Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IDBSuwVSS61bDXPViB-3TU3fric.roa
File: IDBSuwVSS61bDXPViB-3TU3fric.roa (raw, json)
Hash identifier: rVNvxMi59Y34V+CQ4SX7jJjO8c7HYznRPXMibxUw9ks=
Subject key identifier: 20:30:52:BB:05:52:4B:AD:5B:0D:73:D5:88:1F:B7:4D:4D:DF:AE:27
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2170
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IDBSuwVSS61bDXPViB-3TU3fric.roa
Signing time: Fri 25 Nov 2022 04:39:56 +0000
ROA not before: Fri 25 Nov 2022 04:39:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.92.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8560 (0x2170)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=203052BB05524BAD5B0D73D5881FB74D4DDFAE27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e6:89:e5:47:2f:10:27:81:1b:ae:5d:bd:ac:
1c:dc:35:25:ea:92:94:c6:7d:8e:97:06:7a:b2:5e:
d0:e4:38:52:d4:5e:d3:3d:e3:28:74:92:ac:70:8b:
c4:63:ed:3a:76:d3:5b:15:d4:e7:28:13:35:c6:86:
ef:ba:1e:ce:ec:48:94:23:e1:9c:63:90:39:18:49:
67:15:27:c4:78:d8:cd:87:50:3a:33:44:9a:f6:09:
83:07:76:d0:ad:82:63:06:e8:d3:89:10:69:fc:6b:
9f:02:e0:ce:f8:fb:99:92:16:2f:7b:19:0c:79:48:
5e:a7:51:73:2e:04:4e:ab:c3:b8:5a:ca:ed:fd:69:
6e:fa:2f:8a:af:0d:7d:b2:56:b6:c3:cc:d1:50:fd:
8c:7a:82:c4:a6:b5:31:81:ce:dc:63:2b:9f:90:85:
69:08:bf:c5:af:29:09:09:e1:fb:9b:69:fd:22:17:
5c:f9:c4:64:08:ad:24:64:2e:7f:b3:21:4c:47:f4:
81:c6:40:42:b3:de:65:c8:8d:c1:fa:fd:64:49:4e:
20:d1:a8:9b:97:f7:8e:d9:46:ec:90:09:b4:b5:4a:
b3:de:1c:ed:08:15:28:78:ba:c5:84:ba:b6:f9:06:
f1:c6:c6:b8:1a:0f:76:0f:a1:3c:9d:fe:af:08:90:
d8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:30:52:BB:05:52:4B:AD:5B:0D:73:D5:88:1F:B7:4D:4D:DF:AE:27
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IDBSuwVSS61bDXPViB-3TU3fric.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.92.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:b9:ba:eb:3f:fc:d1:20:b7:31:dc:b6:5f:a5:33:95:8a:fb:
07:d5:31:f2:22:c7:8a:86:ae:56:c4:4a:93:2d:db:68:02:28:
87:e6:29:09:41:5a:94:b3:cc:11:41:b4:54:b8:69:b9:8b:9b:
ef:f0:66:cf:db:48:5d:8e:62:59:03:7c:51:a3:1f:a2:2f:87:
47:e2:7f:9e:9d:05:25:59:9e:f4:5c:10:99:43:33:de:30:b4:
46:fe:a9:cc:d0:c7:70:92:63:dc:ad:d3:86:aa:e3:03:f0:69:
97:41:f4:37:7c:55:e4:cc:d1:a1:1c:60:7c:2f:1a:12:45:7b:
b0:2e:87:40:73:1b:08:9a:25:e3:a1:43:d4:50:16:65:c1:d5:
68:9c:a7:7d:21:b6:ca:e5:73:b7:75:03:85:ee:fe:a6:39:2c:
bb:7a:b5:91:5d:2b:b9:81:7c:1e:47:cf:be:02:99:2c:d2:f5:
65:70:69:e3:e2:af:35:f2:6a:1d:17:3d:3e:db:d5:86:4f:51:
57:9c:30:76:51:48:03:ad:21:49:5d:85:4a:84:d9:bb:44:c6:
e6:06:e5:48:46:3c:f6:fd:02:55:f0:f2:15:47:c1:f3:1f:30:
73:92:71:35:c0:0c:e5:9f:50:91:9b:9b:c1:17:67:2a:1c:9c:
81:ce:b3:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:27 2024 by rpki-client on console-ams.rpki-client.org