Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/qWlAi5vJDkZIQE22YWene1Mb2PU.roa
File: qWlAi5vJDkZIQE22YWene1Mb2PU.roa (raw, json)
Hash identifier: 5nutpJ00yjAtuxIq9q2fMP1zJF/Mig5Ayl3mXXyfOJA=
Subject key identifier: A9:69:40:8B:9B:C9:0E:46:48:40:4D:B6:61:67:A7:7B:53:1B:D8:F5
Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38
Certificate serial: 011C
Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/qWlAi5vJDkZIQE22YWene1Mb2PU.roa
Signing time: Mon 14 Nov 2022 01:55:17 +0000
ROA not before: Mon 14 Nov 2022 01:55:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 139328
IP address blocks: 103.158.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 284 (0x11c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38
Validity
Not Before: Nov 14 01:55:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A969408B9BC90E4648404DB66167A77B531BD8F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:21:12:66:d4:9f:77:28:1e:17:95:c3:4e:08:
6c:4d:51:22:e1:cc:da:ed:1f:86:e4:92:d6:2b:01:
b0:36:d0:b4:b7:c1:4e:1e:a5:e7:ff:b4:0c:18:a8:
dc:10:79:e4:ee:b3:81:fd:86:c9:3e:70:8a:c8:92:
1f:3d:87:6e:03:f7:01:4d:13:d1:ba:b3:69:c1:3b:
7f:12:31:60:1d:8a:f8:ac:ea:13:ce:34:5b:5e:07:
1e:78:37:51:be:e1:aa:12:d5:fc:e1:c6:35:29:b6:
0e:7d:e7:25:da:8d:d8:c4:4c:2e:af:f7:92:52:fb:
40:66:dd:5d:15:a7:5f:0b:8a:c0:1f:90:d8:f4:e5:
37:f0:fb:47:24:f8:9c:0e:c0:86:d1:01:74:99:fa:
b6:66:48:e2:91:4c:dd:fd:8e:ce:bc:7f:02:04:0f:
bc:42:65:2f:68:d1:62:34:37:4a:df:e7:a1:95:fa:
21:d0:e7:23:03:34:c2:60:ee:c9:6b:50:45:e5:0c:
64:17:9a:c6:6c:5f:bf:71:47:83:bc:92:fb:ea:41:
77:4c:c0:ab:8b:71:e1:4d:4b:33:81:18:a4:45:97:
97:99:02:26:1e:ce:78:82:4c:b4:e0:82:e6:e4:7b:
49:95:36:6e:df:f2:9e:22:24:14:4e:e4:00:b8:56:
be:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:69:40:8B:9B:C9:0E:46:48:40:4D:B6:61:67:A7:7B:53:1B:D8:F5
X509v3 Authority Key Identifier:
keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/qWlAi5vJDkZIQE22YWene1Mb2PU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.186.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:75:b7:19:51:ca:5f:f5:99:46:7e:8b:25:24:39:3e:07:49:
f8:ec:56:d5:78:95:59:b2:11:69:db:b4:23:d6:a3:b0:19:62:
38:5c:d9:11:1d:bf:bc:b0:82:b6:80:0b:1b:6a:6d:d1:69:75:
4e:3e:f3:a8:42:67:a5:3d:f0:2b:4c:a8:80:a5:26:00:20:05:
9c:32:2e:2a:13:6d:1e:31:f0:f3:d2:8f:2b:ad:50:3d:d7:78:
e3:ad:24:c3:72:7c:ca:fa:52:7d:8f:ed:75:f6:73:01:0a:b0:
b1:b7:fe:ad:22:6f:f6:36:0b:4b:3a:e3:e8:bf:4c:97:44:8a:
c9:e6:b5:9f:e0:0f:ff:e1:72:f9:7a:a5:21:84:97:61:f8:c3:
7e:de:25:97:53:64:46:a6:25:3c:de:53:0f:da:9e:9e:c9:c4:
29:0c:39:3d:ef:fa:45:11:fb:68:f8:7a:c0:6c:cd:65:b0:bf:
b9:53:37:5a:c6:59:8f:61:b4:e7:ce:ec:ff:b9:48:c4:b7:93:
a3:4b:80:3f:ab:d0:d3:a3:23:a7:4b:91:16:ff:50:72:27:95:
25:21:29:a0:69:20:a4:67:92:05:91:83:7c:aa:9e:1a:26:b8:
e4:03:88:2f:c7:15:6b:c3:74:7d:44:33:72:cd:f0:91:16:f5:
02:47:b6:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org