Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6oGeQ0utk7c-pxY-m6I0ynAb-vI.roa
File: 6oGeQ0utk7c-pxY-m6I0ynAb-vI.roa (raw, json)
Hash identifier: REJCgslnaoXjbSqZR5M5+7RUIHW3UZulSa+F4ZcybNo=
Subject key identifier: EA:81:9E:43:4B:AD:93:B7:3E:A7:16:3E:9B:A2:34:CA:70:1B:FA:F2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22A0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6oGeQ0utk7c-pxY-m6I0ynAb-vI.roa
Signing time: Fri 25 Nov 2022 04:41:25 +0000
ROA not before: Fri 25 Nov 2022 04:41:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 2407:4d00:ff07::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8864 (0x22a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EA819E434BAD93B73EA7163E9BA234CA701BFAF2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b3:1c:f3:20:9a:6a:7a:2e:67:a1:56:65:5f:
5a:4e:67:18:87:d4:83:3c:52:f2:0e:bd:3d:6b:66:
db:be:bb:ff:d9:bb:bc:05:3c:e8:58:41:6a:6c:0c:
8b:a8:2d:05:db:57:ff:fb:20:9b:04:bc:87:1f:09:
89:96:8c:4d:a8:43:4e:eb:ff:98:42:38:9d:28:44:
d9:eb:ae:6e:06:b8:c9:93:14:38:54:79:e5:14:64:
ce:c7:6a:a7:9a:21:5c:53:01:dc:e3:d4:d8:25:0a:
a5:5f:e5:c3:d4:4c:4f:ac:97:08:aa:6f:16:0e:40:
89:a1:be:ca:85:35:90:dd:5e:15:52:f1:66:5c:87:
22:84:5b:4b:31:3d:92:c1:12:f1:e8:f8:5b:7b:3b:
4f:d7:c6:6e:48:21:13:45:b0:74:e5:16:21:32:65:
a4:c0:ff:f5:a7:67:1f:a2:b5:51:21:ea:01:54:08:
f2:b4:36:54:51:d1:0b:0a:fc:63:cf:8b:b8:91:06:
fb:5c:70:08:fc:61:f9:a2:03:a6:e4:e6:3c:a4:50:
30:08:ca:c3:9a:46:50:a5:a3:a3:01:ff:c4:f9:f7:
45:c0:c8:25:9a:7b:7b:74:0b:b5:96:db:26:fb:4e:
81:2b:53:9d:8b:46:10:e8:52:b2:79:1c:95:78:4a:
51:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:81:9E:43:4B:AD:93:B7:3E:A7:16:3E:9B:A2:34:CA:70:1B:FA:F2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6oGeQ0utk7c-pxY-m6I0ynAb-vI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4d00:ff07::/48
Signature Algorithm: sha256WithRSAEncryption
9a:a3:41:a7:4c:ad:8d:73:d6:a8:ce:8a:f6:63:80:aa:61:01:
a1:2f:b0:27:a6:3d:d5:ff:86:54:80:22:e2:38:9d:34:67:87:
47:dd:df:32:dc:8c:89:9b:55:fb:26:4a:13:9c:40:af:e0:ec:
20:e1:52:73:6a:88:4f:ba:e6:d9:6b:ca:e8:b2:59:8d:bf:d1:
13:bc:b0:73:f7:a9:ee:ee:ed:fc:eb:49:f3:1f:ec:9b:9c:ea:
b0:af:6d:53:d5:f2:07:58:49:5f:c8:ef:14:c8:d0:c5:20:20:
bf:89:a3:f0:a4:a5:bf:a3:36:7b:23:65:d5:f2:64:6d:0c:39:
f6:97:97:a9:0d:74:65:75:3b:67:3d:7b:40:6a:8e:7b:22:71:
73:89:6f:ed:7f:9f:93:da:f8:e3:97:22:18:3b:00:2a:ee:9f:
24:42:cf:8d:a6:23:88:4c:8d:e2:8e:de:b9:24:b2:f0:66:3b:
3c:9a:81:53:1c:1e:63:47:8e:0f:ab:cd:fb:02:19:c0:10:d7:
24:fd:89:74:24:d7:cd:a4:ca:aa:5a:76:d2:47:aa:f5:8f:6c:
c5:51:14:41:9f:1e:20:45:76:fe:be:cc:55:49:cd:cc:a6:95:
bf:f5:41:bf:64:d2:f0:39:ce:17:dc:9a:e4:76:23:51:da:f3:
c6:08:56:a0
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICIqAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQxMjVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEVBODE5RTQzNEJBRDkz
QjczRUE3MTYzRTlCQTIzNENBNzAxQkZBRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDsxzzIJpqei5noVZlX1pOZxiH1IM8UvIOvT1rZtu+u//Zu7wF
POhYQWpsDIuoLQXbV//7IJsEvIcfCYmWjE2oQ07r/5hCOJ0oRNnrrm4GuMmTFDhU
eeUUZM7HaqeaIVxTAdzj1NglCqVf5cPUTE+slwiqbxYOQImhvsqFNZDdXhVS8WZc
hyKEW0sxPZLBEvHo+Ft7O0/Xxm5IIRNFsHTlFiEyZaTA//WnZx+itVEh6gFUCPK0
NlRR0QsK/GPPi7iRBvtccAj8YfmiA6bk5jykUDAIysOaRlClo6MB/8T590XAyCWa
e3t0C7WW2yb7ToErU52LRhDoUrJ5HJV4SlHjAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQU6oGeQ0utk7c+pxY+m6I0ynAb+vIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzZvR2VRMHV0azdjLXB4WS1t
NkkweW5BYi12SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
B00A/wcwDQYJKoZIhvcNAQELBQADggEBAJqjQadMrY1z1qjOivZjgKphAaEvsCem
PdX/hlSAIuI4nTRnh0fd3zLcjImbVfsmShOcQK/g7CDhUnNqiE+65tlryuiyWY2/
0RO8sHP3qe7u7fzrSfMf7Juc6rCvbVPV8gdYSV/I7xTI0MUgIL+Jo/Ckpb+jNnsj
ZdXyZG0MOfaXl6kNdGV1O2c9e0BqjnsicXOJb+1/n5Pa+OOXIhg7ACrunyRCz42m
I4hMjeKO3rkksvBmOzyagVMcHmNHjg+rzfsCGcAQ1yT9iXQk182kyqpadtJHqvWP
bMVRFEGfHiBFdv6+zFVJzcymlb/1Qb9k0vA5zhfcmuR2I1Ha88YIVqA=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:21 2023 by rpki-client on console-ams.rpki-client.org