Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/v9YNg1VUgnuHdaol2IWf-3a6WQ0.roa
File: v9YNg1VUgnuHdaol2IWf-3a6WQ0.roa (raw, json)
Hash identifier: 1Fbc4zBWv5zLUZod+o4PAcTMwaaQQI4ieh9VCt0NY4A=
Subject key identifier: BF:D6:0D:83:55:54:82:7B:87:75:AA:25:D8:85:9F:FB:76:BA:59:0D
Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38
Certificate serial: 011D
Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/v9YNg1VUgnuHdaol2IWf-3a6WQ0.roa
Signing time: Mon 14 Nov 2022 01:55:17 +0000
ROA not before: Mon 14 Nov 2022 01:55:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18041
IP address blocks: 103.158.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 285 (0x11d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38
Validity
Not Before: Nov 14 01:55:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BFD60D835554827B8775AA25D8859FFB76BA590D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b2:4a:f6:c2:c4:52:82:9e:3e:c3:05:ab:1d:
b3:1c:f3:d3:59:98:b8:7a:29:e8:77:67:87:6e:42:
87:34:7c:eb:38:d8:d7:5e:45:60:49:50:c2:c7:db:
f1:9f:c0:c2:6f:ce:2e:7f:84:fe:f6:aa:99:0e:41:
41:43:ae:27:b1:e6:f8:91:77:2d:28:fe:38:fb:d3:
25:ac:ba:73:31:0b:b3:f6:84:cc:f8:0a:cc:ad:95:
99:68:a7:e1:97:4b:30:74:fc:c2:55:b5:20:24:8f:
13:c1:58:52:52:ae:e2:e7:cf:0e:34:9c:13:e4:90:
44:29:dd:44:4f:8b:75:16:55:41:eb:08:bb:8c:f1:
67:75:1c:72:88:3d:8e:ea:be:7c:27:ba:3d:94:85:
1d:3d:a7:f8:10:5b:59:cb:2d:cf:8d:a2:e3:6b:6d:
2c:ad:ec:c4:24:93:13:20:4e:41:a8:18:ce:31:e5:
ba:6e:ea:f9:6f:e0:ef:44:9b:38:cf:09:b5:b7:6c:
02:d7:b3:9c:fc:e3:79:6f:65:34:f5:c9:6b:52:f9:
d7:d0:b5:c3:27:57:28:d0:52:5c:52:7a:a4:36:9c:
2f:a5:14:7d:59:19:c9:7f:d9:bc:d7:9b:27:9a:5a:
b8:48:8b:40:02:24:83:d2:be:3a:e4:30:80:1e:27:
b4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D6:0D:83:55:54:82:7B:87:75:AA:25:D8:85:9F:FB:76:BA:59:0D
X509v3 Authority Key Identifier:
keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/v9YNg1VUgnuHdaol2IWf-3a6WQ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.186.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:99:59:ef:79:56:09:42:9c:39:08:31:ab:4f:a5:4c:b8:f7:
c2:7c:2f:42:73:ff:71:bc:46:0f:7a:9d:cd:be:15:57:d1:13:
9c:57:b5:93:ca:8b:60:b2:0d:9a:e2:81:d7:83:55:e3:61:2f:
41:03:83:c6:2d:2a:85:cf:b5:7a:2d:db:ba:2a:4f:9e:e9:fb:
a1:83:58:07:72:48:c5:4f:0e:50:0c:1f:28:e0:92:44:a3:39:
0a:69:4a:f6:3a:e0:b6:cb:ac:e9:ca:94:36:94:75:db:ce:c1:
ea:b1:03:2b:b2:72:93:f3:17:86:4d:5e:38:87:a8:4e:8b:25:
ee:10:2e:18:17:ab:78:66:43:aa:e8:4e:dc:0d:c7:57:e1:6c:
33:1f:6d:41:52:93:6b:ab:20:56:74:95:db:cb:99:75:95:75:
bf:95:03:f6:c0:d2:2e:f6:2a:2e:78:ec:6f:16:68:5f:10:39:
ce:5e:30:c6:e7:a9:0e:9b:49:46:30:4c:da:a4:04:78:47:d9:
b4:5d:3b:85:23:0e:8a:cc:be:d0:9e:e4:ee:21:38:12:db:8c:
ff:ad:6c:68:8c:e6:11:cf:90:98:a2:11:05:73:04:2b:ca:4e:
e7:60:5e:ce:fa:06:1a:dc:30:61:8a:88:e3:cb:3f:5a:86:32:
35:ce:f3:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org