Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Kv0Q9LeTKKx5H6sJtcVRWe5Thrg.roa
File: Kv0Q9LeTKKx5H6sJtcVRWe5Thrg.roa (raw, json)
Hash identifier: 4VVc96HXoskdEvJQ3toYwvp4tgHWtcyZafJcHM6YgEk=
Subject key identifier: 2A:FD:10:F4:B7:93:28:AC:79:1F:AB:09:B5:C5:51:59:EE:53:86:B8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 222D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Kv0Q9LeTKKx5H6sJtcVRWe5Thrg.roa
Signing time: Fri 25 Nov 2022 04:40:52 +0000
ROA not before: Fri 25 Nov 2022 04:40:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.128.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8749 (0x222d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2AFD10F4B79328AC791FAB09B5C55159EE5386B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:29:ae:60:41:d8:7f:c6:49:25:c4:57:fe:8c:
ae:d5:11:f5:7e:bb:c9:10:6a:3f:72:6e:e2:b6:d1:
f9:77:ca:7e:b6:17:81:a8:26:1d:52:7d:6d:a6:67:
29:f3:e4:48:d4:93:b0:e7:b9:87:44:0e:16:b9:af:
5f:64:53:f4:bd:6a:cf:16:71:58:1a:40:1c:43:57:
cf:d1:1e:bb:69:77:6c:71:5e:ff:a3:c1:12:85:2d:
5c:8b:80:b2:fd:23:ec:64:be:99:ef:16:fe:97:6e:
39:62:13:8e:99:ca:a9:87:13:01:24:74:c9:62:59:
12:33:dc:3f:6d:d9:de:0e:74:19:17:3c:c0:10:42:
4b:bc:30:9a:c8:6a:88:52:50:8d:1d:e7:1e:b8:cc:
28:eb:19:c9:51:8e:3a:92:85:9e:54:48:f6:30:51:
73:8a:00:0b:99:71:e2:03:57:3a:3f:75:2e:90:f6:
2a:5a:f0:b7:61:4b:2a:09:36:13:b4:15:60:d5:63:
af:f5:33:4c:f6:b8:09:83:20:f4:00:ca:13:6a:e3:
08:d6:7e:40:13:34:57:3d:c1:c7:3a:1c:b7:e6:3c:
4e:3f:69:03:db:a9:bc:df:b9:f0:e6:5c:ec:bf:a3:
c0:c6:a6:9e:02:09:07:9d:cb:c4:e3:42:a0:cb:f4:
a7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:FD:10:F4:B7:93:28:AC:79:1F:AB:09:B5:C5:51:59:EE:53:86:B8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Kv0Q9LeTKKx5H6sJtcVRWe5Thrg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.128.0/19
Signature Algorithm: sha256WithRSAEncryption
1a:7e:34:4b:94:1e:d0:ad:7c:c6:13:0c:9a:2e:2d:fe:6d:94:
a7:67:ea:93:c6:3c:45:fb:05:43:8e:3f:90:61:bf:99:13:cb:
a7:49:cf:ed:df:f1:81:36:4e:d5:1f:9d:9c:94:c8:62:05:cb:
5d:50:43:64:d3:53:0d:cd:68:b4:eb:76:f8:d7:38:82:ff:5a:
d6:29:e4:fc:01:80:41:3b:54:ac:31:d0:79:20:aa:6a:98:65:
1d:9c:6f:60:81:52:9c:46:0a:be:a0:b7:77:60:09:66:c0:fd:
5a:15:b1:d0:92:de:0b:90:19:f9:88:ce:b2:67:a3:a4:ba:70:
e8:dd:f6:36:c4:e3:e9:08:72:76:0c:8e:01:cb:f0:87:88:18:
b4:57:39:62:16:09:94:82:ba:fc:ff:aa:fd:b7:99:90:b2:59:
7c:33:9c:ce:3d:91:1f:8f:65:40:86:b6:fe:ee:d1:b1:0a:c7:
10:96:5f:68:85:67:29:87:11:f5:7f:34:15:89:a3:ec:98:9d:
2a:16:1f:d4:79:48:b1:f8:e4:a9:27:1c:b8:a3:56:e9:40:5c:
c5:bd:c0:c1:f3:87:15:a9:08:8e:da:94:1b:66:dc:97:5d:ba:
aa:81:44:f5:a9:f5:51:e2:f4:c3:5d:21:e6:30:1d:1c:23:99:
94:2c:ac:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:03 2023 by rpki-client on console-fra.rpki-client.org