Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/51EoqHyGjzIwh-R2oOtEZxwEHGE.roa
File: 51EoqHyGjzIwh-R2oOtEZxwEHGE.roa (raw, json)
Hash identifier: gY8P8OHASy1ggbL5vCKGxVNWt8l8fwzrC2sW13dvkMY=
Subject key identifier: E7:51:28:A8:7C:86:8F:32:30:87:E4:76:A0:EB:44:67:1C:04:1C:61
Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38
Certificate serial: 0A
Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/51EoqHyGjzIwh-R2oOtEZxwEHGE.roa
Signing time: Mon 25 Oct 2021 09:12:25 +0000
ROA not before: Mon 25 Oct 2021 09:12:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131668
IP address blocks: 2406:bfc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38
Validity
Not Before: Oct 25 09:12:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E75128A87C868F323087E476A0EB44671C041C61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:78:43:ec:91:9a:30:12:a7:f1:46:23:81:48:
a1:85:e4:f8:49:d5:78:8d:3f:e8:53:1b:c2:d4:93:
43:f5:7d:74:07:07:6c:5d:c5:70:d7:b7:28:53:88:
7e:b8:57:ea:88:c6:4f:63:ff:7f:b9:f8:20:94:77:
78:67:43:78:59:a1:e9:a2:4b:43:d8:d8:5a:4d:ce:
f2:d6:99:48:27:af:0c:ae:35:ee:c3:35:7a:b7:76:
ec:44:76:a3:58:e9:87:07:ee:ed:3e:eb:95:c0:73:
6d:c4:29:54:ca:00:9d:89:3e:2b:56:1d:1f:c0:41:
4e:c2:b3:41:ca:b8:64:1b:5c:64:4a:72:bd:f4:31:
b2:41:4b:23:ae:0f:9b:85:b2:4d:2c:4e:08:0f:e6:
02:df:78:82:4e:54:00:b2:23:0c:ed:f7:6e:68:a2:
a8:39:d8:54:a0:88:f7:21:44:00:e4:86:c8:95:4a:
92:30:7d:ef:af:39:45:94:78:76:0f:9e:96:01:19:
75:01:cc:a0:b2:65:fd:ec:98:cc:e7:b1:7f:68:05:
67:9e:1f:16:ae:03:6e:de:f1:eb:3e:cb:5b:f1:62:
b2:2d:f8:4e:67:09:b6:67:75:5d:52:ad:65:1e:b0:
6f:f5:8c:ad:60:70:80:03:89:c0:c1:7e:7f:25:a7:
fe:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:51:28:A8:7C:86:8F:32:30:87:E4:76:A0:EB:44:67:1C:04:1C:61
X509v3 Authority Key Identifier:
keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/51EoqHyGjzIwh-R2oOtEZxwEHGE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:bfc0::/32
Signature Algorithm: sha256WithRSAEncryption
60:2f:d1:c0:60:6b:27:d2:c8:84:d6:bd:df:83:ba:00:08:ac:
3f:a1:85:4c:68:e3:cc:52:ca:5a:76:b3:11:73:90:d9:8d:83:
55:51:e2:0b:c7:1f:4e:cb:ea:a7:9c:f9:e9:c9:00:bb:ab:df:
ac:72:35:8e:80:f1:cc:f6:c9:de:53:54:ee:cd:04:9e:06:3e:
2c:7b:68:4d:ac:1d:d3:62:0a:55:23:99:36:fa:bf:61:4e:8d:
f4:0c:ac:39:3c:c5:97:76:cf:8b:89:fd:92:9b:ee:de:d3:c7:
51:7a:a5:4e:63:3c:59:b2:6a:10:4d:6f:28:74:d0:9d:3b:c7:
a1:89:d1:0d:58:60:d6:8d:36:b5:cb:5d:ec:dd:d7:68:bc:b5:
05:18:41:e6:75:1f:b9:dd:18:68:26:89:77:b0:a7:f1:72:77:
92:5a:0e:db:d7:38:d4:d1:61:6d:21:78:95:7d:77:04:62:cb:
3c:dd:0f:ef:ac:8d:d7:40:da:85:8a:d8:29:b4:13:c6:3f:d6:
d4:d0:6f:4a:ae:71:67:0f:12:c2:0d:ca:0e:3d:8c:6c:4b:bc:
6c:77:7e:09:28:e4:cf:73:85:e6:f0:56:22:1d:14:69:ab:75:
07:29:0c:4d:6e:de:a1:c2:d7:8d:9c:df:8b:84:ab:78:98:d2:
50:97:94:19
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgIBCjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxRDRE
NzhGNTY3NTBDNzU5ODk1MzM2NkQ0NTlBMTJCNjU4QjdGRjM4MB4XDTIxMTAyNTA5
MTIyNVoXDTIyMDkyOTAyMzYyMlowMzExMC8GA1UEAxMoRTc1MTI4QTg3Qzg2OEYz
MjMwODdFNDc2QTBFQjQ0NjcxQzA0MUM2MTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMl4Q+yRmjASp/FGI4FIoYXk+EnVeI0/6FMbwtSTQ/V9dAcHbF3F
cNe3KFOIfrhX6ojGT2P/f7n4IJR3eGdDeFmh6aJLQ9jYWk3O8taZSCevDK417sM1
erd27ER2o1jphwfu7T7rlcBzbcQpVMoAnYk+K1YdH8BBTsKzQcq4ZBtcZEpyvfQx
skFLI64Pm4WyTSxOCA/mAt94gk5UALIjDO33bmiiqDnYVKCI9yFEAOSGyJVKkjB9
7685RZR4dg+elgEZdQHMoLJl/eyYzOexf2gFZ54fFq4Dbt7x6z7LW/Fisi34TmcJ
tmd1XVKtZR6wb/WMrWBwgAOJwMF+fyWn/gMCAwEAAaOCAfEwggHtMB0GA1UdDgQW
BBTnUSiofIaPMjCH5Hag60RnHAQcYTAfBgNVHSMEGDAWgBQdTXj1Z1DHWYlTNm1F
mhK2WLf/ODAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ
oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ORUJVTEFY
L0hVMTQ5V2RReDFtSlV6WnRSWm9TdGxpM196Zy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSFUxNDlXZFF4MW1KVXpadFJab1N0bGkzX3pnLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVCVUxBWC81MUVvcUh5R2p6SXdoLVIy
b090RVp4d0VIR0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu
dHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA
JAa/wDANBgkqhkiG9w0BAQsFAAOCAQEAYC/RwGBrJ9LIhNa934O6AAisP6GFTGjj
zFLKWnazEXOQ2Y2DVVHiC8cfTsvqp5z56ckAu6vfrHI1joDxzPbJ3lNU7s0EngY+
LHtoTawd02IKVSOZNvq/YU6N9AysOTzFl3bPi4n9kpvu3tPHUXqlTmM8WbJqEE1v
KHTQnTvHoYnRDVhg1o02tctd7N3XaLy1BRhB5nUfud0YaCaJd7Cn8XJ3kloO29c4
1NFhbSF4lX13BGLLPN0P76yN10DahYrYKbQTxj/W1NBvSq5xZw8Swg3KDj2MbEu8
bHd+CSjkz3OF5vBWIh0Uaat1BykMTW7eocLXjZzfi4SreJjSUJeUGQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org