Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NQnkrsbI0yOvRl0akQn8s0D1SEc.roa
File: NQnkrsbI0yOvRl0akQn8s0D1SEc.roa (raw, json)
Hash identifier: wDdcee80byTrzwO+rhl5a2Lf23PyAV3ILH4OtyXCTbg=
Subject key identifier: 35:09:E4:AE:C6:C8:D3:23:AF:46:5D:1A:91:09:FC:B3:40:F5:48:47
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21BE
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NQnkrsbI0yOvRl0akQn8s0D1SEc.roa
Signing time: Fri 25 Nov 2022 04:40:21 +0000
ROA not before: Fri 25 Nov 2022 04:40:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.80.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8638 (0x21be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3509E4AEC6C8D323AF465D1A9109FCB340F54847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:22:c2:95:65:37:a6:1d:ca:46:31:a8:ef:56:
7a:a9:3f:79:dd:d1:49:21:7c:88:c6:5c:2e:83:c7:
25:61:e7:5f:3d:ea:e5:fb:4f:08:f6:fb:f8:0a:48:
33:60:7f:bc:b3:ed:bb:37:97:76:4d:7f:59:a2:41:
96:a1:57:60:31:b8:78:1a:25:5e:62:46:6f:38:83:
b5:37:74:de:0b:bd:b4:fb:ba:9a:d4:38:78:d9:47:
11:f2:79:8b:8e:69:ba:b9:99:26:77:ff:07:7c:29:
c2:a1:1d:fb:40:79:67:a5:43:6e:1a:f7:85:19:ce:
64:fd:d1:83:74:7c:d3:c8:cd:60:56:18:fe:b1:0a:
88:58:64:16:af:d7:be:18:dd:22:39:0f:19:ad:bd:
39:81:74:82:90:63:03:61:89:6b:a3:04:3f:32:d1:
08:71:0b:89:5c:2a:e9:78:10:8a:f8:53:a0:be:42:
0c:5f:4e:7e:60:09:b4:03:ea:0c:d3:5c:2d:2d:2d:
7e:ee:73:36:bb:e2:d4:46:84:4e:84:9c:95:a4:a2:
4b:b7:ff:f3:00:33:3b:d6:38:94:42:3e:6f:51:b4:
ba:fc:82:d6:b1:c3:91:47:ef:a9:f0:68:02:69:fb:
87:ab:cd:58:6c:a6:6e:7b:ff:b4:8a:24:14:49:97:
c4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:09:E4:AE:C6:C8:D3:23:AF:46:5D:1A:91:09:FC:B3:40:F5:48:47
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NQnkrsbI0yOvRl0akQn8s0D1SEc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.80.0/21
Signature Algorithm: sha256WithRSAEncryption
4b:26:a5:8f:4f:a3:ef:ec:57:5d:f3:b1:ed:88:86:ad:ac:d0:
74:b2:79:2f:a8:d2:90:19:f3:47:fb:96:f4:f2:97:5c:1c:ee:
39:f7:39:fc:51:9c:14:10:63:50:01:be:12:29:cd:5c:f8:1b:
fc:4e:ff:ce:31:0c:da:8a:4a:02:24:78:c6:dd:d2:7e:c4:fa:
a5:f7:5b:89:e6:85:50:7c:a1:95:18:10:8d:bb:ab:90:70:c6:
b4:06:cc:4e:f6:4f:cf:01:98:30:bf:63:34:41:f4:46:c5:55:
53:b5:0b:e9:32:75:51:dc:69:df:70:be:24:11:6b:af:23:74:
af:94:b7:6f:15:96:ad:75:88:64:ce:1b:ad:67:5a:cb:d4:83:
42:53:84:1e:74:88:f6:ba:ab:ea:5f:05:58:15:0d:c4:b1:11:
80:cf:21:16:83:19:71:94:d2:23:36:10:46:35:14:3c:a4:a6:
47:17:3f:e7:a8:7c:4a:5e:43:62:5e:9c:1c:c9:f4:91:3d:c9:
33:ff:47:f1:79:5d:4c:ad:77:d1:b5:d3:f2:d7:06:85:c0:6b:
d6:99:71:f8:df:18:e6:91:2d:5f:ba:22:03:1d:b8:08:1a:e8:
11:55:1f:d7:31:f3:bd:e6:e1:31:3d:f1:ef:05:cc:ca:e4:4f:
a3:ca:31:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:26 2023 by rpki-client on console-ams.rpki-client.org