Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/90W429BcOOEJxuMIBAhmcec4m_s.roa
File: 90W429BcOOEJxuMIBAhmcec4m_s.roa (raw, json)
Hash identifier: oA+81vAV2SBlSvVv7OzKkZo8D7E6L/MC21Qczt58V0E=
Subject key identifier: F7:45:B8:DB:D0:5C:38:E1:09:C6:E3:08:04:08:66:71:E7:38:9B:FB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 216C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/90W429BcOOEJxuMIBAhmcec4m_s.roa
Signing time: Fri 25 Nov 2022 04:39:55 +0000
ROA not before: Fri 25 Nov 2022 04:39:55 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.224.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8556 (0x216c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:55 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F745B8DBD05C38E109C6E30804086671E7389BFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c9:dc:1c:a4:34:6e:48:1a:e5:92:36:e7:47:
e6:59:c0:45:b6:cb:8d:bd:0a:8b:ca:9a:9c:65:3e:
a0:c7:a2:d6:3e:54:c8:f4:9f:51:24:dc:c9:92:ff:
d8:7a:7f:33:33:5e:9b:04:90:60:34:3e:0e:95:e6:
87:c0:c4:a2:79:1a:be:3f:2b:e6:c6:0a:4d:a4:22:
3e:67:02:4d:62:53:6e:e4:dd:21:d9:f0:bf:4c:3c:
98:58:92:1e:ca:54:8f:02:ec:a5:a6:66:ab:e7:fc:
da:73:fd:2a:15:09:87:81:61:04:19:43:6a:07:41:
22:5d:d0:94:24:64:ba:fc:2a:47:8e:a1:26:9c:ec:
7c:e0:7a:9c:76:17:b9:8e:b4:de:7b:42:a1:b0:3f:
a9:48:ef:c1:2b:87:9b:ac:34:05:e9:2d:fa:3e:8b:
91:73:59:c8:6f:f2:ea:d6:fd:f8:fb:73:12:c8:e8:
f4:09:39:ca:28:39:ab:30:66:7f:72:a1:c2:6a:fb:
fc:5b:41:2e:c4:b0:4a:07:4b:78:41:12:d3:bd:95:
73:19:38:4f:44:7b:c0:6d:17:3f:90:16:0e:c3:58:
3d:78:7e:71:f6:78:71:67:e5:40:4c:ec:71:32:5b:
49:66:c4:43:24:61:1f:0e:a0:70:06:c3:10:68:b9:
d8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:45:B8:DB:D0:5C:38:E1:09:C6:E3:08:04:08:66:71:E7:38:9B:FB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/90W429BcOOEJxuMIBAhmcec4m_s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.224.0/22
Signature Algorithm: sha256WithRSAEncryption
60:47:73:f7:01:a6:38:19:d2:36:ae:df:4c:ee:31:89:d7:bc:
dc:ac:cb:c5:91:d2:2b:c1:ba:0e:6d:9c:a0:c2:a3:33:e5:fa:
c4:03:5f:68:56:17:31:30:a3:a5:e5:ea:f0:8d:1b:fc:5b:5d:
7e:7f:bc:6e:59:7e:82:40:e6:6f:05:f7:4a:3d:40:16:5a:46:
e4:d2:6c:f9:7f:3d:b9:29:c6:60:21:ed:f1:ab:a2:ec:0e:1e:
4c:ae:3a:dd:82:c7:05:45:ee:27:76:49:90:4c:97:39:a5:20:
d3:eb:0f:a6:d1:ce:79:c0:ce:8a:cb:27:eb:b3:d0:c9:de:6e:
d8:6f:2b:29:4d:4d:ca:f8:92:3e:27:94:ae:54:05:0e:dc:db:
e3:81:af:9b:df:ad:be:38:ee:66:a8:27:5a:4b:40:55:93:97:
d6:ec:6d:70:32:da:70:0c:5c:09:f7:03:ad:f2:e3:5e:2a:d6:
40:38:1c:b9:e9:99:96:2c:56:6c:f9:d6:db:fa:3e:3a:46:3b:
4b:6f:6a:9f:cf:fe:25:7d:04:a6:e4:35:5e:0b:28:ee:73:69:
de:8b:e9:1c:12:ca:96:df:65:d7:a1:34:41:b2:40:96:b2:51:
10:07:d3:87:28:2e:eb:5f:82:2c:6b:c3:35:6c:8e:7f:3a:59:
bd:2a:12:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:00 2023 by rpki-client on console-fra.rpki-client.org