Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/F9TLQdHpUr3rwlbMb1NJc5Sctfk.roa
File: F9TLQdHpUr3rwlbMb1NJc5Sctfk.roa (raw, json)
Hash identifier: UgDM3sNFpn2zCQuf2xKsX9MF13R8JLlmzmOpd99n9Jo=
Subject key identifier: 17:D4:CB:41:D1:E9:52:BD:EB:C2:56:CC:6F:53:49:73:94:9C:B5:F9
Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38
Certificate serial: E6
Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/F9TLQdHpUr3rwlbMb1NJc5Sctfk.roa
Signing time: Thu 15 Sep 2022 02:48:53 +0000
ROA not before: Thu 15 Sep 2022 02:48:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131668
IP address blocks: 103.158.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230 (0xe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38
Validity
Not Before: Sep 15 02:48:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=17D4CB41D1E952BDEBC256CC6F534973949CB5F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4e:6a:05:8f:74:b9:25:5b:c9:a6:26:96:76:
96:f0:8d:91:75:56:12:ad:36:0b:28:1f:b2:61:74:
12:0f:58:a0:11:3b:c3:0e:5e:ec:5f:5c:da:43:24:
43:51:82:7e:17:b3:dc:4f:16:4b:70:2c:6b:16:d9:
15:99:bf:69:84:51:8f:ea:48:58:8d:60:fe:bf:23:
33:e6:b7:66:ad:14:4a:89:f3:8b:d3:37:59:7e:5d:
4b:1f:6d:3c:f3:70:bf:24:5b:b6:fc:19:4b:ab:69:
5b:0e:bd:6f:bb:48:f9:85:ee:05:e0:44:c9:03:c2:
4d:74:76:94:68:99:ea:11:a2:ff:82:fc:57:15:cc:
86:a7:ae:f0:fb:0f:8d:a9:a6:9f:06:57:82:43:be:
e1:ee:8f:3b:23:11:c6:60:7c:9c:82:64:fd:b9:3d:
a4:f6:a5:b6:0c:cd:8a:c9:b6:97:1e:23:97:dd:95:
ca:c9:4c:17:bb:a5:fa:66:15:2a:c9:39:eb:d6:62:
aa:97:e7:00:3d:43:16:24:ec:ab:f5:c4:d4:a7:a6:
40:90:ed:5a:e7:50:20:4f:46:a6:62:3b:3f:dd:78:
00:92:52:37:7e:2b:fe:8d:b8:c4:78:b8:f8:46:e1:
bf:2a:f0:50:62:ca:4d:4d:6f:6e:3c:8d:32:b5:63:
4e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D4:CB:41:D1:E9:52:BD:EB:C2:56:CC:6F:53:49:73:94:9C:B5:F9
X509v3 Authority Key Identifier:
keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/F9TLQdHpUr3rwlbMb1NJc5Sctfk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.186.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:24:d4:b9:24:3d:73:74:da:08:87:50:48:1e:3b:07:4e:bf:
38:d5:e3:54:09:3f:1a:46:17:90:87:02:12:86:f3:0d:ae:2f:
b6:35:3a:1d:4d:a4:4c:8c:35:c0:e9:a6:69:4f:9f:26:c2:9e:
c6:98:b8:66:52:6d:9b:09:5f:48:98:c5:a1:38:78:99:b3:47:
2b:87:e5:cc:c1:2d:e1:3d:95:e4:12:69:b3:a9:0e:c1:cd:35:
ce:fa:c3:5d:d9:0e:a3:ed:a5:60:1d:d9:c3:f8:85:c5:e4:29:
4e:19:86:0c:10:08:38:cf:09:b2:da:d1:e8:ee:ad:af:02:7f:
df:94:4d:a2:4c:99:ba:ad:b7:2f:db:36:e2:dc:64:53:b3:aa:
bb:32:ce:86:7c:56:d1:1f:a6:66:00:c8:61:c8:e5:8c:95:73:
2f:3c:5b:a2:a1:c6:6b:49:78:c9:85:da:e9:9a:79:2f:b9:a5:
53:d9:21:36:c7:f9:f9:67:a8:f8:d0:64:08:14:db:b6:48:b2:
08:9e:d5:29:e6:9c:b9:ad:dd:6e:44:29:ea:b3:1f:19:4b:6f:
60:cc:bf:92:a6:f6:46:1b:6a:9a:f1:88:bb:50:1e:e2:3b:b8:
66:79:04:99:46:59:0d:88:8e:7e:57:73:61:21:98:f0:b6:52:
6e:96:fb:de
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ0
RDc4RjU2NzUwQzc1OTg5NTMzNjZENDU5QTEyQjY1OEI3RkYzODAeFw0yMjA5MTUw
MjQ4NTNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDE3RDRDQjQxRDFFOTUy
QkRFQkMyNTZDQzZGNTM0OTczOTQ5Q0I1RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDETmoFj3S5JVvJpiaWdpbwjZF1VhKtNgsoH7JhdBIPWKARO8MO
XuxfXNpDJENRgn4Xs9xPFktwLGsW2RWZv2mEUY/qSFiNYP6/IzPmt2atFEqJ84vT
N1l+XUsfbTzzcL8kW7b8GUuraVsOvW+7SPmF7gXgRMkDwk10dpRomeoRov+C/FcV
zIanrvD7D42ppp8GV4JDvuHujzsjEcZgfJyCZP25PaT2pbYMzYrJtpceI5fdlcrJ
TBe7pfpmFSrJOevWYqqX5wA9QxYk7Kv1xNSnpkCQ7VrnUCBPRqZiOz/deACSUjd+
K/6NuMR4uPhG4b8q8FBiyk1Nb248jTK1Y07NAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUF9TLQdHpUr3rwlbMb1NJc5SctfkwHwYDVR0jBBgwFoAUHU149WdQx1mJUzZt
RZoStli3/zgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVCVUxB
WC9IVTE0OVdkUXgxbUpVelp0UlpvU3RsaTNfemcuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0hVMTQ5V2RReDFtSlV6WnRSWm9TdGxpM196Zy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05FQlVMQVgvRjlUTFFkSHBVcjNyd2xi
TWIxTkpjNVNjdGZrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGeeujANBgkqhkiG9w0BAQsFAAOCAQEAniTUuSQ9c3TaCIdQSB47B06/ONXjVAk/
GkYXkIcCEobzDa4vtjU6HU2kTIw1wOmmaU+fJsKexpi4ZlJtmwlfSJjFoTh4mbNH
K4flzMEt4T2V5BJps6kOwc01zvrDXdkOo+2lYB3Zw/iFxeQpThmGDBAIOM8JstrR
6O6trwJ/35RNokyZuq23L9s24txkU7OquzLOhnxW0R+mZgDIYcjljJVzLzxboqHG
a0l4yYXa6Zp5L7mlU9khNsf5+Weo+NBkCBTbtkiyCJ7VKeacua3dbkQp6rMfGUtv
YMy/kqb2RhtqmvGIu1Ae4ju4ZnkEmUZZDYiOfldzYSGY8LZSbpb73g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org