Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O_fbFINlnb7AA01LrnWU8VmM30c.roa
File: O_fbFINlnb7AA01LrnWU8VmM30c.roa (raw, json)
Hash identifier: 1kipxKl7iX76IYWt/cfHoUKuS02tOhnQt14SezWqc2k=
Subject key identifier: 3B:F7:DB:14:83:65:9D:BE:C0:03:4D:4B:AE:75:94:F1:59:8C:DF:47
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2087
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O_fbFINlnb7AA01LrnWU8VmM30c.roa
Signing time: Fri 25 Nov 2022 04:38:49 +0000
ROA not before: Fri 25 Nov 2022 04:38:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 211.76.123.128/25 maxlen: 25
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8327 (0x2087)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3BF7DB1483659DBEC0034D4BAE7594F1598CDF47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:13:25:c0:3f:d4:d8:bc:07:9b:7e:91:9b:ec:
6d:b5:ed:f8:f3:e5:bd:12:6f:fa:30:b4:21:f9:74:
ba:d1:4c:e4:e4:9a:41:e9:60:e8:30:bd:1a:82:c0:
61:7f:a4:c3:60:3f:2b:e5:45:4c:59:f0:f6:cf:b3:
b2:00:70:d3:4f:a6:96:9a:c0:d2:24:31:26:8d:a2:
98:e0:ea:4a:18:5f:7a:dc:5d:0e:cf:4e:eb:0d:c9:
ec:f1:da:f1:96:b0:49:4f:9b:76:7d:52:ae:40:59:
31:fb:75:38:e9:ef:ce:b6:84:a4:03:e7:a5:0b:5d:
db:c4:57:7c:53:5a:ca:c1:1e:13:d3:19:c4:01:ec:
bf:69:89:59:19:8d:68:0c:36:70:e5:2c:f0:03:23:
f7:ab:2a:45:57:8a:fc:41:1f:8f:7c:89:a3:86:75:
80:5e:a7:96:85:32:6a:ca:c3:be:db:4e:65:65:4e:
4d:e0:b5:26:cd:54:1f:2a:44:6d:2d:f6:c3:ac:bb:
92:ce:af:d3:bd:b8:ce:25:4f:41:59:3f:32:ab:4d:
aa:95:49:c4:3e:24:08:4f:86:65:50:14:31:ba:7d:
08:9b:13:e3:de:9e:1e:be:54:e2:4c:8f:09:ea:07:
dd:4c:96:27:d1:78:79:a1:e0:6e:d4:96:89:ca:c2:
77:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F7:DB:14:83:65:9D:BE:C0:03:4D:4B:AE:75:94:F1:59:8C:DF:47
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O_fbFINlnb7AA01LrnWU8VmM30c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.123.128/25
Signature Algorithm: sha256WithRSAEncryption
42:09:9f:9c:a9:d5:f5:d9:bc:4c:d4:e5:a7:52:af:38:c3:95:
90:50:04:d3:55:98:fa:07:c9:c6:db:b5:6c:fb:ae:c2:97:5e:
a1:fe:ff:7f:af:d5:12:29:71:bd:e1:04:00:62:b2:cd:1c:f3:
80:b6:a8:bd:64:9a:9a:2e:2b:0d:36:3e:b2:67:71:14:bd:cd:
46:71:e2:b4:4d:80:40:62:40:63:c8:07:94:68:f1:e3:3c:fb:
b1:b1:45:ee:08:d1:aa:2a:65:5c:5f:b2:8b:a7:54:38:1c:ce:
11:11:ff:80:d3:69:25:50:48:01:eb:ea:1f:57:00:9b:4c:50:
ad:95:3d:b7:b5:7b:12:5c:62:90:ca:e3:ef:bc:5a:c0:22:94:
98:ab:11:a6:60:72:fe:40:50:c7:1f:3c:df:fb:d5:54:53:7a:
4c:76:8e:81:ea:82:4c:5f:5b:4a:5c:d2:d1:f7:62:3b:95:10:
74:d2:19:b6:98:21:97:03:92:d3:63:98:a9:9d:d6:86:0f:ce:
f9:bc:f6:ac:a4:14:07:e7:59:da:50:f6:f4:80:90:7b:e8:f8:
ba:56:02:06:06:11:16:cf:56:26:3c:d2:2b:ac:57:67:38:cd:
32:74:8c:02:60:e3:88:7c:c8:9e:2c:1d:1d:72:ad:fc:80:bf:
2d:38:99:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:26 2023 by rpki-client on console-ams.rpki-client.org