Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/z90Pg_OtcECYJBQSxyPQwyeCtz0.roa
File: z90Pg_OtcECYJBQSxyPQwyeCtz0.roa (raw, json)
Hash identifier: 746urbJT2s1XTrbomPz192YaYVpJN78TKz3w8sUlDIY=
Subject key identifier: CF:DD:0F:83:F3:AD:70:40:98:24:14:12:C7:23:D0:C3:27:82:B7:3D
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 02C5
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/z90Pg_OtcECYJBQSxyPQwyeCtz0.roa
Signing time: Sun 07 Feb 2021 13:03:02 +0000
ROA not before: Sun 07 Feb 2021 13:03:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 134823
IP address blocks: 103.153.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 709 (0x2c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Feb 7 13:03:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CFDD0F83F3AD704098241412C723D0C32782B73D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ba:7b:8d:a1:7d:56:65:88:9b:eb:f4:8f:3b:
b9:8b:14:e7:5b:b5:71:f8:b4:18:55:a4:84:22:29:
67:9a:af:3d:19:e3:6c:57:bc:01:57:fc:f6:0b:96:
e1:51:05:da:e8:03:2f:d3:bb:b2:c9:0e:9f:df:07:
02:2c:19:e0:48:6e:69:d5:18:56:8a:54:86:2d:6e:
2a:89:4a:33:01:6a:ca:bf:bb:be:f7:d4:f1:81:8d:
48:91:b0:77:06:bc:d0:71:4d:61:62:ec:aa:aa:56:
41:f8:db:fa:75:49:e6:6d:69:90:67:32:a4:ce:f5:
fc:38:59:91:49:58:b1:d8:cc:f6:94:9f:fc:98:df:
52:c7:aa:0f:54:6c:88:e8:15:2e:f8:4e:8b:4b:52:
c8:f0:4f:78:3b:6f:b5:8f:f1:b0:c9:46:0b:b4:25:
de:9b:f9:4b:e0:b2:8c:5e:f5:4a:9b:e6:12:e7:6a:
f4:86:d7:df:bc:e9:3f:a6:96:ec:9c:4c:a5:65:33:
ef:f2:60:ff:13:03:e0:78:20:50:6f:3b:01:32:e7:
b6:04:2b:32:78:42:fd:f4:dc:e0:c2:e9:b8:ce:88:
87:34:a9:d8:c4:3b:b4:e4:89:70:4a:41:3e:36:61:
05:f8:2d:04:c1:af:c2:af:60:aa:8d:66:54:84:bd:
e8:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:DD:0F:83:F3:AD:70:40:98:24:14:12:C7:23:D0:C3:27:82:B7:3D
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/z90Pg_OtcECYJBQSxyPQwyeCtz0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/24
Signature Algorithm: sha256WithRSAEncryption
27:04:2a:d2:d2:57:5b:ed:39:1f:dd:74:5a:2b:81:db:7b:c6:
72:d1:d1:0d:bd:d5:b6:4e:e3:8a:45:28:23:f4:3a:47:a0:87:
35:78:a3:4f:d0:ff:64:2c:6c:b2:bf:54:7e:06:f6:ef:a9:4b:
ba:07:fd:b1:38:29:03:6f:da:f2:b8:e2:b1:a2:f0:c7:7e:3b:
30:81:dc:4b:c4:17:37:df:11:9c:9b:fc:74:7b:56:c3:fc:0e:
04:3f:1f:6e:17:89:35:fc:a4:ca:75:91:44:02:a3:1d:11:d5:
dd:75:63:44:5c:db:b0:43:00:cf:81:59:7c:d0:78:ae:d3:5e:
93:c4:fa:a8:3b:5a:a1:9c:fc:91:5e:f9:8e:c6:ad:d9:c9:8f:
56:0e:98:64:37:59:cf:ec:db:75:a1:d4:4f:c1:98:2e:f6:d6:
f7:2c:68:fe:de:25:8d:da:5b:da:9a:1e:9a:4d:6f:0a:0d:88:
a2:a9:8d:16:85:93:16:8d:5f:aa:d5:7d:cf:40:a7:93:18:a6:
4c:35:ed:3d:94:a0:03:6d:c6:df:0d:1c:d4:31:2c:39:4b:6c:
71:01:95:ee:a6:88:67:9f:1d:fb:bb:33:29:26:12:db:ee:c0:
ea:98:8e:43:f2:9c:f2:57:25:b7:96:90:bc:c5:b1:f9:30:0c:
03:9d:0a:83
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICAsUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3
REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMTAyMDcx
MzAzMDJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKENGREQwRjgzRjNBRDcw
NDA5ODI0MTQxMkM3MjNEMEMzMjc4MkI3M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCnunuNoX1WZYib6/SPO7mLFOdbtXH4tBhVpIQiKWearz0Z42xX
vAFX/PYLluFRBdroAy/Tu7LJDp/fBwIsGeBIbmnVGFaKVIYtbiqJSjMBasq/u773
1PGBjUiRsHcGvNBxTWFi7KqqVkH42/p1SeZtaZBnMqTO9fw4WZFJWLHYzPaUn/yY
31LHqg9UbIjoFS74TotLUsjwT3g7b7WP8bDJRgu0Jd6b+Uvgsoxe9Uqb5hLnavSG
19+86T+mluycTKVlM+/yYP8TA+B4IFBvOwEy57YEKzJ4Qv303ODC6bjOiIc0qdjE
O7TkiXBKQT42YQX4LQTBr8KvYKqNZlSEvegLAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUz90Pg/OtcECYJBQSxyPQwyeCtz0wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB
T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB
L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3o5MFBnX090Y0VDWUpCUVN4
eVBRd3llQ3R6MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
mbAwDQYJKoZIhvcNAQELBQADggEBACcEKtLSV1vtOR/ddForgdt7xnLR0Q291bZO
44pFKCP0OkeghzV4o0/Q/2QsbLK/VH4G9u+pS7oH/bE4KQNv2vK44rGi8Md+OzCB
3EvEFzffEZyb/HR7VsP8DgQ/H24XiTX8pMp1kUQCox0R1d11Y0Rc27BDAM+BWXzQ
eK7TXpPE+qg7WqGc/JFe+Y7GrdnJj1YOmGQ3Wc/s23Wh1E/BmC721vcsaP7eJY3a
W9qaHppNbwoNiKKpjRaFkxaNX6rVfc9Ap5MYpkw17T2UoANtxt8NHNQxLDlLbHEB
le6miGefHfu7MykmEtvuwOqYjkPynPJXJbeWkLzFsfkwDAOdCoM=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org