Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LdJW4Wph24cyDFAnXdaSUMD04wY.roa
File: LdJW4Wph24cyDFAnXdaSUMD04wY.roa (raw, json)
Hash identifier: MNDHcKx9aEBuOa9biQBkHoyKH6TTfJUvH5q8Zq5MOqI=
Subject key identifier: 2D:D2:56:E1:6A:61:DB:87:32:0C:50:27:5D:D6:92:50:C0:F4:E3:06
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22A7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LdJW4Wph24cyDFAnXdaSUMD04wY.roa
Signing time: Fri 25 Nov 2022 04:41:28 +0000
ROA not before: Fri 25 Nov 2022 04:41:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 2407:4d00::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8871 (0x22a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2DD256E16A61DB87320C50275DD69250C0F4E306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:cf:53:5c:30:8b:53:ba:1d:1b:4d:ba:31:d1:
89:6f:f6:c0:ce:be:c2:56:61:42:78:08:77:61:80:
c4:0f:e5:27:73:a0:cd:0c:c1:82:0b:63:8e:81:27:
65:c9:39:27:48:49:7f:c2:9b:06:95:2e:51:58:f0:
7c:cd:8a:3d:8d:49:a0:6d:b7:2e:30:c4:14:cb:ee:
b1:de:b0:db:c8:f5:2d:2b:16:f1:84:07:47:41:0e:
b4:88:33:fc:d7:eb:da:d9:e0:00:de:79:27:da:a2:
2c:5c:f5:72:eb:a7:31:71:7c:0b:a9:21:93:2e:47:
c8:7a:80:a6:e9:c9:8e:11:b5:7d:89:17:89:cf:39:
10:dd:56:5b:c3:28:bf:79:f4:93:46:99:f9:1d:51:
40:8a:8b:36:59:40:1f:c2:21:01:c7:4d:f3:fd:f5:
96:c4:dc:1f:2a:58:6d:61:8e:95:ff:2d:83:7e:56:
46:82:1d:a6:2e:9a:28:23:76:35:04:e6:5e:b4:0e:
d9:27:24:1e:0b:a4:15:02:bf:63:74:68:96:f5:1f:
3f:5e:09:08:c0:c6:de:69:12:47:db:e2:4b:ba:92:
8f:03:9c:cb:21:f6:a0:4c:bd:17:1b:ed:c6:5f:0b:
39:91:5f:02:55:6b:d2:93:06:43:de:78:f4:a4:e1:
82:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D2:56:E1:6A:61:DB:87:32:0C:50:27:5D:D6:92:50:C0:F4:E3:06
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LdJW4Wph24cyDFAnXdaSUMD04wY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4d00::/32
Signature Algorithm: sha256WithRSAEncryption
b9:b4:38:13:97:4c:8a:66:83:fe:11:d7:e3:79:f8:4e:a1:86:
84:fc:20:61:d1:94:72:97:75:7d:72:07:76:ef:aa:22:e2:42:
24:5e:7c:af:6e:f9:fd:d4:9b:71:1a:e4:69:8b:23:c9:c4:ea:
06:cd:1e:16:a6:2f:4e:27:78:28:e5:d7:36:e4:d4:3b:80:29:
b1:49:97:6f:38:a4:51:0f:ef:6e:18:5a:44:04:78:71:6b:cc:
5b:ee:d4:1e:ad:0f:85:87:df:49:52:43:8d:09:bc:c1:2b:f1:
cb:44:33:c7:91:33:e8:93:1c:d5:b4:5e:db:d5:50:c2:07:f0:
13:b2:22:26:72:4e:d8:a3:23:18:8b:79:fc:31:49:58:37:61:
8e:fd:c8:59:60:29:10:51:d6:14:cf:ed:4d:88:e3:4b:78:22:
89:98:fe:17:2c:ed:e7:1d:cf:b5:40:06:6d:75:da:92:5b:f0:
2a:6c:33:07:dc:f6:6e:87:ab:b9:a2:04:ea:80:e1:92:e5:ff:
ec:b0:b7:0f:18:b5:f3:03:97:00:c5:d4:cc:46:ff:58:d1:0f:
76:56:cc:a6:f4:9a:42:ce:63:c2:fb:63:a9:d8:b6:d5:46:05:
4a:d4:7f:4e:d1:52:b0:e3:6a:9a:54:e0:89:d1:79:42:64:86:
ee:6b:5d:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:25 2023 by rpki-client on console-ams.rpki-client.org