Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HQiP2g7eTNwDqQFTiCEyFhqga9s.roa
File: HQiP2g7eTNwDqQFTiCEyFhqga9s.roa (raw, json)
Hash identifier: JE1u31nrXaRZN+PYixAvxqGfcAdwEvnswmfj4fxEO7c=
Subject key identifier: 1D:08:8F:DA:0E:DE:4C:DC:03:A9:01:53:88:21:32:16:1A:A0:6B:DB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22D6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HQiP2g7eTNwDqQFTiCEyFhqga9s.roa
Signing time: Fri 25 Nov 2022 04:41:42 +0000
ROA not before: Fri 25 Nov 2022 04:41:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.128.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8918 (0x22d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1D088FDA0EDE4CDC03A90153882132161AA06BDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ad:17:c7:47:f9:66:14:72:85:30:6f:5f:8a:
b0:31:02:10:b5:3a:cb:16:6a:d7:57:71:5b:d7:14:
3c:73:99:49:54:b8:50:97:de:c3:cc:0f:d3:4d:05:
41:94:6f:40:29:db:e3:9d:5a:eb:0b:23:8b:92:3b:
59:90:41:43:8b:46:c8:94:cb:5d:ce:4b:5e:70:85:
92:bf:bb:86:df:b4:46:14:94:f9:60:b0:46:c4:f8:
be:3c:ee:d7:a6:c0:97:8a:44:07:6a:e5:ce:2e:ff:
e4:91:43:52:28:b8:73:77:2a:b8:3e:a7:23:14:2f:
ef:ba:36:d6:3b:96:98:e2:ee:5a:97:47:df:e5:f3:
56:43:6b:0f:e4:49:2d:88:8d:42:44:90:d4:8c:0a:
52:79:b2:75:b9:b3:93:48:7b:c6:22:db:ad:7d:4c:
38:85:b4:c3:90:48:9d:f0:e4:03:f1:69:e4:f0:f1:
43:ef:cb:3a:32:18:1c:f9:5d:3d:1f:9c:4c:55:02:
f4:51:4f:2f:0f:20:28:e3:34:48:6a:ac:18:0a:da:
2c:0d:f6:03:64:7d:41:cd:ee:37:80:5c:9a:e2:98:
18:89:94:09:d7:c6:97:a3:ce:f0:47:10:0a:b0:bf:
8f:e1:9a:71:8c:b1:4b:1b:03:96:00:77:32:7c:c9:
9e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:08:8F:DA:0E:DE:4C:DC:03:A9:01:53:88:21:32:16:1A:A0:6B:DB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HQiP2g7eTNwDqQFTiCEyFhqga9s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.128.0/22
Signature Algorithm: sha256WithRSAEncryption
80:ba:6d:55:fa:5a:cc:15:95:60:19:01:b0:1d:6a:d4:e4:52:
f3:3c:34:5b:9a:8c:17:d9:f6:a3:12:aa:50:23:c4:9f:16:35:
6a:65:f2:40:9f:24:19:1b:94:88:a8:ef:4f:1f:45:9d:10:b4:
bd:41:e9:4e:fc:c7:0c:cd:79:63:83:c3:99:55:d9:48:d7:45:
cb:33:3c:4f:22:d6:b9:53:14:c7:71:ea:c4:ea:d6:40:3b:50:
06:fc:25:7b:0d:64:14:d8:4d:49:80:8c:c2:ff:35:fa:6c:8d:
b0:bb:44:e5:52:0c:7c:0a:29:f4:fe:f0:cf:bc:f6:bd:ab:2b:
b6:9a:a3:37:ab:1f:7a:c4:f4:59:fd:36:a0:b1:bf:94:41:16:
df:1e:a9:14:54:7c:d2:b8:0b:01:c0:e8:a1:fb:9a:da:f1:66:
4e:5b:70:28:42:07:08:ae:27:14:6a:c0:09:f4:4b:31:8a:6c:
65:ab:2b:4a:c1:d5:71:61:70:fd:72:c1:3e:a7:97:2f:7e:42:
7f:3a:87:a1:a3:85:c0:ab:2f:36:2f:e7:d5:4c:9f:6d:8f:fd:
28:d3:27:5c:68:e0:f3:c9:78:8e:76:73:8d:04:da:8c:59:b7:
47:ef:f1:72:67:32:35:e9:0f:a7:96:be:4d:04:de:ed:08:a3:
b3:4e:b0:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:24 2023 by rpki-client on console-ams.rpki-client.org