Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4EVo7lfwI6eVewe5f1fOlPUS-TA.roa
File: 4EVo7lfwI6eVewe5f1fOlPUS-TA.roa (raw, json)
Hash identifier: nslu/1+ACIeI3hN9WF6b/cpf1Cn+DMkPf69a6ku1QNo=
Subject key identifier: E0:45:68:EE:57:F0:23:A7:95:7B:07:B9:7F:57:CE:94:F5:12:F9:30
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22EC
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4EVo7lfwI6eVewe5f1fOlPUS-TA.roa
Signing time: Fri 25 Nov 2022 04:41:48 +0000
ROA not before: Fri 25 Nov 2022 04:41:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.160.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8940 (0x22ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E04568EE57F023A7957B07B97F57CE94F512F930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:65:9a:e2:52:71:01:f6:9c:87:2c:e0:aa:a3:
c2:77:e7:81:7d:f9:f3:61:27:bf:4e:e2:50:e3:42:
90:c3:b5:f0:2b:6a:41:59:79:8c:2e:40:21:04:f3:
5a:39:f7:78:f6:e3:6f:db:82:e9:86:f5:84:66:53:
45:ea:c5:f3:d9:63:3d:ee:29:e3:05:f0:8f:6e:11:
7c:75:28:50:74:08:e0:7f:72:a3:81:77:c9:bf:12:
66:2a:89:12:63:7d:13:bc:a9:67:89:53:a8:94:54:
35:0e:5b:6b:a2:9f:cd:80:4d:2d:fc:70:5b:5b:54:
63:80:fe:54:03:14:11:d5:54:7e:e5:b0:a9:58:a7:
77:84:2b:be:ba:25:81:5a:32:61:47:12:a7:12:51:
f2:3e:7c:c1:9d:8f:7d:48:55:32:c0:b8:27:71:b7:
e7:b4:a4:2d:22:0e:a3:64:37:37:ad:2a:fa:cb:ac:
e6:6a:3e:3f:9b:c4:18:10:1a:e1:ab:c8:e0:19:62:
82:e7:5c:98:55:a0:ae:74:8e:d6:93:03:4a:fa:ac:
ba:30:a0:ed:26:8c:32:48:d7:18:41:c0:64:22:a5:
a7:71:73:89:e7:b3:71:f7:cd:4e:7c:21:af:a2:4a:
7c:9c:92:8a:44:dc:4c:52:aa:81:39:0d:e7:fb:40:
84:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:45:68:EE:57:F0:23:A7:95:7B:07:B9:7F:57:CE:94:F5:12:F9:30
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4EVo7lfwI6eVewe5f1fOlPUS-TA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.160.0/22
Signature Algorithm: sha256WithRSAEncryption
60:94:32:52:8c:f7:e5:45:42:d7:33:af:7d:e6:90:25:86:7a:
f3:c1:f9:00:10:54:34:03:d7:d3:a7:30:0e:c4:4b:ff:46:69:
36:6c:2f:64:07:4f:db:d5:ba:34:77:c4:78:f2:c5:5b:09:98:
95:d0:b4:01:9b:a9:fb:3b:cf:fd:ee:16:b1:c3:1f:61:d8:36:
08:bb:1b:7e:57:a2:62:47:b8:64:07:60:f3:31:a8:d0:aa:1b:
f3:08:39:f5:28:0a:c1:e5:da:ec:44:dd:39:fe:e3:da:d9:b4:
c7:35:1c:cf:c3:2a:e4:17:50:7e:bb:47:91:78:87:65:b8:a6:
90:f9:07:ab:8b:cf:2a:2e:6d:c4:94:22:4f:0f:6d:aa:b4:ff:
c3:ef:b0:a2:20:20:1e:44:b5:3e:1f:b0:76:46:73:24:d1:d5:
37:28:86:82:8f:2b:71:91:8c:27:d8:fe:cb:74:5f:0c:f0:28:
c0:92:1c:fa:70:88:ab:27:77:b1:2d:3d:1e:04:21:18:e7:d1:
41:bf:2c:bc:67:95:fb:8a:0d:e9:8e:4f:ee:31:49:eb:1e:28:
9d:23:b6:9a:99:06:77:4c:93:e6:ee:33:b9:90:00:d3:ef:e0:
f6:7a:c2:d8:11:60:c1:61:c3:ad:b2:7b:1e:4c:ab:60:ff:b4:
01:85:d1:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:20 2023 by rpki-client on console-ams.rpki-client.org