Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/ZICCJVrI0N5BmUETT4JbmhfkJB8.roa
File: ZICCJVrI0N5BmUETT4JbmhfkJB8.roa (raw, json)
Hash identifier: uNdj4XIFujw0NA7BRJ10fl2QJjtjKNXx6QVC4vuwuvc=
Subject key identifier: 64:80:82:25:5A:C8:D0:DE:41:99:41:13:4F:82:5B:9A:17:E4:24:1F
Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38
Certificate serial: 0111
Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/ZICCJVrI0N5BmUETT4JbmhfkJB8.roa
Signing time: Wed 09 Nov 2022 19:19:12 +0000
ROA not before: Wed 09 Nov 2022 19:19:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18041
IP address blocks: 103.158.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273 (0x111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38
Validity
Not Before: Nov 9 19:19:12 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=648082255AC8D0DE419941134F825B9A17E4241F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:15:eb:66:0f:68:72:8a:a5:34:53:ae:87:1d:
2b:d0:a9:57:82:f9:88:07:93:59:ae:ed:1d:b1:2f:
a2:cf:dc:3f:13:da:ca:7e:b1:0c:8f:09:dc:b1:19:
8c:3e:6d:07:d0:a5:e7:3a:1e:c5:d0:8a:e2:c9:2b:
b7:6d:92:a0:1e:aa:36:eb:ef:a0:04:d5:8b:dd:8b:
9c:e7:43:c7:40:a0:a0:60:cc:b4:ef:d0:3a:72:c1:
ba:1a:5f:95:d1:90:18:7c:d7:0a:ad:56:86:da:d4:
0d:62:db:3d:fa:db:5a:d3:46:11:94:f3:f3:85:61:
50:66:e8:dc:49:e5:48:2f:33:c0:cc:54:3e:23:00:
29:1f:2b:05:2a:49:1d:42:c0:c4:97:e0:49:fc:90:
bd:15:1d:ab:4a:28:e1:eb:24:5c:75:be:4f:08:ed:
85:71:6e:a4:04:27:70:07:90:05:89:9f:ca:5b:e8:
28:99:5f:15:84:c2:d1:1a:d7:55:b4:ea:13:31:1c:
7f:24:47:39:2b:60:63:08:ac:f8:80:1a:79:2d:92:
8b:32:07:9a:35:3e:71:4c:5b:cc:8b:54:30:1f:57:
b3:42:37:25:9f:ff:e3:c8:36:c5:32:6f:28:ff:46:
d1:ed:63:86:f1:2a:74:41:cc:39:df:5f:23:dd:18:
d1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:80:82:25:5A:C8:D0:DE:41:99:41:13:4F:82:5B:9A:17:E4:24:1F
X509v3 Authority Key Identifier:
keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/ZICCJVrI0N5BmUETT4JbmhfkJB8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.186.0/24
Signature Algorithm: sha256WithRSAEncryption
30:e6:8d:0f:6a:7f:d2:8d:8c:8f:08:df:a9:a2:ee:64:4d:49:
b7:86:f4:29:da:30:99:63:67:1f:6f:25:6d:28:8a:31:6f:c2:
7f:ba:4e:4b:fd:41:66:6c:de:20:f8:b1:55:90:e3:f9:33:d3:
0c:e2:2e:79:62:b1:c2:1e:5b:3c:ed:4d:56:3b:1a:5c:db:d6:
fe:83:c1:22:87:99:91:a7:2a:9d:43:15:50:7b:17:4c:7c:62:
ab:1d:e5:4b:3c:43:0a:a9:3c:1a:8a:8a:88:0d:f6:1b:82:43:
b0:72:c8:77:48:2c:56:a9:25:67:ef:e3:7e:3a:e1:29:51:c2:
bc:69:3f:00:13:d5:ce:44:10:1d:7f:d1:c2:50:07:a0:b9:eb:
89:79:86:aa:c1:27:06:f1:dd:ad:41:da:d5:39:fe:64:b3:3e:
1b:23:bf:32:17:5c:2b:0e:71:07:49:9d:e0:7a:3c:e7:c7:ae:
64:27:1e:0c:f5:5e:3d:0f:4a:f0:f2:85:48:11:50:36:8f:dc:
64:90:f5:c8:e8:da:fa:3b:f5:a5:1c:70:ef:10:14:6f:cf:77:
fe:7a:fc:2b:bb:8f:ff:a6:5e:5d:c4:8b:cf:e8:fe:f5:6a:51:
fb:3d:cb:09:1b:0a:54:7c:e8:b6:c9:9d:18:33:73:ea:ea:04:
54:75:f0:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org