Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/F6qqjbMrY5oYx2TnlNMP3o7fe9E.roa
File: F6qqjbMrY5oYx2TnlNMP3o7fe9E.roa (raw, json)
Hash identifier: pabza1J95a4a8rV7l0LH+gwIYldf90L/ynBcCHUzrsg=
Subject key identifier: 17:AA:AA:8D:B3:2B:63:9A:18:C7:64:E7:94:D3:0F:DE:8E:DF:7B:D1
Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38
Certificate serial: 07
Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/F6qqjbMrY5oYx2TnlNMP3o7fe9E.roa
Signing time: Mon 25 Oct 2021 09:12:03 +0000
ROA not before: Mon 25 Oct 2021 09:12:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131668
IP address blocks: 103.158.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38
Validity
Not Before: Oct 25 09:12:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=17AAAA8DB32B639A18C764E794D30FDE8EDF7BD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:df:97:9f:f3:91:83:2f:44:c7:68:4e:a9:b5:
6a:b3:65:96:5d:7a:cd:80:33:06:1b:26:fd:f4:01:
40:55:4a:ee:81:af:a8:01:ed:65:60:82:89:f9:ca:
bc:ce:af:1d:c1:69:a7:51:59:2f:45:6d:75:37:73:
5f:94:34:6d:ab:df:c2:b1:48:dd:49:86:b2:4e:00:
ee:9b:22:d0:2e:9a:8a:dc:7d:7b:cd:9e:20:29:8e:
bc:f8:e6:eb:91:43:93:6a:6c:14:3f:ec:3e:55:df:
b9:11:f4:3d:34:77:b9:9a:a5:cb:af:8d:98:31:1a:
ff:59:3a:85:24:50:86:5c:eb:83:d3:74:ea:a9:8a:
8f:cf:39:08:f4:dc:d6:83:fc:44:b0:82:54:58:5e:
21:49:b7:33:33:81:17:1b:5e:1c:d5:4b:bd:0b:be:
83:01:c6:f8:99:55:97:1c:a3:4a:ca:6b:b9:03:1b:
e0:08:e2:2f:be:6f:30:c5:fd:19:3d:7d:38:be:ec:
3f:41:5b:47:c9:09:79:2e:b6:1e:46:1c:a0:89:7d:
e1:94:9b:4e:04:f3:3a:fe:3b:03:34:66:40:5d:c7:
db:b0:2a:9e:77:37:ad:f8:77:69:47:04:2a:f2:ea:
ec:08:bf:37:f2:4a:7a:6d:87:b4:19:43:62:74:c3:
d3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:AA:AA:8D:B3:2B:63:9A:18:C7:64:E7:94:D3:0F:DE:8E:DF:7B:D1
X509v3 Authority Key Identifier:
keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/F6qqjbMrY5oYx2TnlNMP3o7fe9E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.186.0/24
Signature Algorithm: sha256WithRSAEncryption
86:f6:e1:58:7f:10:5e:77:0c:2a:b1:82:bd:b9:47:0e:34:2d:
7a:5d:25:ff:72:1a:13:ff:34:3c:a2:22:4b:fd:e3:d6:97:2b:
21:1b:6e:0a:0c:cb:c6:04:1d:27:9b:29:4f:20:34:fa:03:15:
ad:9b:3c:7b:48:43:0c:66:54:c7:a8:d7:c0:9d:84:82:60:f4:
9a:fc:9b:eb:82:8c:68:55:a6:47:46:1e:35:6f:65:3e:ef:07:
64:f8:01:a2:62:d6:59:13:7b:16:82:e6:66:58:1c:18:6e:27:
01:b9:a0:30:0a:43:d8:46:6a:0c:3d:41:ea:0a:66:cd:c6:f9:
74:8d:bf:84:25:fd:45:c2:72:50:50:c7:8d:ff:18:b4:8d:cc:
ab:02:a5:66:36:95:3e:5a:a5:f2:87:ba:0b:af:40:1c:fd:25:
4a:f0:4a:dd:39:17:0b:87:3e:86:09:3e:8d:26:82:8a:f6:d0:
41:2a:6f:42:1f:15:a1:ba:6d:9e:e6:e3:8f:3c:8d:96:fa:14:
27:37:7a:d7:8b:fa:74:28:bd:c9:f3:30:ad:f6:ea:32:01:6e:
a9:9c:11:af:f2:8f:c9:2a:82:a0:2c:a7:3f:b6:5a:19:7f:fd:
b6:72:0d:64:d7:51:0e:e4:35:bd:03:5a:31:b5:5b:b5:aa:39:
22:a8:73:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org