Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LQTiMVp_bKjZAE3UmV42ISj_GDo.roa
File: LQTiMVp_bKjZAE3UmV42ISj_GDo.roa (raw, json)
Hash identifier: tl9GBuAr3V+qzl0YhrH3hpcIyBaImFnG4lnxbQM7NBU=
Subject key identifier: 2D:04:E2:31:5A:7F:6C:A8:D9:00:4D:D4:99:5E:36:21:28:FF:18:3A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22D3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LQTiMVp_bKjZAE3UmV42ISj_GDo.roa
Signing time: Fri 25 Nov 2022 04:41:41 +0000
ROA not before: Fri 25 Nov 2022 04:41:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.148.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8915 (0x22d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:41 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2D04E2315A7F6CA8D9004DD4995E362128FF183A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ab:74:7f:98:ea:a5:d6:3a:67:4b:ed:95:de:
f9:cf:ea:f0:e3:62:c0:e2:b1:7e:ed:3f:48:8a:7f:
b1:4c:66:7a:7b:c8:19:94:00:0e:36:21:7a:b9:db:
06:f9:75:b4:19:59:de:27:e5:1a:5b:c7:33:9c:ae:
6b:a9:05:c1:67:de:0c:2d:3c:37:64:d9:92:35:f5:
eb:6d:ff:2b:c8:24:46:91:f1:43:ac:34:67:4d:8a:
b8:c4:ea:19:51:91:8a:82:74:a0:6e:a8:ec:fa:82:
d0:1e:d0:bf:7b:79:4d:cd:45:4c:0a:61:f3:0f:bb:
18:ec:34:4a:de:b8:13:81:ab:20:91:7a:76:1d:c2:
f5:c8:c7:43:09:fc:9c:53:c3:20:cb:a4:a6:53:f4:
a5:2c:9f:b2:5c:fa:fd:43:dd:f3:48:c9:c5:9f:e3:
40:9c:a7:2d:91:bd:0d:de:b7:be:d4:37:84:6a:22:
dd:87:b8:a3:1d:86:be:07:a3:f2:92:b1:af:9c:a0:
9a:8e:45:57:c1:37:e4:70:11:a7:b7:b2:ae:1d:64:
c3:7a:5a:94:c4:59:a6:f7:e3:57:e3:68:80:be:a6:
6b:ba:23:a5:d6:be:49:da:c1:c0:11:64:d7:ce:32:
91:a6:24:ef:cb:ac:2e:4f:f1:a8:1b:63:5a:d3:a2:
ba:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:04:E2:31:5A:7F:6C:A8:D9:00:4D:D4:99:5E:36:21:28:FF:18:3A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LQTiMVp_bKjZAE3UmV42ISj_GDo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.148.0/24
Signature Algorithm: sha256WithRSAEncryption
06:b7:14:0a:3b:a8:25:f5:8a:88:d7:40:9c:12:d6:52:81:38:
45:ce:7e:f5:d6:4c:a7:4c:13:3a:9b:b5:98:b8:e5:01:2f:a5:
48:c2:29:62:89:21:2c:4e:5c:bc:c0:04:9d:aa:fe:e7:e2:0d:
97:4f:fe:90:17:09:4b:a5:c2:bb:b3:f1:a8:9e:09:06:e5:e4:
4c:e0:b3:66:01:ca:3d:31:41:1a:a2:64:72:ee:2d:3b:92:f4:
7d:a7:9d:a5:4f:5e:7b:a1:6a:fc:0e:1a:bb:a1:ff:78:72:52:
09:97:b1:2e:75:a7:67:de:29:0c:d3:be:4e:7a:a0:37:62:4f:
ad:28:37:77:c9:56:d5:1b:b6:84:ca:9b:29:4b:75:69:c4:a0:
60:e1:d0:bc:e0:8e:46:68:80:45:b7:0c:60:1d:56:1b:6a:f9:
da:b9:af:8d:1e:ea:b9:36:e9:36:9f:8c:7a:80:2e:4a:36:f0:
e5:e2:f3:39:2e:31:d4:13:57:0d:39:6a:45:08:2b:b3:16:4d:
dc:e4:fd:03:33:b7:aa:9a:ae:6e:2c:be:ba:c2:32:57:13:4c:
a1:50:69:77:6c:c8:3c:0e:0b:b0:10:a2:c6:ae:4b:9b:71:f5:
ad:8c:2e:82:77:b2:77:b2:af:e7:62:f0:78:78:1b:3e:a8:f4:
90:eb:49:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:25 2023 by rpki-client on console-ams.rpki-client.org