Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/_HeRvHm7dc4nMkpkSsH_2zHgwl4.roa
File: _HeRvHm7dc4nMkpkSsH_2zHgwl4.roa (raw, json)
Hash identifier: azvI+VgrAjBNz5Aii+S6yKnN4cfuVodjf6bMuqRK8u4=
Subject key identifier: FC:77:91:BC:79:BB:75:CE:27:32:4A:64:4A:C1:FF:DB:31:E0:C2:5E
Certificate issuer: /CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Certificate serial: 1E
Authority key identifier: 31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/_HeRvHm7dc4nMkpkSsH_2zHgwl4.roa
Signing time: Sun 07 Feb 2021 13:13:28 +0000
ROA not before: Sun 07 Feb 2021 13:13:28 +0000
ROA not after: Thu 02 Dec 2021 03:52:15 +0000
asID: 31972
IP address blocks: 103.159.88.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30 (0x1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Validity
Not Before: Feb 7 13:13:28 2021 GMT
Not After : Dec 2 03:52:15 2021 GMT
Subject: CN=FC7791BC79BB75CE27324A644AC1FFDB31E0C25E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f6:05:e7:17:24:40:a1:b6:13:6c:4b:23:a8:
b1:9a:d1:24:58:f6:5d:66:d0:78:e0:7a:25:25:42:
d1:fa:e8:e0:4f:f7:21:ef:a8:a1:12:49:cf:a3:d3:
16:bc:a4:2a:dc:29:b5:29:2b:22:b0:e7:4f:62:23:
7b:e2:d4:ba:67:5a:82:cc:e9:d9:d1:ca:05:bc:7d:
67:18:53:dc:23:9e:d7:e9:ca:97:97:6f:f3:86:57:
97:03:1e:28:7e:65:3b:bf:7c:6f:db:4c:ac:a2:0a:
f6:ce:69:c5:e2:c1:5b:25:89:ef:f2:12:63:57:47:
00:cb:fb:23:52:f2:6c:6e:3e:d3:69:be:14:d4:5c:
57:39:57:d4:e0:bb:dd:73:3c:ba:13:7f:67:86:a5:
f2:78:38:ab:25:09:d6:e8:db:8e:78:a3:4c:b0:75:
7b:40:62:b0:73:eb:a1:1b:0c:23:07:a7:6f:3c:3b:
db:24:07:0d:cb:56:8f:f4:ac:0d:8f:a4:ac:a7:7b:
47:00:d9:f0:e2:94:48:b2:d4:bd:a0:34:3b:7c:e8:
88:9b:17:6c:3c:04:a2:d8:95:7a:7f:35:7e:13:41:
eb:4a:5e:5d:46:38:8d:83:f9:a7:cb:6c:81:4a:53:
a8:c7:80:41:38:db:0e:d8:21:85:83:8e:a6:ca:97:
70:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:77:91:BC:79:BB:75:CE:27:32:4A:64:4A:C1:FF:DB:31:E0:C2:5E
X509v3 Authority Key Identifier:
keyid:31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/_HeRvHm7dc4nMkpkSsH_2zHgwl4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.88.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:59:9c:a1:c2:7e:98:2f:13:28:ed:fc:47:83:f7:1e:0c:61:
0c:a1:7a:36:33:be:ed:6c:4f:5f:83:8b:b3:f9:e0:06:9e:c4:
91:8f:4c:e3:13:0d:9a:94:12:fb:48:68:88:f7:04:75:2e:e4:
a6:fd:cc:58:c4:c4:de:f7:10:85:cf:57:9e:10:94:03:4e:02:
8b:13:44:23:c3:95:4d:16:d0:7f:d0:4d:70:87:03:4c:cb:db:
6b:c2:23:39:30:a3:98:f2:82:19:24:b1:b1:05:38:f8:6c:e4:
01:6f:f4:8a:be:cf:20:a9:4a:74:22:f2:79:dc:ba:04:c5:52:
c3:cc:10:59:61:99:b6:59:01:fe:7d:94:72:c8:0a:01:0e:4a:
0c:ed:10:a5:d6:12:5f:ec:b4:b2:69:2f:7d:98:c6:22:38:ae:
69:3e:e8:92:76:17:c0:1c:49:e8:5a:ed:74:8d:91:93:1f:a7:
bd:f3:96:b7:fd:28:93:c9:f8:6b:7c:02:08:2e:e5:f2:e6:26:
af:db:f0:a1:85:12:a0:50:56:d8:3b:9c:26:c5:4a:b9:a9:5a:
26:09:55:2c:e8:52:81:4a:6b:6e:af:c9:61:07:0a:ec:86:f1:
44:1d:dc:9b:56:bd:a9:be:47:69:4b:67:c8:8d:e9:50:8d:2e:
8f:fb:fa:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org