Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3GeLnU5c0aea4_TyeLJIFICrD3g.roa
File: 3GeLnU5c0aea4_TyeLJIFICrD3g.roa (raw, json)
Hash identifier: oORGMHdqpC8DfEnhd/K2y+WDPcX7j/5jRBOHHy/e06U=
Subject key identifier: DC:67:8B:9D:4E:5C:D1:A7:9A:E3:F4:F2:78:B2:48:14:80:AB:0F:78
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22CB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3GeLnU5c0aea4_TyeLJIFICrD3g.roa
Signing time: Fri 25 Nov 2022 04:41:39 +0000
ROA not before: Fri 25 Nov 2022 04:41:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.96.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8907 (0x22cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:39 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DC678B9D4E5CD1A79AE3F4F278B2481480AB0F78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a2:f8:2c:fb:c4:58:9d:48:bd:00:ed:16:e2:
1f:15:31:4f:c9:2a:03:d5:17:d8:6a:6c:7c:d2:ff:
b5:1b:2d:1d:53:62:d9:0c:f9:80:bd:e0:a1:c7:c8:
99:83:4a:56:22:f6:4e:44:e5:bd:da:c3:ca:71:39:
a8:7b:4f:30:80:22:54:15:ca:99:8d:40:26:9d:79:
f0:5f:2f:be:7a:b3:cb:29:38:eb:56:af:a5:7e:7a:
e3:9b:28:2a:91:95:e6:e2:47:7a:b6:0c:7d:78:bf:
9d:3c:a2:cc:1c:de:0e:5e:a2:7e:aa:4c:2f:0c:39:
0a:cc:d9:bd:58:55:84:3f:63:c3:18:46:60:c8:f4:
8a:14:27:c0:dd:2d:6f:f8:2b:68:4d:b8:f1:3b:94:
f2:98:36:61:41:fd:6b:68:85:0d:ed:69:f4:8f:c2:
4c:b0:f4:7f:b1:65:41:ed:3c:01:07:6d:b1:a1:fb:
75:87:f2:1e:4d:4d:9c:fb:a2:b9:18:50:56:9d:26:
33:ca:2a:c7:64:d7:50:52:d2:ef:c1:c5:fd:76:0b:
7b:9d:8e:17:a6:5a:15:74:64:08:17:f1:31:05:81:
14:ed:43:a0:d8:c5:05:03:4b:4c:0f:fd:13:5b:93:
ad:fb:32:45:43:27:63:30:b0:3b:ee:e4:cb:f5:ed:
b7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:67:8B:9D:4E:5C:D1:A7:9A:E3:F4:F2:78:B2:48:14:80:AB:0F:78
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3GeLnU5c0aea4_TyeLJIFICrD3g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.96.0/21
Signature Algorithm: sha256WithRSAEncryption
3e:c7:2e:93:da:74:64:08:4a:bd:e6:84:6e:4f:59:8c:f0:52:
ef:ee:67:23:ea:6e:c3:32:19:3e:9f:7c:b4:fa:df:f7:11:40:
c6:89:d6:5d:f9:e7:58:a0:a3:d0:11:98:3b:d1:62:18:b5:4c:
7d:7f:f5:a7:ff:ec:a2:be:de:dd:ef:f3:f9:bb:b4:f1:f9:d0:
cd:0d:1b:92:41:8a:f7:60:dd:6b:e7:b5:94:82:75:f1:23:d6:
f9:6d:18:17:66:57:a7:e9:ab:83:25:90:82:38:66:a3:20:09:
dc:69:f4:46:ba:88:ca:6c:d4:f0:24:80:38:f6:48:15:1b:8e:
ce:0a:66:2f:59:90:b0:de:e3:ad:0f:cb:81:d2:86:c9:e7:ed:
e5:0a:6c:5f:a0:5d:a4:0b:05:51:f8:3d:2f:5b:fa:b6:88:7c:
72:44:d3:96:43:cf:89:f8:6e:d3:b9:29:9e:b8:cd:c6:4f:31:
ee:7a:2f:1b:40:42:cf:de:b9:ae:ef:ac:44:ce:2a:4c:88:e8:
d5:e8:d5:47:1d:1f:4e:cf:42:79:7d:df:9f:0e:5d:a9:6d:3a:
b5:be:22:cd:66:5b:eb:c8:be:40:43:91:16:01:34:51:c5:5f:
80:8b:26:21:db:24:71:6e:bf:b0:83:de:7e:20:b1:76:7e:8a:
42:36:57:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:46:59 2023 by rpki-client on console-fra.rpki-client.org