Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JcmYblOrxSQijRdLUWoJQj2Mbck.roa
File: JcmYblOrxSQijRdLUWoJQj2Mbck.roa (raw, json)
Hash identifier: FD74rRpVKr4AMTi7xq2eA4bZkkHBAAXBHipKNewMZjQ=
Subject key identifier: 25:C9:98:6E:53:AB:C5:24:22:8D:17:4B:51:6A:09:42:3D:8C:6D:C9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 217C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JcmYblOrxSQijRdLUWoJQj2Mbck.roa
Signing time: Fri 25 Nov 2022 04:39:59 +0000
ROA not before: Fri 25 Nov 2022 04:39:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.64.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8572 (0x217c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=25C9986E53ABC524228D174B516A09423D8C6DC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fc:2a:ea:c4:7d:fe:38:31:f7:ce:c9:88:98:
0b:e4:08:4b:fd:4b:d8:2e:2e:48:19:2e:b1:e3:c2:
ee:b7:43:19:c9:8e:80:24:39:a8:d9:d4:a4:71:c5:
b5:3d:49:a4:68:e8:78:d5:8c:14:13:8f:0e:8e:a5:
83:e1:de:e7:51:d9:85:8d:1a:7c:98:c4:bc:d7:bc:
aa:70:5b:77:8a:40:9e:21:23:62:4a:93:4c:e8:16:
b5:26:ae:20:ec:67:08:37:1c:98:82:6f:12:0c:60:
d7:5c:68:20:8e:bf:b4:39:51:c6:f5:e7:62:84:0e:
67:11:27:f6:5f:d7:95:cf:2b:d5:3f:bf:ce:ea:4c:
37:41:27:66:02:8e:34:ee:ca:f0:ac:72:f5:1d:56:
c3:db:5c:97:ee:18:83:be:b6:04:68:51:bf:9f:4b:
b2:e1:00:0f:ed:a4:5a:d5:fe:32:9b:11:08:2b:5d:
3b:5e:ce:7e:55:6e:e7:74:a0:6f:fe:76:5e:ce:8b:
18:10:60:b4:81:bd:ce:0a:47:fe:a0:f1:f6:e4:10:
7a:04:8e:37:ea:90:64:7e:b2:fa:b4:29:b8:7c:ac:
16:b6:f1:0a:ed:93:93:4b:73:d1:4a:1c:d1:83:1f:
12:97:78:15:b2:d3:1b:be:00:67:64:43:b3:3c:02:
16:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:C9:98:6E:53:AB:C5:24:22:8D:17:4B:51:6A:09:42:3D:8C:6D:C9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JcmYblOrxSQijRdLUWoJQj2Mbck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.64.0/21
Signature Algorithm: sha256WithRSAEncryption
7f:6c:e6:be:e5:44:5e:36:97:c0:21:fb:e2:06:7d:d9:da:5e:
33:7d:37:b4:bb:7b:42:e2:d3:33:7d:19:37:6c:7f:b4:7e:a6:
11:a9:40:f1:66:99:c4:f6:17:9e:d8:30:e5:ab:bf:f9:68:db:
81:cb:f9:20:ec:c4:de:47:ae:5d:ae:69:52:59:d2:e8:cd:db:
2d:68:13:9b:63:8c:cc:f1:7c:bc:ae:bb:d5:61:26:6f:8d:c4:
f8:37:d0:ab:73:96:f4:10:9c:e9:86:30:f0:3a:e3:72:98:2b:
37:6d:f7:0c:ef:76:49:bd:b9:cc:35:95:1c:89:65:50:bb:6d:
fa:a5:1a:2c:79:3c:1f:cd:3c:29:7b:fe:1a:cb:ba:b0:64:51:
ad:a3:68:f7:30:07:d8:54:6d:8f:29:ff:61:84:b2:eb:00:55:
53:37:5a:3b:66:16:98:3e:40:d0:1b:1d:da:27:18:b7:b7:6d:
10:52:db:8f:9f:0a:de:12:2d:65:81:0e:13:f3:6d:d1:fe:cd:
a8:76:2d:1e:11:38:0a:02:47:c0:20:03:56:1f:cc:08:75:01:
42:82:5f:e8:34:a6:12:1c:28:02:f3:60:c4:df:14:a9:37:51:
2c:89:ae:50:ef:7f:2c:84:d7:6c:d4:15:f5:d4:d6:3e:29:90:
bd:8f:bc:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:24 2023 by rpki-client on console-ams.rpki-client.org