Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DN3DH5tQjaY0J-7qzbPbUXsJwlw.roa
File: DN3DH5tQjaY0J-7qzbPbUXsJwlw.roa (raw, json)
Hash identifier: 1Wu7FTTQtkEM1j/X9vmLgkrtlIj8rywLFjjvR8STLnc=
Subject key identifier: 0C:DD:C3:1F:9B:50:8D:A6:34:27:EE:EA:CD:B3:DB:51:7B:09:C2:5C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 226A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DN3DH5tQjaY0J-7qzbPbUXsJwlw.roa
Signing time: Fri 25 Nov 2022 04:41:08 +0000
ROA not before: Fri 25 Nov 2022 04:41:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.172.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8810 (0x226a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0CDDC31F9B508DA63427EEEACDB3DB517B09C25C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:95:df:6a:d9:3d:8a:30:89:d0:5d:6b:31:7f:
23:51:37:10:5e:46:9f:07:2b:08:e8:97:b1:60:19:
78:c6:4b:70:38:44:3a:05:92:7a:eb:0f:3b:d5:df:
10:ef:34:18:48:d2:94:d7:7e:88:6e:74:94:c3:c9:
db:bb:7e:1d:ef:62:47:e6:51:23:88:fd:8c:93:76:
ff:38:20:45:c9:29:ee:9e:7d:dd:e9:83:64:55:07:
df:a2:ab:5b:2f:c0:55:6e:8a:31:7f:19:78:c4:e8:
5b:de:0b:09:52:bd:66:56:24:4b:71:8a:40:f2:5d:
f8:32:c4:a0:e1:66:78:ae:0f:0e:02:53:46:84:7d:
2d:56:3e:54:31:2b:f7:9d:d2:3a:52:c5:5c:7c:81:
dd:bb:f9:89:39:19:95:67:3e:e8:80:32:56:c2:93:
87:5a:ca:a1:03:1d:44:81:5d:45:75:a7:b0:70:17:
c9:96:a9:d7:a6:a5:e6:a2:ec:35:0a:47:46:4d:60:
86:05:8f:ae:7f:89:61:c6:30:4c:6b:a2:09:5f:28:
0f:04:1e:0a:0c:f7:c1:7c:ab:1f:df:1a:29:b1:9a:
a5:d7:b5:61:81:b6:68:00:01:ad:26:66:f2:32:b4:
ca:09:db:af:3e:3e:c4:fc:f3:c6:83:8a:87:80:e1:
bd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:DD:C3:1F:9B:50:8D:A6:34:27:EE:EA:CD:B3:DB:51:7B:09:C2:5C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DN3DH5tQjaY0J-7qzbPbUXsJwlw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.172.0/22
Signature Algorithm: sha256WithRSAEncryption
29:5c:b2:c2:46:64:02:5b:a8:a0:c2:fb:6e:b9:bf:d5:f5:a0:
76:57:f4:b1:9f:1d:67:7d:62:c5:92:65:ed:de:73:6d:7d:b9:
8b:19:4f:fe:64:ab:31:2f:6a:72:62:00:e7:66:f7:93:ab:f6:
a5:05:e6:47:f6:c0:3d:97:d6:41:93:4a:36:dc:41:93:59:a3:
29:4a:8c:72:ab:5f:59:08:6b:f9:f6:e9:31:69:2c:44:ce:f1:
c9:4a:b2:9c:3b:a9:33:6b:4d:fe:fa:6a:fc:10:42:56:a2:86:
4c:b8:46:7e:c2:5b:96:84:42:20:b4:9c:1a:60:6a:41:1d:d9:
64:90:75:a1:ee:02:87:c2:b1:de:1f:ea:2d:5b:75:d6:c3:1a:
54:75:43:4c:09:39:ca:ef:7b:df:01:03:e5:b9:3d:e7:b5:43:
8d:88:f0:5e:19:ce:1f:d2:c2:7d:0d:76:b0:33:c2:ba:90:2c:
12:66:4e:58:d0:b1:fd:c5:aa:9f:3d:4f:af:34:bd:9b:ae:f3:
88:43:60:34:d9:18:13:78:35:13:6f:26:21:30:43:e9:46:e1:
5d:6c:60:cd:cf:7f:42:ed:09:1c:34:b8:dc:d0:e5:0e:f5:3f:
12:9d:61:59:f6:87:11:7a:3b:5c:ae:9f:7c:b9:dd:1f:0f:35:
82:02:b5:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:01 2023 by rpki-client on console-fra.rpki-client.org