Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P73wdoNPTavamRy23drlv-X_xTo.roa
File: P73wdoNPTavamRy23drlv-X_xTo.roa (raw, json)
Hash identifier: wdS3X+vHkrc/dVSlAQN5LANee6Wbfc9Vay+CZtALbAI=
Subject key identifier: 3F:BD:F0:76:83:4F:4D:AB:DA:99:1C:B6:DD:DA:E5:BF:E5:FF:C5:3A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2122
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P73wdoNPTavamRy23drlv-X_xTo.roa
Signing time: Fri 25 Nov 2022 04:39:33 +0000
ROA not before: Fri 25 Nov 2022 04:39:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.208.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8482 (0x2122)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3FBDF076834F4DABDA991CB6DDDAE5BFE5FFC53A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:92:84:ba:89:e9:32:a9:1d:8e:ac:37:11:f0:
eb:af:f9:8a:f4:1d:c6:48:ec:0b:6a:60:b6:3f:72:
10:e2:b6:4d:98:56:ff:09:a7:bc:67:ee:8f:2b:a9:
17:34:eb:56:11:fb:98:da:fe:e6:c6:fd:63:ed:aa:
6a:c8:6c:17:a3:b6:80:b3:f0:94:e4:55:4f:a3:fa:
4b:5c:46:b0:0b:c9:de:1f:15:9a:1a:32:f6:c1:7f:
c2:f7:20:72:d9:fb:11:ab:f8:d2:80:17:2a:1a:f3:
1e:09:63:e9:13:bd:3f:b8:7d:2f:c3:42:a0:c1:8d:
2f:ec:7f:f3:da:91:67:52:2d:8f:e5:b4:dd:dd:80:
1c:44:3c:61:5c:d9:74:75:06:00:c3:35:2c:8f:d4:
e0:55:d8:6e:f0:66:99:ad:5b:32:6d:1a:f9:1b:3f:
3f:6b:1a:4a:b9:5e:37:54:f9:2f:c3:09:63:87:a0:
12:05:5b:24:6d:de:26:fc:0b:0e:55:1c:45:05:ae:
b3:b5:17:a2:54:93:9b:91:ec:9f:d6:ea:f7:f6:5c:
01:a4:1e:c9:0a:b0:16:d4:f4:bb:f5:2b:08:9c:0d:
23:d4:33:68:2d:9b:dd:44:bd:31:32:a5:fe:2b:0c:
a4:ed:19:28:ee:34:e0:3a:1d:c9:17:4f:b8:6d:82:
6a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BD:F0:76:83:4F:4D:AB:DA:99:1C:B6:DD:DA:E5:BF:E5:FF:C5:3A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P73wdoNPTavamRy23drlv-X_xTo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.208.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:a4:69:c8:8d:c5:69:a3:67:04:1b:4a:4a:62:3d:e3:2a:60:
49:b1:71:48:c2:22:d8:4d:ed:cc:ee:5c:86:92:ae:6e:67:3c:
40:96:2c:bb:4b:f9:1c:15:ca:89:ea:8a:fa:ba:08:e0:97:59:
fb:62:95:50:57:7f:c4:12:38:b0:c8:f8:69:8f:8a:11:a2:cb:
b8:8e:c5:d0:c2:e6:44:d5:05:7e:3f:e3:b9:c4:67:9b:ef:6a:
39:3d:63:29:ab:01:f4:9f:7d:07:a8:c1:a7:81:ff:a7:ee:9c:
cd:f8:a6:eb:fe:dc:d0:d5:74:06:77:d1:64:cb:91:0b:f2:2c:
05:9a:a6:bf:b2:24:d3:46:3b:77:c2:a5:d5:e0:9e:25:a4:e6:
fc:dd:47:fd:2d:61:1a:8b:9d:89:3b:d5:83:da:cb:9c:07:5d:
0e:87:48:86:ca:0a:78:41:70:f5:c3:c5:17:7b:fb:57:f0:58:
25:f8:c4:8e:86:ea:9d:f5:e4:fc:dc:27:81:ea:e9:a4:ce:0f:
cc:26:09:50:10:a7:57:d4:ee:72:ef:88:a8:c3:52:5e:2b:17:
27:71:5a:51:2c:06:68:e3:f3:ce:82:81:45:c6:6e:53:b1:46:
12:4a:2d:11:3c:02:86:08:18:a3:6a:d5:cf:45:c0:c0:1d:aa:
48:a9:ee:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:04 2023 by rpki-client on console-fra.rpki-client.org