Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FkB5eEl8sL3SeaDz6RO38e7FMwA.roa
File: FkB5eEl8sL3SeaDz6RO38e7FMwA.roa (raw, json)
Hash identifier: s/Vqdl+iS4J7rqhrpki6tThQ+oQTNfWZ6PtsPAO/VW4=
Subject key identifier: 16:40:79:78:49:7C:B0:BD:D2:79:A0:F3:E9:13:B7:F1:EE:C5:33:00
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22AF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FkB5eEl8sL3SeaDz6RO38e7FMwA.roa
Signing time: Fri 25 Nov 2022 04:41:31 +0000
ROA not before: Fri 25 Nov 2022 04:41:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.120.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8879 (0x22af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=16407978497CB0BDD279A0F3E913B7F1EEC53300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:29:ef:59:f8:c9:6c:cf:9a:b0:78:15:29:35:
56:b6:2d:fa:df:38:02:05:ae:26:cf:ca:81:af:03:
e0:35:a9:79:ab:a6:58:4d:ff:ad:fd:70:5b:71:2b:
5e:5d:f4:fe:c2:52:73:31:57:e6:6c:38:b8:95:16:
d9:15:13:79:61:e9:97:1e:73:c7:0c:4d:9b:19:07:
85:45:6e:9c:1b:13:2a:64:42:f2:ab:4f:68:4f:aa:
a7:df:ab:1e:03:87:72:c7:d0:18:aa:5b:18:15:67:
8c:74:2e:4b:9e:3f:39:42:9c:51:ba:8a:ca:53:18:
ed:d3:9e:17:79:fc:fa:00:68:45:71:61:70:be:16:
c1:b1:5e:6b:cc:e4:eb:6e:50:ae:eb:d1:71:86:87:
eb:9e:61:da:7a:d5:ad:37:b0:c0:da:6b:cc:d0:83:
5f:22:3b:46:2d:fa:c8:c6:c7:5f:5d:4f:46:f5:d6:
7e:ff:cf:9a:fb:5c:a2:da:8c:bd:5d:99:d8:5d:de:
2d:5e:6c:89:0a:96:eb:68:2f:86:3b:e7:24:70:7c:
08:d5:c9:f4:59:c8:87:8d:88:55:1a:31:c0:71:b9:
a3:26:c1:62:a4:ca:31:ac:34:66:69:1a:9c:77:fc:
d6:7f:c2:81:31:cd:ce:f4:8e:56:07:2f:c1:8f:dd:
7f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:40:79:78:49:7C:B0:BD:D2:79:A0:F3:E9:13:B7:F1:EE:C5:33:00
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FkB5eEl8sL3SeaDz6RO38e7FMwA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.120.0/21
Signature Algorithm: sha256WithRSAEncryption
3d:b2:a3:0f:a3:8e:81:da:fe:c1:48:89:e5:96:fb:b6:a7:54:
28:be:26:f2:87:79:1b:23:c7:06:8e:70:64:d7:1c:39:f2:52:
5b:2d:88:46:07:4b:1e:08:59:20:7e:73:13:05:56:73:7f:3b:
5e:0c:ba:df:f2:a1:82:5a:d9:32:f3:61:b8:52:b9:86:96:c2:
3c:e1:a1:04:a4:69:7c:36:01:a9:28:f5:ba:8e:11:25:f6:53:
fe:f0:79:ad:a7:1f:51:e2:ac:e4:f3:cd:d1:a4:74:44:aa:2b:
27:9c:71:eb:db:3f:d3:30:65:d9:43:26:ba:c1:07:f9:d6:db:
05:49:30:c5:82:e6:50:23:3c:b3:a1:a0:8e:92:13:fd:9a:4e:
6b:08:ef:92:a9:94:7e:b3:4f:5f:66:02:e1:fa:96:38:42:c9:
46:c4:39:e6:66:cd:9a:05:60:a8:92:1a:cd:ab:54:ef:fb:4d:
ec:05:23:8f:ca:72:45:51:84:85:13:82:45:4b:1d:f4:66:7a:
b7:6b:5a:e0:7d:2a:c1:87:fd:90:25:e6:ff:35:0e:56:dc:d3:
13:9d:af:61:f4:26:84:19:96:8b:1e:4c:40:0c:89:14:11:a1:
2a:d0:b0:3f:de:04:6f:5c:45:2a:60:ac:e3:17:c3:0d:e9:c3:
f6:86:4c:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:23 2023 by rpki-client on console-ams.rpki-client.org