Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P2Q3MsJohdLCOXCoaz9D1xtVPAc.roa
File: P2Q3MsJohdLCOXCoaz9D1xtVPAc.roa (raw, json)
Hash identifier: MKw5v9SmU9vYW093v/WGclDwIax1E968iDRMDh8obxw=
Subject key identifier: 3F:64:37:32:C2:68:85:D2:C2:39:70:A8:6B:3F:43:D7:1B:55:3C:07
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2378
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P2Q3MsJohdLCOXCoaz9D1xtVPAc.roa
Signing time: Fri 16 Dec 2022 03:25:59 +0000
ROA not before: Fri 16 Dec 2022 03:25:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.104.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9080 (0x2378)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Dec 16 03:25:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3F643732C26885D2C23970A86B3F43D71B553C07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:8f:2d:08:3d:5a:d1:e1:46:c0:8e:d3:62:cb:
ab:83:5f:34:08:bc:7c:6d:c8:47:db:5b:e0:02:c9:
a9:97:f2:98:9c:18:23:f9:41:72:9c:30:13:5d:ce:
74:ac:3e:7b:ef:3f:f3:e2:ed:b1:67:b5:c0:eb:0f:
21:94:b1:da:90:93:79:c3:ae:6a:2f:02:0a:84:8a:
fe:84:72:6b:63:ab:9a:f8:44:d2:95:af:c4:43:24:
cb:90:ca:59:a3:27:e7:29:a0:5b:96:88:aa:34:d2:
44:f5:86:4d:88:8c:e5:1f:87:df:18:20:78:ac:b6:
89:7d:95:67:57:fb:db:f3:43:24:64:ed:fc:4e:74:
f4:ae:f9:00:07:2c:2f:48:39:f7:a0:94:f1:6b:0f:
14:3b:fe:59:90:e3:5d:68:93:a5:3d:dd:03:d3:c6:
c5:ae:36:e7:ca:42:c8:aa:0a:19:14:68:46:db:94:
45:00:24:3a:c0:5b:17:62:fe:ab:18:ad:b9:46:c5:
90:4c:b8:0b:b0:57:85:d9:87:4c:11:ea:f3:6c:5c:
fc:3a:98:16:36:f3:2b:8c:61:85:47:d9:48:9a:00:
e9:44:bb:16:79:ca:c8:d8:21:ca:1b:04:d6:d3:00:
71:e8:33:0d:2f:43:e1:4a:3c:f5:26:10:87:f7:1a:
50:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:64:37:32:C2:68:85:D2:C2:39:70:A8:6B:3F:43:D7:1B:55:3C:07
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P2Q3MsJohdLCOXCoaz9D1xtVPAc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.104.0/21
Signature Algorithm: sha256WithRSAEncryption
32:40:e1:11:df:77:46:69:57:87:df:cb:a7:18:22:9a:bc:62:
a4:05:f0:ae:b4:f5:9e:be:0b:33:bc:ff:bb:11:e4:19:78:3c:
46:a9:ba:0e:49:c7:46:30:36:c8:d0:63:d1:78:b2:b6:0e:0d:
eb:8a:cd:d4:06:8d:b4:cb:2b:a8:ad:9c:e7:18:3a:26:2b:7a:
f1:2a:f3:ed:00:a4:26:73:68:f2:ad:15:c9:b6:e4:14:31:00:
6b:15:65:00:c5:3e:5c:d6:ba:25:c4:3b:ed:65:4c:f1:8e:69:
20:40:54:1e:84:81:6c:c3:43:99:fc:d1:3e:63:0b:ee:f8:25:
4b:1b:e6:f2:d4:70:81:86:3c:33:b8:0d:6a:85:f8:12:ea:57:
7d:b4:9d:95:ec:55:62:70:c4:64:87:37:ab:78:c2:d8:39:f4:
de:4b:9c:17:4f:17:91:19:84:7e:22:8e:c7:2e:cc:54:49:fc:
f9:d8:1f:f1:13:57:f4:64:f6:24:9f:15:1c:94:b7:70:0c:52:
01:30:78:49:89:31:b1:b1:ed:a3:50:75:78:41:81:c0:41:69:
e8:68:7f:83:ad:ea:8e:c2:51:1b:ea:2d:d8:c8:a6:5d:92:83:
36:f5:22:9e:23:3b:b1:2e:e6:c7:4a:c5:44:6d:f5:d4:1c:9b:
30:af:b6:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:26 2023 by rpki-client on console-ams.rpki-client.org