Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6DD895EiohZYVCJzwlJEav1RowM.roa
File: 6DD895EiohZYVCJzwlJEav1RowM.roa (raw, json)
Hash identifier: LTzZAXLxVfbly5cnTkbO1ZTKnjhHmm9qxf8o6xFadFY=
Subject key identifier: E8:30:FC:F7:91:22:A2:16:58:54:22:73:C2:52:44:6A:FD:51:A3:03
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 0F89
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6DD895EiohZYVCJzwlJEav1RowM.roa
Signing time: Tue 29 Sep 2020 09:57:05 +0000
ROA not before: Tue 29 Sep 2020 09:57:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38841
IP address blocks: 123.192.32.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3977 (0xf89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 09:57:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E830FCF79122A21658542273C252446AFD51A303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:19:32:60:3e:04:a0:36:f4:3d:0d:02:14:49:
a1:e8:c0:26:20:55:fb:a8:24:5e:99:82:af:d4:79:
ff:9d:5f:c2:10:65:90:f0:f1:22:95:90:9a:b2:34:
d0:98:1a:fc:e9:f9:ba:bc:98:0f:b8:07:3f:d1:7a:
3c:c1:6b:f7:56:df:e1:dd:db:19:53:cb:b9:a7:ad:
59:76:9f:e3:e2:c1:4c:17:d4:77:43:ab:66:1c:ca:
09:68:7e:f4:7e:98:de:a5:87:7b:53:65:84:d7:fa:
d2:bd:88:98:6e:44:a6:af:e4:40:a8:1f:1e:cd:03:
8a:59:b8:b3:e6:79:1a:c5:e2:d5:86:32:24:72:8d:
d2:ef:8b:50:25:b5:5c:2e:d3:e6:65:51:8f:93:60:
ad:81:28:a6:96:08:a9:37:99:92:e0:e1:3d:0f:73:
54:b8:32:0d:6a:7a:64:87:d9:1f:43:58:68:e6:3d:
4d:e7:c9:00:d1:e6:b0:40:65:ec:98:e1:e7:31:c4:
88:43:ae:af:d5:2d:d7:d6:0c:a5:9b:2f:69:2e:2b:
43:5e:af:68:04:87:83:85:33:c4:9a:2c:23:33:80:
2b:0f:68:48:31:b3:17:ae:13:46:76:d6:30:d5:50:
c0:d4:8e:30:f0:3a:2d:19:70:90:a9:89:22:36:b1:
4a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:30:FC:F7:91:22:A2:16:58:54:22:73:C2:52:44:6A:FD:51:A3:03
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6DD895EiohZYVCJzwlJEav1RowM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.32.0/20
Signature Algorithm: sha256WithRSAEncryption
43:c0:0f:66:c0:be:0a:cc:9c:1c:e8:1c:f7:a3:1e:e6:5c:66:
21:e2:b0:7c:76:c1:a7:64:f4:d5:e9:d5:46:76:3b:6f:eb:15:
16:ba:3c:7a:34:77:39:30:ea:d2:30:e1:21:af:93:4f:41:fa:
8d:55:bf:3d:58:ad:35:58:8e:3a:41:e0:f7:b6:95:3c:d7:60:
6d:0a:06:4e:fd:a9:25:3a:89:ce:c0:61:3e:93:16:05:96:53:
1a:f7:4d:1d:6c:a1:89:6f:21:0b:e6:25:eb:25:fc:50:4a:fe:
e2:f4:5e:8a:f6:7f:16:b1:0b:ca:a1:83:53:9c:16:49:3d:ef:
2e:07:08:4e:00:ab:e7:9d:88:25:46:b6:00:d1:f4:5b:1a:6c:
7b:f1:26:50:ac:84:a9:33:45:6d:ac:fc:c7:f7:e6:9a:46:d0:
23:fb:6c:3e:83:da:bc:28:d0:69:bf:78:31:a7:a8:86:1e:ee:
2c:aa:0c:d6:a2:d0:33:e4:3a:ad:a9:1d:17:64:69:79:78:cc:
4f:de:49:63:1a:19:3c:60:d2:1f:df:e7:e2:5d:e6:ba:43:f2:
b8:e7:4b:ec:26:f0:da:4a:4e:e1:03:9e:50:f0:b7:28:6c:65:
89:eb:96:5b:bf:a4:f3:5e:ed:7f:68:59:0c:88:19:fe:5e:d1:
16:40:11:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org