Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LkYnd5gzZuKvrFEkAQTbFAzeGD4.roa
File: LkYnd5gzZuKvrFEkAQTbFAzeGD4.roa (raw, json)
Hash identifier: l2ALIZxd3vqlqsBbS+3S8VlhQlzbAtV53Y6hAnzgekc=
Subject key identifier: 2E:46:27:77:98:33:66:E2:AF:AC:51:24:01:04:DB:14:0C:DE:18:3E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 225F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LkYnd5gzZuKvrFEkAQTbFAzeGD4.roa
Signing time: Fri 25 Nov 2022 04:41:05 +0000
ROA not before: Fri 25 Nov 2022 04:41:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.24.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8799 (0x225f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:05 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2E462777983366E2AFAC51240104DB140CDE183E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:df:28:19:c8:ef:37:82:0c:c6:22:72:41:3c:
11:83:2e:46:a3:64:7c:7b:9d:ea:70:d0:5f:88:85:
95:52:fb:a0:3e:69:1a:ea:0e:04:00:5d:a5:0f:b7:
3b:4d:29:89:4b:96:3f:11:a2:79:22:95:a0:22:01:
07:e9:68:cf:6b:d8:be:42:84:17:f9:a4:2e:1a:5f:
29:a0:a5:37:b6:24:08:2e:d6:0b:60:2b:a2:af:b7:
e6:2f:7d:f0:c8:23:a1:5d:81:7d:de:88:75:de:b7:
31:92:ea:55:3d:85:c7:8b:5f:1c:aa:a2:1d:aa:20:
e7:9d:59:7a:23:36:e8:88:00:45:24:1b:56:46:26:
c5:74:e9:46:2b:9d:36:ad:df:2e:04:bd:44:b3:90:
f1:e0:2e:c9:19:94:cf:be:18:2c:ce:99:05:53:d2:
31:47:7d:12:1c:1c:e2:bb:37:39:82:6d:9e:97:b0:
c0:bb:ce:cc:3e:8d:eb:9e:6f:0c:1d:1a:d0:ec:9f:
74:a6:34:84:c2:7f:77:c9:b5:97:50:5d:1b:70:6e:
1f:d0:3d:07:6d:41:ba:46:d6:32:ad:19:97:d2:6d:
a9:04:d4:0d:9f:c8:09:36:49:e0:d1:76:9b:6d:5c:
4b:4d:e1:03:94:4a:1e:0e:e0:c7:16:e5:ba:cb:40:
eb:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:46:27:77:98:33:66:E2:AF:AC:51:24:01:04:DB:14:0C:DE:18:3E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LkYnd5gzZuKvrFEkAQTbFAzeGD4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.24.0/21
Signature Algorithm: sha256WithRSAEncryption
7f:eb:0b:92:c8:5d:20:12:3c:e6:2e:b1:13:e0:cc:82:ae:27:
b1:23:dd:7e:b1:b9:cf:11:70:9a:70:20:c2:c6:8f:40:ff:5f:
4a:5a:5a:1d:92:f8:60:b1:d5:59:ef:47:af:ac:cb:3a:8e:ec:
50:65:77:e7:b8:70:74:b2:63:76:5e:35:f9:70:98:a5:38:63:
e1:67:3a:d0:74:33:f9:bc:9e:47:86:9e:82:89:8d:d0:e7:cd:
dd:f6:c3:c2:8a:5f:72:45:6d:81:3d:29:85:57:c9:7e:c4:ff:
0d:ef:42:c5:2c:b5:16:cf:43:3b:71:98:63:0c:b3:d4:c3:99:
f4:42:f7:84:6d:88:4e:77:57:1b:34:d0:b1:d6:37:b2:7f:21:
bf:4d:00:4b:53:81:85:29:ef:a5:0d:5b:58:9f:53:58:1b:bd:
70:42:bc:1d:2d:08:ab:44:f4:e0:a9:c7:03:60:e5:ee:b6:69:
4b:31:23:ca:08:f8:ec:34:e4:0b:20:ff:7c:11:3b:56:ab:c8:
dc:a2:35:ec:50:2d:30:67:39:03:fe:98:0a:c5:27:79:21:c8:
ac:5a:90:77:5b:5b:48:58:40:57:4d:19:52:f2:d8:d7:51:49:
3f:4e:9d:a5:cb:70:22:b9:f3:b8:78:4c:b9:10:4e:32:52:62:
42:e7:82:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:25 2023 by rpki-client on console-ams.rpki-client.org