Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KudKRHXPWvBwdLfGm-mSNBns3R0.roa
File: KudKRHXPWvBwdLfGm-mSNBns3R0.roa (raw, json)
Hash identifier: cI0qiVU5HiD4galkA80T+xTR6YuF5WKgCHArkuM+1Is=
Subject key identifier: 2A:E7:4A:44:75:CF:5A:F0:70:74:B7:C6:9B:E9:92:34:19:EC:DD:1D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2242
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KudKRHXPWvBwdLfGm-mSNBns3R0.roa
Signing time: Fri 25 Nov 2022 04:40:58 +0000
ROA not before: Fri 25 Nov 2022 04:40:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.144.0/21 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8770 (0x2242)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2AE74A4475CF5AF07074B7C69BE9923419ECDD1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c2:8f:80:1f:b1:f3:99:6a:b7:bb:0e:1f:79:
2d:28:3a:f8:9a:ff:af:ab:db:f0:29:99:ba:1e:76:
c6:5b:d9:90:44:7e:30:4e:55:ba:89:8b:b1:81:5a:
ff:8b:9a:58:4c:42:aa:d2:9a:9f:3e:43:c6:73:97:
df:98:b3:e8:dd:9a:46:c3:3f:32:37:5f:5c:6b:c0:
e6:c1:51:98:1e:42:be:32:e1:28:30:57:ab:83:04:
dd:f9:ee:7c:ff:aa:fc:44:f5:e2:6c:bb:83:9f:62:
f5:37:0f:e1:d4:9c:9c:26:db:65:02:73:3b:28:46:
d3:e5:54:d9:c1:3a:08:7a:7b:87:ea:e5:04:9f:e3:
b9:6f:aa:cd:f6:3d:eb:a6:0f:28:5e:52:e6:a6:c9:
9c:9e:1a:11:87:63:bb:ab:ac:5f:37:54:d2:6a:e0:
a5:99:b6:2c:55:22:f1:b9:49:9c:fb:82:76:f7:87:
95:9d:1a:d3:5a:25:12:01:bf:c1:cc:6c:52:f4:44:
fc:4f:15:db:ee:30:33:dd:3d:d4:96:ed:d3:76:52:
86:21:12:e9:f8:52:97:17:13:74:73:01:57:0a:85:
bb:1a:59:d2:21:03:5b:e8:5a:89:97:10:09:dd:a3:
a0:98:bb:b4:10:3e:11:b1:54:c7:a3:ea:89:79:0c:
b2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E7:4A:44:75:CF:5A:F0:70:74:B7:C6:9B:E9:92:34:19:EC:DD:1D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KudKRHXPWvBwdLfGm-mSNBns3R0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.144.0/21
Signature Algorithm: sha256WithRSAEncryption
44:ba:87:f1:7a:01:cf:cf:6f:82:2c:76:da:7a:26:7d:be:5f:
14:d0:91:e9:38:aa:aa:b5:04:c3:35:35:13:da:3e:f7:73:dc:
16:b6:73:74:aa:1c:64:ef:fc:94:fc:dc:71:95:50:e7:cc:e8:
fa:3f:e3:51:92:51:2b:b1:90:99:72:21:b9:36:66:64:0f:5f:
91:bc:7b:f0:2b:82:9d:96:67:46:2a:a5:b9:d7:e4:7e:73:f8:
f0:6e:b5:c2:71:70:fc:c3:27:25:e3:2b:4d:ee:c4:dc:30:84:
a2:10:04:90:44:d6:99:d0:7f:7f:a0:ef:3b:2d:1d:9d:d0:67:
cb:68:fb:d6:81:8f:3c:21:e5:fc:c5:f5:1e:d0:b6:94:56:76:
8b:f6:1d:66:bc:5d:98:d9:79:e7:25:33:fc:13:40:c6:5f:a5:
8d:82:6e:ac:cd:96:d3:84:3c:5c:c8:2d:5c:d4:8c:6c:3f:29:
09:73:4d:07:e9:45:17:72:d1:aa:61:48:be:d4:b3:fa:33:63:
6a:e3:69:63:dc:e6:14:ec:36:bd:4a:1f:c1:6c:3b:7a:d9:0c:
42:26:e6:e8:b5:97:4b:bc:6d:e1:bc:c1:5c:1f:c1:f5:ca:b8:
70:ee:19:1b:87:e7:4f:5e:72:23:72:3a:cd:c8:86:1b:51:84:
5c:82:3c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:25 2023 by rpki-client on console-ams.rpki-client.org