Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5EQn6OOfd_UZ6IfIxIEr9vp3X4M.roa
File: 5EQn6OOfd_UZ6IfIxIEr9vp3X4M.roa (raw, json)
Hash identifier: noshVhWgzOyRsT0hIXWUFCaA3j6hv/U5ZslSdcOqhgQ=
Subject key identifier: E4:44:27:E8:E3:9F:77:F5:19:E8:87:C8:C4:81:2B:F6:FA:77:5F:83
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21D4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5EQn6OOfd_UZ6IfIxIEr9vp3X4M.roa
Signing time: Fri 25 Nov 2022 04:40:27 +0000
ROA not before: Fri 25 Nov 2022 04:40:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 2407:4d00:ff0a::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8660 (0x21d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E44427E8E39F77F519E887C8C4812BF6FA775F83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d6:f6:2a:ea:85:29:62:ec:fc:15:fd:e4:d9:
e4:3d:81:6e:a1:e2:93:a9:d3:7c:b8:77:3e:ec:88:
7c:c1:5c:89:0d:ac:ac:98:9e:fa:06:1b:3e:0d:b6:
c8:9d:19:44:64:e9:30:42:f0:9e:66:95:71:d8:97:
52:27:78:0b:bf:aa:61:0d:ee:2f:60:c3:1f:fe:3d:
34:7c:d8:8b:c0:e7:25:3d:25:81:dd:43:5c:c4:d6:
ec:5b:17:55:db:f6:e9:48:84:f9:af:eb:2b:f8:53:
be:eb:c6:7a:fe:67:de:4d:8b:31:6b:57:41:fd:6e:
77:61:97:33:92:f4:88:49:ae:e4:f3:95:a5:1c:53:
cc:5f:33:45:d4:1a:3f:a6:0e:92:24:a9:2a:8e:8a:
53:48:93:97:dd:1b:d5:c7:b6:37:f6:3e:53:67:f2:
67:ab:98:93:cf:fe:be:18:93:c4:f5:93:c9:10:5b:
8b:41:d8:86:b3:d5:f7:11:05:41:cf:00:34:ed:a0:
36:e3:93:ec:a6:5a:a8:0e:6c:1a:43:9d:d7:ec:09:
c3:18:e4:ed:ee:bc:b4:dd:be:a4:10:ac:77:c6:e2:
df:55:bd:9d:d5:5e:68:2b:13:94:ad:76:3a:93:67:
80:e7:ea:0e:4f:c2:c2:68:94:d5:aa:44:23:79:9f:
b6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:44:27:E8:E3:9F:77:F5:19:E8:87:C8:C4:81:2B:F6:FA:77:5F:83
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5EQn6OOfd_UZ6IfIxIEr9vp3X4M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4d00:ff0a::/48
Signature Algorithm: sha256WithRSAEncryption
94:f4:30:76:97:0b:c1:57:e3:99:a8:5c:0a:22:37:fe:55:8e:
6e:0f:fe:37:e7:19:c3:89:2e:63:b7:5a:e0:85:b4:86:8e:0b:
db:be:a5:82:4a:42:50:f2:0c:f4:6d:86:54:a7:f7:90:d4:ec:
79:69:aa:9e:20:9f:4d:de:c5:a5:a0:b4:5e:38:e9:33:d8:d6:
ab:d3:3c:14:16:07:07:30:1c:6d:bf:fc:46:92:57:22:82:cf:
3a:a1:85:59:92:4e:1d:d1:1a:46:4e:39:7a:7d:84:90:44:fb:
d0:60:5c:3e:3f:db:2d:17:21:70:82:2d:c6:53:23:d3:34:46:
7c:bc:20:f6:0b:71:79:73:71:ef:11:f5:84:83:a6:bd:45:3a:
7e:0e:05:3b:81:1d:e6:9d:63:c4:01:a2:73:4e:87:3d:30:05:
bb:40:1a:4b:99:21:2a:46:f0:b0:39:69:35:d1:e0:4f:85:d8:
41:2f:0c:10:7c:47:23:55:99:d4:14:b4:33:c2:ca:de:95:7d:
80:87:fc:28:7c:55:c2:75:7f:59:26:e2:37:43:39:d6:9f:30:
60:d5:93:4a:8a:4f:81:d3:b1:f3:3e:17:8f:f2:51:21:52:5e:
dc:36:88:74:7b:8b:a9:fe:48:1d:d7:aa:28:5f:8b:fc:89:bd:
a4:d4:27:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:00 2023 by rpki-client on console-fra.rpki-client.org