Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OKbLd9PZuOubekM5whKuW_8mk5w.roa
File: OKbLd9PZuOubekM5whKuW_8mk5w.roa (raw, json)
Hash identifier: qqaQehdBvywIivuQBeLJZqoM47GidX80bSCNN6xBnH4=
Subject key identifier: 38:A6:CB:77:D3:D9:B8:EB:9B:7A:43:39:C2:12:AE:5B:FF:26:93:9C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OKbLd9PZuOubekM5whKuW_8mk5w.roa
Signing time: Thu 15 Sep 2022 02:52:59 +0000
ROA not before: Thu 15 Sep 2022 02:52:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.68.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:52:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=38A6CB77D3D9B8EB9B7A4339C212AE5BFF26939C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fd:4a:82:5c:3e:d8:65:11:a2:f5:06:ea:3c:
3f:65:51:d1:f5:66:c9:56:1a:6d:ef:43:da:88:e9:
b0:7c:c1:53:f9:40:75:65:aa:be:5e:43:2e:d1:f2:
a3:0c:29:c2:14:2c:fb:0b:13:20:4c:0e:47:ab:b0:
cf:ed:d3:47:e1:a1:3f:5e:e6:04:78:09:93:1c:33:
b1:6d:0b:92:ac:aa:62:51:54:a4:c9:2e:0b:a2:91:
d4:2f:ba:e6:dc:4d:7b:65:3b:fb:1c:17:31:44:de:
65:5e:08:6a:fa:f2:b0:db:08:3b:18:d4:d2:44:ab:
09:af:e5:ce:8e:81:eb:aa:4c:be:dd:ba:42:e8:26:
d7:5d:49:a0:40:99:f8:91:02:8c:af:6d:c9:42:0d:
b0:e8:01:01:f6:50:0d:01:4b:d4:29:d7:93:cf:24:
25:07:de:4e:70:40:39:ff:9f:f4:dc:b9:33:08:b0:
69:0b:2f:ad:61:4d:4e:5f:8a:06:fc:9e:bb:c7:ba:
67:68:90:dd:7d:37:ba:8b:cf:15:6a:6a:26:34:e1:
87:52:49:fd:5e:14:1e:c2:52:56:00:01:fe:4d:12:
cd:1e:30:32:82:30:f5:b4:1b:cb:f6:29:d1:b7:45:
d4:0a:07:04:e8:69:12:a7:e0:aa:a7:d3:e1:68:91:
e0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A6:CB:77:D3:D9:B8:EB:9B:7A:43:39:C2:12:AE:5B:FF:26:93:9C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OKbLd9PZuOubekM5whKuW_8mk5w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.68.0/22
Signature Algorithm: sha256WithRSAEncryption
74:83:0c:c0:97:df:ea:8c:ba:12:14:d3:38:a0:6e:f0:d2:bd:
b2:c4:5d:04:69:34:69:81:ce:3b:b1:68:57:3b:52:8b:a0:a7:
94:de:c1:51:a1:bb:12:3b:c6:7b:4b:1c:28:3e:a4:07:ee:91:
03:44:4a:5d:8d:35:b7:75:3a:0e:e9:07:e5:ae:43:20:ca:55:
d0:b7:aa:b4:ee:1b:9a:67:f2:63:52:2d:55:8c:24:0e:fb:ae:
ce:b8:80:c2:27:61:46:1d:fa:e9:13:30:93:1d:69:89:ed:56:
33:23:d1:dc:9e:5e:a6:65:bf:ed:83:c7:da:6c:88:fe:91:52:
1d:fa:b7:b9:c0:55:dc:68:4a:9b:5d:af:a4:ae:8b:57:46:24:
ed:4f:c7:68:a5:ea:d0:5c:dc:8e:92:51:91:a2:be:77:24:c6:
e6:23:4c:07:80:21:88:6d:44:3d:72:81:2f:3a:d9:26:63:86:
2c:fc:cf:a9:dc:33:0f:c8:24:58:8d:c6:5d:95:36:b3:49:0f:
cf:bf:bc:75:ba:56:b5:df:85:0b:1f:ea:9c:84:9e:cf:ed:91:
76:7a:8a:e3:d7:a6:77:9e:c3:60:2d:c5:bd:af:e3:b2:28:94:
69:87:9b:cf:21:44:c8:e6:45:36:58:bf:b8:02:55:43:96:41:
1d:62:96:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:27 2023 by rpki-client on console-fra.rpki-client.org