Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BsLpM2MjiD6Cx1o66GB7VR0sRLs.roa
File: BsLpM2MjiD6Cx1o66GB7VR0sRLs.roa (raw, json)
Hash identifier: Ii9SryxpmguUU3vd42MVtemtAoRoOAEj6vKsDT3fSmE=
Subject key identifier: 06:C2:E9:33:63:23:88:3E:82:C7:5A:3A:E8:60:7B:55:1D:2C:44:BB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2223
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BsLpM2MjiD6Cx1o66GB7VR0sRLs.roa
Signing time: Fri 25 Nov 2022 04:40:49 +0000
ROA not before: Fri 25 Nov 2022 04:40:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 211.76.117.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8739 (0x2223)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=06C2E9336323883E82C75A3AE8607B551D2C44BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:04:38:5a:79:0f:45:49:69:33:6d:d1:56:3f:
87:7c:43:50:c7:3c:fa:a5:ea:a9:f7:d6:c0:60:ff:
c9:74:ac:8e:a5:d9:d4:ae:28:c1:0d:82:ae:88:c7:
d6:2c:a4:64:27:99:b5:77:45:8c:72:ec:2d:ff:32:
dc:df:07:18:aa:86:69:cf:db:5f:9b:ec:bb:f7:81:
b1:72:8d:9a:7c:00:52:9b:ec:54:7e:08:b2:6d:20:
ff:fc:43:4d:09:9d:5e:12:31:a4:90:f6:68:c8:7e:
f4:d0:78:71:73:7a:5c:f4:0f:76:49:9d:11:3e:3e:
e5:dc:77:5c:bd:27:d3:2f:91:07:cc:d3:06:a0:40:
14:b1:80:d4:72:f8:68:3e:16:79:31:46:62:d8:f8:
18:9d:ea:70:e9:70:c0:cc:51:93:a6:c3:23:03:cb:
16:6c:3a:99:a0:f5:81:04:50:c1:41:2b:02:08:69:
2f:e5:f0:6d:06:2c:3c:aa:1d:74:c6:4c:ea:76:02:
6c:9d:d6:eb:f8:25:25:82:26:45:8b:f7:7d:78:f1:
f2:79:c9:31:a0:b5:51:02:bf:25:7b:b0:ea:f4:13:
8d:f5:04:9a:c1:97:28:8c:aa:2f:36:08:88:97:04:
93:c1:64:93:ae:57:9f:35:90:81:23:95:67:05:5d:
0e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C2:E9:33:63:23:88:3E:82:C7:5A:3A:E8:60:7B:55:1D:2C:44:BB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BsLpM2MjiD6Cx1o66GB7VR0sRLs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.117.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:49:60:10:16:d6:07:33:42:b7:9d:08:03:40:7b:f5:c1:f6:
cf:bd:04:15:84:7f:ed:cc:3a:d0:f7:3e:f5:75:fc:c0:d5:b5:
dc:79:73:93:4d:ae:5f:ce:19:f6:b6:6b:f8:38:7d:c5:d2:6a:
f4:58:5b:d6:13:30:f9:e0:77:d2:6c:41:bc:02:0e:22:9c:87:
56:9c:db:73:59:69:b1:f5:85:68:1f:34:51:ed:bd:dd:89:01:
90:0d:df:15:fb:7c:0e:c9:00:b6:59:ad:16:e4:58:43:dd:c5:
53:f8:c8:d6:ae:7a:b4:0a:9d:dc:2b:29:c6:5b:33:4d:b5:5e:
ef:bc:8b:f7:de:e7:97:df:c2:58:6a:38:e4:33:7d:d9:8e:d0:
8f:b9:d9:be:8d:22:03:ed:8d:c7:00:d6:d2:c3:78:ac:43:5d:
d3:d9:9d:15:62:c8:48:ba:d6:9a:75:1e:bf:65:f9:d6:20:01:
47:05:39:8e:79:96:e6:f5:1f:54:a3:d9:e8:82:3d:4c:74:60:
24:6c:46:6d:c2:07:00:6a:a7:5e:ec:cd:ec:1c:86:80:08:9d:
9b:ea:92:6d:86:1b:7e:e0:d7:c3:01:7a:85:4a:95:73:ad:52:
76:36:e0:d5:2e:74:6e:01:70:f2:66:bd:94:b3:91:e4:72:d4:
54:dd:9c:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:22 2023 by rpki-client on console-ams.rpki-client.org