Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/13MWD_GyQsBTYQiFXeKGYTm_DTc.roa
File: 13MWD_GyQsBTYQiFXeKGYTm_DTc.roa (raw, json)
Hash identifier: N4EnkX7oDOOeCwH/tGyYcj8MYj1shjYNijPQv9ZS2JQ=
Subject key identifier: D7:73:16:0F:F1:B2:42:C0:53:61:08:85:5D:E2:86:61:39:BF:0D:37
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21AD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/13MWD_GyQsBTYQiFXeKGYTm_DTc.roa
Signing time: Fri 25 Nov 2022 04:40:11 +0000
ROA not before: Fri 25 Nov 2022 04:40:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.0.0/21 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8621 (0x21ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D773160FF1B242C0536108855DE2866139BF0D37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:22:1f:5e:37:25:b5:d5:87:1f:f7:51:65:9a:
14:49:3f:fa:9c:e1:7e:d3:e0:42:bd:c1:1b:e8:5b:
68:a7:06:43:c6:56:63:c4:f5:84:07:e8:a0:90:ca:
7b:f9:07:fa:b3:0b:da:fa:32:01:67:ac:e0:89:7d:
59:2b:18:3f:d8:ef:88:6a:a2:fb:f1:c7:29:16:ac:
66:5e:87:76:85:8d:83:80:f6:04:b0:7f:99:45:fa:
64:25:5d:11:ae:cf:72:8a:77:71:c2:47:40:a5:b8:
44:26:1c:8e:f2:96:43:6f:38:81:0d:2f:af:fd:93:
86:f0:45:f1:58:ac:5c:6c:64:c3:23:66:0a:e9:dd:
5c:68:e3:ee:98:08:b6:de:84:fb:79:38:1f:f5:cc:
bf:22:61:c0:91:91:93:40:1a:69:b1:67:b7:43:6b:
70:37:1c:dd:52:25:dc:9a:62:ac:52:8c:90:15:bb:
ed:08:4a:a5:83:ee:fe:a3:fc:35:3e:67:66:29:02:
98:a7:e1:e5:dc:f7:2c:5c:00:88:0c:cf:dd:79:ce:
e6:b5:bb:90:c1:be:d2:d9:6d:b7:9c:38:18:be:47:
70:12:68:9a:d1:82:47:7b:e5:69:4f:de:60:09:ca:
f0:c3:c4:0f:97:59:d8:ef:1e:5d:5c:bb:2f:2d:ee:
2e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:73:16:0F:F1:B2:42:C0:53:61:08:85:5D:E2:86:61:39:BF:0D:37
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/13MWD_GyQsBTYQiFXeKGYTm_DTc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.0.0/21
Signature Algorithm: sha256WithRSAEncryption
8b:83:56:a1:d3:d8:57:a4:75:0b:12:24:63:8c:c1:70:7a:2a:
b6:18:7e:64:bb:6f:dc:e4:7a:e2:28:c3:2b:52:49:ae:2c:a8:
3f:bd:d2:31:ba:3d:90:8f:97:fb:86:a7:32:93:79:a1:58:1b:
14:16:5a:2a:18:7b:5d:c7:91:62:3a:8a:ac:d3:c8:8f:b3:b5:
43:ad:9f:b7:0c:f7:cf:8c:4b:28:dd:52:76:25:c1:3a:b5:2a:
f9:99:2a:22:0f:32:54:f9:e1:ed:9d:22:f9:9a:5f:6a:ca:41:
00:c5:ea:2b:2e:09:55:f7:de:dd:65:59:bb:f7:0c:c0:65:3c:
f2:aa:45:38:36:1e:42:94:af:31:ee:e8:40:f9:92:fe:15:b6:
90:0f:d2:c9:30:ff:99:63:1a:72:23:26:f2:ed:ab:a8:fe:77:
77:d9:1d:06:05:3f:22:77:00:ab:34:fa:4e:03:c9:de:95:38:
71:79:43:b5:47:b6:ca:e4:9e:3e:ce:16:04:ca:61:23:97:0c:
24:62:2d:5e:3a:cc:f7:be:b6:ff:a5:1d:14:30:fb:70:d0:d0:
8f:39:8f:53:7d:0e:45:75:8c:34:d2:e1:d7:93:cd:50:84:6c:
9e:97:f4:2b:3d:55:11:98:93:77:63:1d:4c:e0:88:66:cc:e5:
25:18:0e:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:19 2023 by rpki-client on console-ams.rpki-client.org