Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7WZJmDDNM45VzW4xkzIj9qZ1_GU.roa
File: 7WZJmDDNM45VzW4xkzIj9qZ1_GU.roa (raw, json)
Hash identifier: tf4+H3NUnFXGtBhnh4qKDYlYyDGnHZac8PBINIzXhwo=
Subject key identifier: ED:66:49:98:30:CD:33:8E:55:CD:6E:31:93:32:23:F6:A6:75:FC:65
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20F3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7WZJmDDNM45VzW4xkzIj9qZ1_GU.roa
Signing time: Fri 25 Nov 2022 04:39:19 +0000
ROA not before: Fri 25 Nov 2022 04:39:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.144.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8435 (0x20f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ED66499830CD338E55CD6E31933223F6A675FC65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e7:c3:0d:5e:32:c5:1c:42:83:cc:c5:06:8e:
ce:82:ff:d6:34:20:66:83:fd:fc:6a:79:2a:7b:5b:
4d:51:1c:c9:50:0d:a7:50:7a:56:d1:50:00:e5:21:
d4:56:a8:dc:c8:2f:2a:b1:e4:9a:37:4e:74:ae:2f:
5f:0a:93:27:b4:c2:bc:d6:b8:e1:e5:62:b3:fc:55:
a3:56:35:c1:25:00:5f:79:fa:07:56:69:f1:38:07:
d9:07:20:89:c6:82:cc:0b:58:06:1e:cd:22:db:ff:
4d:6d:8b:ec:db:f9:70:5a:5d:5b:44:32:47:a2:2f:
b8:1d:98:8d:d5:71:0e:be:31:4e:88:9b:b7:a2:f0:
0c:94:2e:59:1a:60:0c:83:89:3a:1a:3a:16:48:6b:
39:81:ae:b1:ec:51:31:dd:8c:64:4f:02:3a:6f:f5:
63:be:6a:98:61:86:54:f9:1d:13:db:f3:4a:60:a5:
69:ad:8f:0b:41:3d:bc:9b:3b:79:b0:32:be:3f:51:
fc:37:53:83:53:8c:7e:2c:f8:ca:50:33:e8:d1:9d:
38:8a:60:6c:47:cd:0e:08:05:72:76:e3:0f:27:1b:
3d:39:4c:11:82:97:d0:c7:17:d5:d0:73:be:77:d6:
89:2d:50:66:3d:cb:f2:03:5b:75:74:fa:a0:25:b4:
fc:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:66:49:98:30:CD:33:8E:55:CD:6E:31:93:32:23:F6:A6:75:FC:65
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7WZJmDDNM45VzW4xkzIj9qZ1_GU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.144.0/21
Signature Algorithm: sha256WithRSAEncryption
65:81:7b:be:f7:ad:db:83:ab:1e:38:2f:0a:b7:04:47:51:9b:
55:c1:2a:20:27:26:21:cd:d1:93:ac:46:1b:4b:c2:4c:4b:cd:
d1:fe:44:a9:8b:e9:c1:c9:bf:cf:38:ae:d7:56:ce:32:ac:65:
de:52:f2:40:1f:af:c6:28:2d:cf:7e:26:4d:8c:6e:6c:9d:08:
e9:31:81:84:43:cf:d5:32:df:0e:8d:37:a3:0e:d6:72:09:6a:
fc:8e:d3:ba:2f:99:1d:46:cc:7a:9c:34:e6:cd:26:08:e6:36:
0e:84:81:d9:16:f3:c9:8c:56:dd:01:04:e5:23:74:48:f0:d2:
76:6a:b0:ea:83:bf:17:47:2f:65:59:4e:76:7e:dd:1d:b7:51:
63:70:1c:e3:df:05:aa:ad:30:4f:1e:88:e2:e6:9b:85:1d:34:
87:d4:a3:07:a6:a7:17:7c:d3:92:ef:07:3c:a4:e7:ae:9b:d9:
0d:fa:dc:87:77:bf:15:87:b1:e0:df:58:5e:3c:b6:37:a5:9b:
f8:f8:69:c2:8b:41:d6:4d:2e:98:e7:d3:f6:a4:4d:2a:dc:d4:
ba:e5:da:f7:56:e7:6c:ae:70:e2:73:3c:4a:b3:84:ca:72:44:
d2:0a:d9:8d:c1:d4:79:03:a6:4d:2e:65:0b:22:d5:3e:ec:7e:
61:25:14:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:00 2023 by rpki-client on console-fra.rpki-client.org