Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/c7fZHyMtFOy_ntvrHSO0mUAXnQ0.roa
File: c7fZHyMtFOy_ntvrHSO0mUAXnQ0.roa (raw, json)
Hash identifier: Q0y7zc32D8pTAXeFeOaw3PF4UDfkqaUMuzT6jYOrWDk=
Subject key identifier: 73:B7:D9:1F:23:2D:14:EC:BF:9E:DB:EB:1D:23:B4:99:40:17:9D:0D
Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38
Certificate serial: E6
Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/c7fZHyMtFOy_ntvrHSO0mUAXnQ0.roa
Signing time: Thu 15 Sep 2022 02:48:54 +0000
ROA not before: Thu 15 Sep 2022 02:48:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 139328
IP address blocks: 103.158.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230 (0xe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38
Validity
Not Before: Sep 15 02:48:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=73B7D91F232D14ECBF9EDBEB1D23B49940179D0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d0:af:be:6b:e9:53:38:86:a6:71:05:af:53:
76:47:c6:8b:06:36:53:23:d2:e3:f9:a6:78:a7:0a:
58:d7:2f:bd:2b:d8:74:13:29:35:fa:b8:f3:06:df:
44:28:cf:ad:94:0c:1b:3a:42:c0:3d:d0:0e:50:f1:
a7:24:6e:8d:cb:cc:a2:cd:8e:0f:71:9d:23:82:b4:
55:e9:e8:49:7e:bd:ff:9e:00:72:04:80:8b:bb:7d:
21:b9:63:6c:a0:ed:4b:ca:e9:55:72:42:08:ae:fc:
2c:22:9d:ad:bd:9e:05:f7:89:73:f5:84:9d:89:88:
c8:04:6f:19:8b:34:2d:48:7f:6f:2f:85:a1:d0:69:
01:3c:47:f9:d9:bf:f3:0c:25:d6:7c:75:36:bd:0f:
d0:37:ff:a8:11:d8:29:39:4b:09:06:61:43:37:ff:
4b:44:7a:b1:4a:82:98:b1:f1:41:44:dd:dc:a0:fc:
76:dc:9d:33:6a:df:31:b0:bc:cc:59:dc:76:67:56:
1d:0d:8e:32:be:b8:9d:4d:db:4a:7d:70:33:03:0a:
34:cf:a2:95:d5:19:1d:59:29:9a:23:2f:c9:39:f0:
ad:7b:0a:54:21:4a:a0:96:0e:42:14:68:94:8f:e6:
25:f2:46:5b:65:11:ea:a7:d2:83:40:69:59:23:e3:
bd:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B7:D9:1F:23:2D:14:EC:BF:9E:DB:EB:1D:23:B4:99:40:17:9D:0D
X509v3 Authority Key Identifier:
keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/c7fZHyMtFOy_ntvrHSO0mUAXnQ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.186.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:d2:15:ec:1d:d3:f0:50:13:01:b7:db:01:65:e2:8c:25:8b:
c0:9a:8f:cc:78:68:28:1e:43:4b:f8:38:b8:65:a2:c7:d2:19:
7b:7f:c2:3c:dc:ef:a5:62:f8:95:01:82:1b:24:a2:27:4b:91:
33:94:7c:39:7b:a4:0b:e4:dd:dc:b1:b9:0f:62:4b:6d:aa:f9:
ed:17:21:4e:63:bb:14:b5:5b:de:73:77:f7:23:ab:0b:1f:02:
29:bb:c4:33:2b:5a:85:1b:46:4c:71:25:47:ce:1f:dc:4b:98:
31:3f:77:30:42:2d:a0:ab:59:5a:33:0d:d1:e8:75:c6:45:b2:
5c:e5:3e:ac:97:ac:b8:9a:1d:a9:f5:cc:be:3d:56:9e:bb:ea:
2b:de:c9:54:64:c3:1d:77:b0:64:b8:df:88:e3:b7:66:b5:7a:
f6:4b:05:d0:07:1d:ee:96:c6:3d:0b:e7:09:fa:fd:e5:b7:a5:
3f:f7:40:ad:a4:72:a8:1d:13:89:83:f4:09:74:97:46:cc:20:
c3:32:22:69:90:73:17:d8:a7:21:cb:6d:fb:31:b4:cf:4e:e5:
50:ac:f2:47:07:c4:67:bb:af:b8:ef:8d:0b:0c:11:e8:82:59:
2b:3e:30:01:33:d3:2f:e4:8d:2f:4d:9d:b2:55:39:31:47:89:
70:42:72:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org