Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/N4yz3qow-plUTX5pmi2XvIqmaIg.roa
File: N4yz3qow-plUTX5pmi2XvIqmaIg.roa (raw, json)
Hash identifier: xPSfAsaEcvfZKEPYHWzh9N2gRshGaOjS1d7QPvKfx7E=
Subject key identifier: 37:8C:B3:DE:AA:30:FA:99:54:4D:7E:69:9A:2D:97:BC:8A:A6:68:88
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2319
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/N4yz3qow-plUTX5pmi2XvIqmaIg.roa
Signing time: Fri 25 Nov 2022 04:42:02 +0000
ROA not before: Fri 25 Nov 2022 04:42:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.208.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8985 (0x2319)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:42:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=378CB3DEAA30FA99544D7E699A2D97BC8AA66888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:53:d6:a8:0d:77:8f:72:69:9f:94:97:42:ab:
ec:f2:ca:fe:80:91:be:89:c0:c6:64:bb:8b:98:df:
cd:2d:b5:d7:2d:47:d9:8c:b4:91:35:67:64:36:33:
1f:d2:15:56:d0:51:f5:7b:ca:59:a5:2f:6e:6e:cd:
ff:23:0b:03:13:d1:a9:53:8f:fa:d9:d8:ce:07:94:
e3:40:26:1f:2e:75:a4:82:e8:c6:1c:ca:fa:51:55:
2b:db:7b:9c:24:1a:57:ca:d6:fd:bc:d3:16:21:f5:
9d:58:97:3f:65:0e:7b:c4:b9:fe:a9:00:86:9c:56:
ff:f2:d3:74:15:f3:ee:79:1e:dd:eb:39:ae:16:9a:
d1:05:af:b9:7a:18:09:6c:c8:6c:80:af:dc:f3:fe:
8f:5a:d2:16:1a:b7:41:8f:4b:21:81:71:b4:2d:db:
42:d7:b5:cf:97:dc:ca:e5:9a:a7:fa:7f:5b:cd:0e:
f8:43:e3:6e:ba:6e:69:bf:e7:6c:97:68:a3:c9:c4:
57:01:e1:8d:75:3d:74:2c:4d:e1:a0:4b:94:e3:7f:
0e:df:c7:d3:43:ec:48:71:0e:08:b1:82:a3:09:a2:
20:cc:72:31:ce:9c:5d:0f:81:f6:fd:f4:6b:72:d5:
b9:db:a8:b9:8c:af:b8:93:a3:af:bc:99:c5:c5:63:
bc:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:8C:B3:DE:AA:30:FA:99:54:4D:7E:69:9A:2D:97:BC:8A:A6:68:88
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/N4yz3qow-plUTX5pmi2XvIqmaIg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.208.0/21
Signature Algorithm: sha256WithRSAEncryption
1b:10:63:3a:6f:0a:77:83:22:b6:6b:8b:87:10:2a:93:31:42:
f3:15:9c:16:9d:9d:1a:dc:63:3a:9e:cf:c5:ef:e6:ac:a8:7c:
b9:93:01:ff:7b:2f:a1:6d:25:42:13:2e:ae:0b:b1:00:a1:d1:
66:55:64:04:6d:44:03:97:a4:b1:ba:b3:3f:19:e7:98:12:5c:
88:69:51:87:3f:e6:af:55:39:d5:07:57:d1:0c:8d:c2:a4:d7:
2f:6f:fc:97:ca:54:ce:52:68:af:7f:a6:c0:6e:78:6c:fb:7e:
17:9f:34:ca:f4:59:0c:da:42:77:96:a5:a3:81:3e:dd:a8:91:
e1:a0:c4:c8:35:b9:9c:b7:55:c1:5d:11:70:b1:44:d9:d4:00:
4d:29:5e:c3:88:87:d2:31:fb:f7:6d:bd:03:fb:bd:5e:4d:bf:
31:54:69:71:dc:b9:15:49:da:a7:fa:05:17:db:3f:86:5b:8e:
eb:b8:f8:d7:3f:46:7a:a2:83:d3:44:3d:ac:a7:c0:85:02:d3:
c4:cc:1c:84:25:a5:a2:c2:c0:c7:d5:64:9f:b3:42:14:d3:6b:
9d:21:6d:17:8d:84:6a:54:8b:0e:1f:55:40:84:60:86:00:78:
a8:24:17:0b:e7:ab:65:7b:6a:df:c8:3f:ea:b8:f4:e0:43:d9:
6d:eb:6d:81
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIxkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQyMDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDM3OENCM0RFQUEzMEZB
OTk1NDREN0U2OTlBMkQ5N0JDOEFBNjY4ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwU9aoDXePcmmflJdCq+zyyv6Akb6JwMZku4uY380ttdctR9mM
tJE1Z2Q2Mx/SFVbQUfV7ylmlL25uzf8jCwMT0alTj/rZ2M4HlONAJh8udaSC6MYc
yvpRVSvbe5wkGlfK1v280xYh9Z1Ylz9lDnvEuf6pAIacVv/y03QV8+55Ht3rOa4W
mtEFr7l6GAlsyGyAr9zz/o9a0hYat0GPSyGBcbQt20LXtc+X3Mrlmqf6f1vNDvhD
4266bmm/52yXaKPJxFcB4Y11PXQsTeGgS5Tjfw7fx9ND7EhxDgixgqMJoiDMcjHO
nF0Pgfb99Gty1bnbqLmMr7iTo6+8mcXFY7yzAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUN4yz3qow+plUTX5pmi2XvIqmaIgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL040eXozcW93LXBsVVRYNXBt
aTJYdklxbWFJZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6NAwDQYJKoZIhvcNAQELBQADggEBABsQYzpvCneDIrZri4cQKpMxQvMVnBadnRrc
Yzqez8Xv5qyofLmTAf97L6FtJUITLq4LsQCh0WZVZARtRAOXpLG6sz8Z55gSXIhp
UYc/5q9VOdUHV9EMjcKk1y9v/JfKVM5SaK9/psBueGz7fhefNMr0WQzaQneWpaOB
Pt2okeGgxMg1uZy3VcFdEXCxRNnUAE0pXsOIh9Ix+/dtvQP7vV5NvzFUaXHcuRVJ
2qf6BRfbP4Zbjuu4+Nc/Rnqig9NEPaynwIUC08TMHIQlpaLCwMfVZJ+zQhTTa50h
bReNhGpUiw4fVUCEYIYAeKgkFwvnq2V7at/IP+q49OBD2W3rbYE=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:26 2023 by rpki-client on console-ams.rpki-client.org