Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CqjuX0PljYCSe8xdokMnCpycrBo.roa
File: CqjuX0PljYCSe8xdokMnCpycrBo.roa (raw, json)
Hash identifier: w/4hODGHZ6hPa56l6+IxhuGspsfL8pINYki2vtwEdIs=
Subject key identifier: 0A:A8:EE:5F:43:E5:8D:80:92:7B:CC:5D:A2:43:27:0A:9C:9C:AC:1A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CqjuX0PljYCSe8xdokMnCpycrBo.roa
Signing time: Thu 15 Sep 2022 02:45:52 +0000
ROA not before: Thu 15 Sep 2022 02:45:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.164.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:45:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0AA8EE5F43E58D80927BCC5DA243270A9C9CAC1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:87:1c:c5:bc:15:d3:77:8e:de:a3:10:bb:1b:
37:1b:a1:5c:83:ab:d4:ee:e4:95:91:bf:71:b6:6c:
6e:a5:cb:4d:38:41:7d:3f:2b:07:e2:b4:b5:91:9a:
5e:31:33:18:d4:48:59:9c:fa:98:0e:43:d2:65:84:
f9:ae:42:cb:da:a0:3b:b4:1f:cf:ac:38:dd:b8:23:
a2:d1:dc:2c:cc:7e:2c:b3:1d:99:0e:7b:b0:08:82:
ee:d2:4c:b5:8f:65:05:f9:00:21:27:13:34:3c:27:
37:0a:24:53:a6:11:5c:1d:67:af:14:6f:a9:bc:8e:
7d:18:bf:0f:ae:4f:d8:ed:6b:04:17:d2:e8:45:19:
1d:76:ca:e2:80:d1:15:72:50:81:f7:62:5c:e5:d7:
4b:57:db:03:82:8d:61:9f:f0:fe:f4:c3:d6:5e:b0:
29:2d:f2:77:b8:eb:45:18:e9:e5:50:e8:c2:0c:d3:
ca:9a:c6:2b:8e:1f:e6:73:b9:d5:70:ec:4d:36:54:
f3:ac:aa:cb:eb:f9:1d:17:0a:6f:19:60:06:97:01:
9f:4c:05:56:5c:58:21:d0:98:d6:f6:6d:e9:bd:3b:
3a:00:43:b6:75:3c:e2:a0:79:d2:d9:dc:76:d0:53:
09:65:b1:7e:c7:e5:64:70:28:ef:55:52:e8:8b:e1:
94:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:A8:EE:5F:43:E5:8D:80:92:7B:CC:5D:A2:43:27:0A:9C:9C:AC:1A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CqjuX0PljYCSe8xdokMnCpycrBo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.164.0/22
Signature Algorithm: sha256WithRSAEncryption
60:78:55:93:09:78:bd:fc:0d:e4:76:11:fb:17:30:4e:9b:29:
4b:d4:c3:30:da:d0:9e:6a:25:ad:50:87:ea:c4:ee:22:64:93:
c3:c2:cc:f2:ec:b9:20:8d:9e:77:5d:7e:02:ff:5a:92:be:e4:
19:7e:b7:1a:76:53:5b:bc:dd:38:e2:3b:c7:c5:85:3b:18:12:
29:d0:1e:2b:e1:c8:e2:ef:b9:9d:9d:84:53:93:dd:56:cb:9e:
67:82:62:d0:cb:bc:92:83:23:e7:d6:0c:51:30:f6:7e:24:f4:
b0:04:75:70:c9:2c:26:21:37:e6:e1:be:1c:85:3b:c9:c0:b7:
3f:5c:96:bf:94:20:7f:51:49:35:63:79:e7:01:01:31:75:ec:
71:18:03:65:b0:58:65:1c:91:fe:5e:5a:61:26:2b:b2:1e:c8:
ac:24:76:f5:4a:64:f2:b9:89:ed:a4:c9:9a:09:19:69:2b:03:
b3:43:80:bf:d3:c4:ba:2a:38:cc:f1:05:0a:c3:72:10:fd:4e:
3d:10:8d:a9:42:6c:4f:d0:ae:a3:0f:db:c9:80:b4:90:ad:8d:
81:74:c0:5a:ab:f3:d7:cf:14:28:21:d3:e1:80:db:e5:64:4b:
6d:6a:a7:b8:ba:10:8d:60:80:72:d7:54:7e:b5:8b:29:9b:8c:
59:28:f4:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:23 2023 by rpki-client on console-fra.rpki-client.org