:70:ed:3f:5e:
2e:85:ae:8c:91:fc:28:6b:97:43:a8:8e:f6:6d:2c:
b4:eb:89:c7:2c:d4:ac:d5:1a:31:7d:2c:94:bf:b7:
ff:93:51:eb:c9:95:e0:d1:08:df:be:ee:26:8d:45:
88:98:15:2e:22:11:d0:31:47:48:31:12:b5:2a:b3:
60:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:45:28:8C:02:2C:30:FF:B8:39:BB:1E:AE:5A:FF:07:C7:85:66:F2
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/r0UojAIsMP-4Obserlr_B8eFZvI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
44:2d:c2:ba:2d:22:91:51:da:83:08:c8:7b:56:3d:15:f6:86:
fa:e6:5f:50:d5:b1:f3:6f:ed:1a:97:15:e2:1d:b5:63:0b:35:
49:c5:4f:a7:07:b0:fb:19:35:b7:a3:a6:99:ec:4a:e3:b9:e9:
b3:03:7a:b5:92:cb:57:db:5e:81:f5:af:89:8e:bb:e5:5e:42:
1e:9c:77:97:f4:1f:ed:8b:65:d4:71:a7:08:bd:62:a1:ca:ca:
cc:3f:a0:66:d0:3e:f6:23:08:76:1b:10:9a:24:48:25:86:29:
2f:aa:52:57:a0:b1:9a:48:92:22:48:d8:a1:09:e9:ad:15:b6:
39:51:97:1e:22:c8:f0:a5:1f:d8:86:00:91:a6:5a:45:d4:cf:
00:1c:3a:d7:d6:12:cf:72:16:68:94:a2:dd:be:e3:12:1c:56:
b4:61:28:48:1a:af:04:91:86:c8:47:c4:69:00:95:52:8c:87:
a6:52:07:64:b6:46:9c:c0:8b:b7:b5:4a:91:04:0b:a4:fb:29:
3c:8b:51:97:a1:7f:24:e1:e0:1d:11:3b:1a:62:81:5b:58:d1:
2d:07:c0:ea:3a:2c:64:68:4c:4e:ce:a5:54:bd:13:dd:7c:49:
67:69:a5:02:3c:94:2e:ca:70:45:a8:6e:ef:9b:c3:a5:cc:27:
5f:67:1e:8f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICBI8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMjExMDYx
MzEyMDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEFGNDUyODhDMDIyQzMw
RkZCODM5QkIxRUFFNUFGRjA3Qzc4NTY2RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwPzLA0kYkylRwxcUfEDl6yRqb89aAXQB/GIe+O87xFBY/VRUw
jjrT0rEk7b/H29mt9K/dSAyyg3G5r7L8RcRAEqCL9AoLh+5cXVi7FmS645kGglJF
9Ap1RcVzAhjrrO0Ib92M6b88bJBepTSGuRRlSAU/y+E3ZaoVsP0ujHSwgF8EUji7
D537Okj9hTXHBU9NT8YAUmzRZegy2fjw7Yo6VH93uG6r5g69GFSQtCl7pnrYHWMl
0A9BJ27dQkA3cO0/Xi6FroyR/Chrl0OojvZtLLTriccs1KzVGjF9LJS/t/+TUevJ
leDRCN++7iaNRYiYFS4iEdAxR0gxErUqs2B/AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUr0UojAIsMP+4Obserlr/B8eFZvIwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3IwVW9qQUlzTVAtNE9ic2Vy
bHJfQjhlRlp2SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn
mbAwDQYJKoZIhvcNAQELBQADggEBAEQtwrotIpFR2oMIyHtWPRX2hvrmX1DVsfNv
7RqXFeIdtWMLNUnFT6cHsPsZNbejppnsSuO56bMDerWSy1fbXoH1r4mOu+VeQh6c
d5f0H+2LZdRxpwi9YqHKysw/oGbQPvYjCHYbEJokSCWGKS+qUlegsZpIkiJI2KEJ
6a0VtjlRlx4iyPClH9iGAJGmWkXUzwAcOtfWEs9yFmiUot2+4xIcVrRhKEgarwSR
hshHxGkAlVKMh6ZSB2S2RpzAi7e1SpEEC6T7KTyLUZehfyTh4B0ROxpigVtY0S0H
wOo6LGRoTE7OpVS9E918SWdppQI8lC7KcEWobu+bw6XMJ19nHo8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org