Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FdZm1KODfkD5se5hkYh3CM4P5Go.roa
File: FdZm1KODfkD5se5hkYh3CM4P5Go.roa (raw, json)
Hash identifier: FPSWFN079OzJ+pBilvPbg8qW8xCk6Vz+5Hq0q72irP8=
Subject key identifier: 15:D6:66:D4:A3:83:7E:40:F9:B1:EE:61:91:88:77:08:CE:0F:E4:6A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20F7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FdZm1KODfkD5se5hkYh3CM4P5Go.roa
Signing time: Fri 25 Nov 2022 04:39:21 +0000
ROA not before: Fri 25 Nov 2022 04:39:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 123.193.144.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8439 (0x20f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=15D666D4A3837E40F9B1EE6191887708CE0FE46A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b2:34:cd:41:e3:fe:3f:d0:67:0f:c9:df:27:
bc:c4:9e:70:d1:fb:b7:f4:9f:7c:50:e4:95:73:0a:
c2:50:72:bb:84:5d:df:66:e3:8c:4a:ac:89:c7:65:
1d:2c:1b:42:d6:ca:f2:46:dc:17:01:ac:26:dd:eb:
f5:72:81:d0:39:b1:c9:67:24:98:b1:32:45:6d:18:
eb:dd:76:ca:5d:91:ce:72:bc:d9:d1:b3:d2:db:62:
22:bb:4f:21:0b:48:f7:2a:de:50:df:66:2d:61:ab:
87:92:e7:db:83:ed:6f:d2:44:07:bb:20:94:ac:ab:
a2:dc:16:8c:3a:fa:27:85:49:8c:b3:67:86:a6:7d:
22:00:17:a0:ca:48:8b:68:13:3d:1e:d1:41:5e:dc:
be:8d:c3:4d:71:5b:2d:14:65:f1:8d:8f:4c:74:02:
cd:7f:31:fe:1c:21:55:1f:6d:e0:28:d5:b4:41:ed:
d4:ab:56:34:0b:31:3f:bb:fa:07:59:5e:b0:60:6a:
c5:de:be:d6:53:03:ca:99:14:51:2b:dc:58:b8:97:
9f:fe:54:93:37:aa:0d:31:25:e2:93:99:7d:2e:b3:
c1:8f:45:dc:a5:d7:2c:31:31:0d:bd:4d:1d:bf:d6:
46:7f:81:1c:09:aa:41:43:06:36:52:46:30:08:07:
c9:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D6:66:D4:A3:83:7E:40:F9:B1:EE:61:91:88:77:08:CE:0F:E4:6A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FdZm1KODfkD5se5hkYh3CM4P5Go.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.144.0/20
Signature Algorithm: sha256WithRSAEncryption
af:c7:0c:fe:cc:60:51:04:7e:ac:46:f8:51:df:7e:18:7b:b8:
2b:76:63:5c:47:03:50:a0:df:2c:2c:99:00:81:b0:dd:71:ca:
92:d9:03:46:d1:3c:23:db:59:49:a1:1c:6f:28:b1:81:99:41:
8a:6b:9a:f3:53:5f:57:e1:0e:44:11:12:e6:4d:46:f2:87:59:
59:8c:7b:d7:d6:9a:bc:cd:49:c0:6a:51:3b:03:f2:9e:73:c7:
cb:60:94:d4:ba:01:68:0b:a9:0f:b8:57:91:55:e4:da:e2:c2:
eb:25:b8:6a:d6:a2:e4:17:22:71:dd:35:94:b3:a5:ba:e7:68:
b3:43:0a:93:a9:68:da:bb:70:97:3a:85:dd:e4:ac:a0:93:4e:
c4:c3:b8:12:8c:eb:af:c2:06:a9:07:68:b2:99:fd:6c:59:0d:
14:84:8d:0d:eb:77:88:85:40:25:ab:62:8e:13:d6:3e:8f:61:
36:60:84:94:31:e1:6c:95:ea:3b:6b:80:d6:fd:93:58:b7:20:
fd:b7:0f:00:54:cd:8d:46:b8:4e:7d:7a:4c:7e:58:70:0c:17:
f4:d2:97:be:32:ad:a1:28:11:51:23:44:d7:4e:78:be:56:93:
16:c6:fb:b6:ec:99:ad:4d:8f:8a:5d:c0:9b:6b:da:ef:0f:72:
0b:ed:cc:9a
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIPcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDM5MjFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDE1RDY2NkQ0QTM4MzdF
NDBGOUIxRUU2MTkxODg3NzA4Q0UwRkU0NkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhsjTNQeP+P9BnD8nfJ7zEnnDR+7f0n3xQ5JVzCsJQcruEXd9m
44xKrInHZR0sG0LWyvJG3BcBrCbd6/VygdA5sclnJJixMkVtGOvddspdkc5yvNnR
s9LbYiK7TyELSPcq3lDfZi1hq4eS59uD7W/SRAe7IJSsq6LcFow6+ieFSYyzZ4am
fSIAF6DKSItoEz0e0UFe3L6Nw01xWy0UZfGNj0x0As1/Mf4cIVUfbeAo1bRB7dSr
VjQLMT+7+gdZXrBgasXevtZTA8qZFFEr3Fi4l5/+VJM3qg0xJeKTmX0us8GPRdyl
1ywxMQ29TR2/1kZ/gRwJqkFDBjZSRjAIB8kpAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUFdZm1KODfkD5se5hkYh3CM4P5GowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0ZkWm0xS09EZmtENXNlNWhr
WWgzQ000UDVHby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7
wZAwDQYJKoZIhvcNAQELBQADggEBAK/HDP7MYFEEfqxG+FHffhh7uCt2Y1xHA1Cg
3ywsmQCBsN1xypLZA0bRPCPbWUmhHG8osYGZQYprmvNTX1fhDkQREuZNRvKHWVmM
e9fWmrzNScBqUTsD8p5zx8tglNS6AWgLqQ+4V5FV5NriwusluGrWouQXInHdNZSz
pbrnaLNDCpOpaNq7cJc6hd3krKCTTsTDuBKM66/CBqkHaLKZ/WxZDRSEjQ3rd4iF
QCWrYo4T1j6PYTZghJQx4WyV6jtrgNb9k1i3IP23DwBUzY1GuE59ekx+WHAMF/TS
l74yraEoEVEjRNdOeL5WkxbG+7bsma1Nj4pdwJtr2u8PcgvtzJo=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:02 2023 by rpki-client on console-fra.rpki-client.org