Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3nXnhdz2rYRGkVR45he4B336X9M.roa
File: 3nXnhdz2rYRGkVR45he4B336X9M.roa (raw, json)
Hash identifier: AzJVf6X6uEJRZ0YnN6Jv5a0oe29SpeUuiJIbxH5cEj8=
Subject key identifier: DE:75:E7:85:DC:F6:AD:84:46:91:54:78:E6:17:B8:07:7D:FA:5F:D3
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21DE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3nXnhdz2rYRGkVR45he4B336X9M.roa
Signing time: Fri 25 Nov 2022 04:40:30 +0000
ROA not before: Fri 25 Nov 2022 04:40:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.176.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8670 (0x21de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DE75E785DCF6AD8446915478E617B8077DFA5FD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:86:89:a4:87:11:16:13:51:7c:82:68:8d:4a:
5b:98:e6:83:47:a4:4c:af:6c:ef:e3:84:f6:51:c1:
cf:50:3c:0e:ea:e5:44:6c:c4:9d:81:fb:85:b5:46:
e1:8d:5d:b3:43:c7:03:ed:2a:9e:46:47:89:9d:dc:
88:c1:54:6d:f3:69:38:47:4d:8a:ee:b6:f9:7e:74:
76:d8:f5:cf:e9:1a:fc:6f:f5:f8:88:37:f4:89:b9:
3a:66:e8:da:e5:49:b5:d1:e5:d1:01:3b:d9:c6:f4:
cf:a3:84:ff:ad:23:c0:89:67:80:8e:16:25:47:05:
b4:b4:f8:7d:a0:dc:bb:e9:37:96:f3:bd:d5:f8:d3:
aa:41:16:8e:95:7a:fe:8e:4b:ec:ad:1a:2a:17:03:
69:ec:db:90:84:84:6b:2d:a0:ff:d1:e9:50:fa:b6:
73:50:d5:be:78:53:5d:34:36:31:ea:29:f0:f0:33:
4d:ba:43:e8:7e:47:f0:b7:ed:02:5e:17:2d:e9:32:
41:eb:4a:45:e4:5e:b3:ee:49:a4:39:79:35:a5:e8:
3e:b1:00:7f:e9:1c:61:27:d6:39:67:44:de:96:65:
7e:62:8d:51:1e:05:a8:ff:6c:30:dc:68:31:1c:71:
dd:5c:66:81:63:ad:46:ed:0f:47:cf:95:0b:8c:14:
72:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:75:E7:85:DC:F6:AD:84:46:91:54:78:E6:17:B8:07:7D:FA:5F:D3
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3nXnhdz2rYRGkVR45he4B336X9M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.176.0/22
Signature Algorithm: sha256WithRSAEncryption
15:49:6b:12:09:69:b2:49:9e:dd:05:e5:6f:98:0f:dd:c6:37:
f6:a8:9b:52:89:33:72:1d:a0:e9:8c:86:61:28:af:fb:b3:d0:
17:d9:36:81:4e:7d:95:8c:2d:59:c8:aa:19:44:b0:c2:af:dd:
00:4f:78:84:5b:88:39:37:2e:d4:b4:7a:7b:a1:14:8b:1d:08:
08:58:bf:f2:91:ad:47:0e:e3:b2:fa:20:12:53:f7:57:bf:14:
a0:b7:94:c7:a4:1a:a6:e2:78:74:43:6f:63:a8:00:b3:07:10:
2a:c9:8a:7c:c2:60:49:07:fc:82:85:13:02:54:0b:a0:ae:83:
d1:0d:fe:c9:8f:40:f5:84:14:1e:5f:9a:e8:71:8d:da:66:1b:
a4:90:99:38:12:62:67:72:3d:d6:dc:e6:d7:d6:d2:7c:87:d6:
23:b7:f5:05:aa:ce:17:53:b0:f0:54:a8:c6:0a:10:7d:ba:30:
7f:83:93:35:8c:fb:c7:4f:6d:19:2c:26:47:be:96:c1:d8:ee:
8a:7e:4a:2a:ea:3b:2e:26:df:35:e0:bb:66:e9:a7:d6:68:28:
ed:a7:98:9c:da:3e:69:a1:36:3a:d1:eb:a8:0b:f0:d4:e9:11:
ee:fc:72:cb:1e:d4:f2:9b:53:0d:4b:8b:b6:82:7b:45:3e:e6:
cf:67:2b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:46:59 2023 by rpki-client on console-fra.rpki-client.org