Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4SeGz0eKbysw0qhUECN2C9mDROc.roa
File: 4SeGz0eKbysw0qhUECN2C9mDROc.roa (raw, json)
Hash identifier: rkqutRwsbJacAgVFVi2+Ec/31iA5VTDHZ75v/NOSYFA=
Subject key identifier: E1:27:86:CF:47:8A:6F:2B:30:D2:A8:54:10:23:76:0B:D9:83:44:E7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1F7F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4SeGz0eKbysw0qhUECN2C9mDROc.roa
Signing time: Thu 08 Sep 2022 02:50:37 +0000
ROA not before: Thu 08 Sep 2022 02:50:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.140.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8063 (0x1f7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 8 02:50:37 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E12786CF478A6F2B30D2A8541023760BD98344E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fb:77:e2:06:c0:f2:e8:91:cd:fd:eb:15:49:
f4:19:ac:4d:90:77:86:85:cd:0a:0f:29:87:ea:da:
ba:84:b1:a7:aa:52:26:1a:a8:bc:ab:91:a4:e2:31:
7d:5b:ab:19:07:07:34:b8:33:56:3d:a8:c6:66:c4:
7b:57:4b:b5:09:98:d5:4a:bb:b3:ae:f3:ee:32:a7:
52:f4:b8:f0:df:4b:68:61:92:74:2d:b1:7a:7b:f7:
fe:01:43:63:e1:91:1a:2c:0a:56:46:1f:2d:94:90:
cb:92:6f:3f:45:2d:be:a4:1e:6f:d8:e9:05:10:da:
7d:72:0e:b1:38:2a:33:ee:40:4d:3b:a6:4d:09:7c:
1a:f7:3d:93:95:96:77:85:43:21:0d:ad:7e:e0:de:
fe:ad:ba:37:fd:35:c9:d6:a1:ba:78:aa:3b:b1:36:
a4:66:1f:84:30:0d:f8:87:b2:bd:99:5d:45:e9:7e:
03:1f:79:82:04:6d:72:e2:80:45:bb:31:35:c1:7a:
34:c4:02:aa:57:76:ee:42:b3:99:8f:34:ed:ff:a3:
1c:f4:13:ab:e1:1e:c9:c4:96:be:b7:d8:98:96:62:
10:a4:69:94:8b:10:dc:31:0f:25:e0:f0:6d:c5:82:
51:a1:3e:4a:72:64:e3:ba:8f:38:a9:73:c6:ef:2e:
fd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:27:86:CF:47:8A:6F:2B:30:D2:A8:54:10:23:76:0B:D9:83:44:E7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4SeGz0eKbysw0qhUECN2C9mDROc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.140.0/22
Signature Algorithm: sha256WithRSAEncryption
85:25:02:fb:9a:9a:81:4a:f6:8c:66:cd:d1:f3:68:20:4b:ca:
85:90:c0:c8:7b:76:6a:ec:c5:40:65:0e:f2:18:18:59:f2:0b:
74:5d:2b:80:9d:3a:2e:f9:12:82:08:19:b3:6b:6a:d4:11:ae:
80:e0:88:e4:62:24:82:4a:ac:e8:1f:87:7f:88:bf:b3:2d:17:
a2:12:70:c5:f3:c5:1e:b4:5f:e4:ff:1b:32:f0:8f:b3:cd:db:
d0:52:02:84:d8:2e:9f:3d:db:07:e7:af:57:af:ce:ed:78:ee:
e4:48:8e:51:09:3e:10:9b:5a:49:f4:19:c8:33:d9:10:04:76:
44:f3:67:3c:ce:60:90:11:e0:63:06:a5:a6:d3:6e:6d:2f:80:
ed:b2:27:9c:3b:70:1f:3a:04:cc:6d:57:8e:8f:ba:5d:b5:d6:
2a:67:33:d8:2d:3b:e2:69:a8:0c:b7:a2:80:c5:87:ca:15:e3:
3a:f5:51:69:2e:ce:1c:0d:fb:30:ba:6d:ca:88:33:f0:1d:2f:
56:4e:a1:89:c9:b3:8e:c1:a9:cd:b3:54:35:4a:2b:4d:9c:90:
e2:23:b8:3f:32:6c:01:36:04:97:0a:36:7f:d8:24:39:4b:1b:
b8:3f:57:b3:1d:07:1e:bd:0d:38:b3:60:8b:92:de:55:e8:e4:
64:58:1b:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:21 2023 by rpki-client on console-fra.rpki-client.org