Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2kwwIZukmVytXValm04Wswg0HV0.roa
File: 2kwwIZukmVytXValm04Wswg0HV0.roa (raw, json)
Hash identifier: RkgZsVfZT6c97NWn8lhNvorN84ZYO7vF/7e1TfYlFjo=
Subject key identifier: DA:4C:30:21:9B:A4:99:5C:AD:5D:56:A5:9B:4E:16:B3:08:34:1D:5D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22C4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2kwwIZukmVytXValm04Wswg0HV0.roa
Signing time: Fri 25 Nov 2022 04:41:37 +0000
ROA not before: Fri 25 Nov 2022 04:41:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.40.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8900 (0x22c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:37 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DA4C30219BA4995CAD5D56A59B4E16B308341D5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ef:7e:db:be:b6:1e:ed:da:07:4f:05:f3:36:
48:56:5e:c7:3f:99:96:d5:db:04:ee:fa:8d:0e:61:
33:5a:b8:73:bb:e0:0e:b9:cb:41:1f:28:bc:3b:da:
cc:bd:7d:a2:ad:81:87:c6:bd:2f:88:6d:eb:da:34:
be:c4:86:a2:23:6d:83:36:4d:bc:48:26:16:a3:25:
fd:d9:37:db:02:60:e0:5a:13:5f:72:60:a8:4b:ca:
0e:d5:cd:be:09:97:15:2d:3f:1c:5a:b0:01:7d:50:
84:e4:ab:7e:9d:2d:8a:18:e7:72:3e:2f:d4:15:de:
9d:26:c6:2e:34:fd:3f:4b:9f:dc:4f:0d:cd:ad:ae:
4a:72:68:58:d5:08:73:c0:98:91:15:ee:46:7f:54:
03:86:33:78:2e:8f:05:8b:38:21:80:3c:56:45:60:
5f:22:db:92:bf:3b:e9:8a:82:b9:43:73:9e:05:0e:
75:a5:26:6d:c5:2b:49:6e:48:f3:86:fb:f6:55:a8:
83:b6:9a:84:d6:ec:4c:4e:66:a0:42:ef:0d:cf:ab:
7f:2c:16:19:1d:ee:fc:5f:ad:da:b0:d3:77:32:58:
fc:51:50:09:d8:78:cb:3e:90:09:21:e3:58:ee:02:
f9:d7:12:82:ce:85:e0:cd:b1:d7:4c:f6:e0:51:18:
82:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:4C:30:21:9B:A4:99:5C:AD:5D:56:A5:9B:4E:16:B3:08:34:1D:5D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2kwwIZukmVytXValm04Wswg0HV0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.40.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:79:0a:6e:e8:ab:ed:24:72:9a:08:e8:57:82:39:29:dc:9f:
43:77:cd:78:de:41:ec:b6:15:a5:fd:bc:24:ac:69:f0:68:a5:
89:43:a3:0f:eb:7b:df:6f:37:6a:fa:dc:45:8a:d0:f1:31:cf:
e5:b0:b0:18:9b:c3:59:4d:76:73:5d:84:95:f6:64:f8:e7:5a:
40:78:c0:bd:42:33:2d:f6:ce:cf:82:96:07:91:a0:5f:d6:02:
4e:49:dd:3b:c0:f0:a0:8b:82:ef:a5:49:e8:09:40:10:f9:6d:
fb:1a:f6:26:67:9d:d9:81:88:05:f9:de:46:91:96:41:32:53:
0b:43:04:d9:39:dc:6f:32:3f:61:3c:dd:8e:0f:53:7f:f8:9f:
89:f6:42:21:74:ed:56:a5:e1:2f:85:c2:ad:29:71:1f:79:9a:
04:46:09:30:d8:65:a1:12:31:7e:cb:b6:4a:60:a1:2e:9d:cb:
7a:55:fa:17:93:d3:d3:01:e7:8c:c6:1b:f6:b4:ee:9e:64:3f:
51:1f:5b:f6:cb:a9:12:d9:44:5f:01:4f:80:ff:6d:79:b2:52:
b1:77:a2:58:db:1e:2e:bc:b8:a1:6c:b9:af:8d:50:d7:1b:ea:
4a:74:63:c1:62:ce:66:8a:7f:3c:21:5a:f1:dd:ba:56:f9:09:
2c:3e:c6:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:46:59 2023 by rpki-client on console-fra.rpki-client.org