Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PIeiH1eM8LjyJ4Wzo5dfTeVkZ_s.roa
File: PIeiH1eM8LjyJ4Wzo5dfTeVkZ_s.roa (raw, json)
Hash identifier: Lj+f6nEMRJ133OaTpQ7E4uXBgK9mdvdhru4sAzyVoqU=
Subject key identifier: 3C:87:A2:1F:57:8C:F0:B8:F2:27:85:B3:A3:97:5F:4D:E5:64:67:FB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21D5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PIeiH1eM8LjyJ4Wzo5dfTeVkZ_s.roa
Signing time: Fri 25 Nov 2022 04:40:27 +0000
ROA not before: Fri 25 Nov 2022 04:40:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.252.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8661 (0x21d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3C87A21F578CF0B8F22785B3A3975F4DE56467FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3a:24:bd:ff:d4:45:59:9f:6f:76:7b:45:a8:
dd:62:84:1b:bc:c6:0b:9b:ff:8a:6c:0d:ac:11:88:
44:ad:40:c1:3d:38:1c:d8:00:6e:02:86:e4:da:e8:
1a:fb:68:2e:6a:13:5a:ce:59:21:3a:ab:23:df:98:
41:8b:30:f0:72:ef:aa:ff:93:76:69:ad:ef:7d:19:
b6:cb:42:e5:7d:4d:e9:03:0e:bd:d3:cc:f8:e7:2a:
ea:89:1a:ee:27:a8:db:ee:a6:db:46:f1:53:7a:33:
44:b2:56:24:a8:ec:6d:5e:bd:35:6b:2d:3d:71:7a:
8d:f7:d6:04:9a:d5:42:bd:18:f6:5a:04:80:2a:b4:
60:1b:90:0e:db:0d:24:58:c6:59:ef:33:d1:f4:82:
f0:ab:13:f1:93:80:cf:22:b9:0f:b4:ac:fe:e7:b7:
ee:c5:60:69:9e:d6:43:cf:51:af:20:0c:c3:5f:b6:
2c:d1:59:ae:1d:5a:d0:3a:ac:95:96:8e:d3:42:57:
b9:f7:55:ec:c0:ba:e8:01:68:e9:36:30:ed:b2:7f:
01:e8:56:00:53:13:f3:43:3c:35:54:37:5e:99:a5:
67:c3:07:d9:77:85:d1:0a:84:87:16:96:ad:cd:01:
e7:87:55:9c:f5:96:b9:3d:d3:ff:ef:7d:99:ad:54:
f9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:87:A2:1F:57:8C:F0:B8:F2:27:85:B3:A3:97:5F:4D:E5:64:67:FB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PIeiH1eM8LjyJ4Wzo5dfTeVkZ_s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.252.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:87:5a:72:80:d7:c7:f9:87:60:03:60:58:27:a8:a4:64:d4:
d4:0c:a4:b9:43:c5:8a:db:c0:48:72:87:81:0f:61:4e:d6:50:
ef:f0:e7:c9:04:ad:73:7a:5e:8c:26:39:88:23:fb:5c:70:c8:
55:85:52:65:e7:a3:85:4d:41:97:4b:69:2a:ea:ee:56:1a:77:
85:77:8e:3d:cb:3d:05:8f:d4:b4:2f:59:93:56:a3:9e:1d:b5:
7b:a6:c6:8b:3a:94:fb:2c:51:9e:b8:81:0d:8f:ed:7d:b6:d7:
2d:97:a6:05:14:b2:7c:66:1a:6f:ba:e5:ac:dd:98:0e:4a:68:
b3:fe:9a:a0:e8:c1:41:b5:c7:e3:50:ab:66:72:82:a4:9a:77:
bb:38:58:af:8e:f3:96:34:fd:cb:75:73:5a:d3:78:b2:4b:20:
ee:18:a8:0e:fd:dd:bc:9f:63:94:d4:4b:aa:f6:30:48:73:d6:
fb:a6:62:4a:11:43:7a:ff:98:23:45:7c:7e:68:f4:4f:7f:18:
7a:59:39:4e:22:8e:3a:53:e1:60:89:7d:c6:30:09:6d:ca:b4:
a4:ef:12:64:44:31:5b:33:69:99:74:49:bf:2f:81:84:00:61:
d5:a0:c0:2a:c6:47:c2:fa:24:c8:06:c0:c5:dc:99:50:5b:93:
7d:1e:ed:d1
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIdUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwMjdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDNDODdBMjFGNTc4Q0Yw
QjhGMjI3ODVCM0EzOTc1RjRERTU2NDY3RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQOiS9/9RFWZ9vdntFqN1ihBu8xgub/4psDawRiEStQME9OBzY
AG4ChuTa6Br7aC5qE1rOWSE6qyPfmEGLMPBy76r/k3Zpre99GbbLQuV9TekDDr3T
zPjnKuqJGu4nqNvupttG8VN6M0SyViSo7G1evTVrLT1xeo331gSa1UK9GPZaBIAq
tGAbkA7bDSRYxlnvM9H0gvCrE/GTgM8iuQ+0rP7nt+7FYGme1kPPUa8gDMNftizR
Wa4dWtA6rJWWjtNCV7n3VezAuugBaOk2MO2yfwHoVgBTE/NDPDVUN16ZpWfDB9l3
hdEKhIcWlq3NAeeHVZz1lrk90//vfZmtVPnFAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUPIeiH1eM8LjyJ4Wzo5dfTeVkZ/swHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1BJZWlIMWVNOExqeUo0V3pv
NWRmVGVWa1pfcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7
w/wwDQYJKoZIhvcNAQELBQADggEBAG6HWnKA18f5h2ADYFgnqKRk1NQMpLlDxYrb
wEhyh4EPYU7WUO/w58kErXN6XowmOYgj+1xwyFWFUmXno4VNQZdLaSrq7lYad4V3
jj3LPQWP1LQvWZNWo54dtXumxos6lPssUZ64gQ2P7X221y2XpgUUsnxmGm+65azd
mA5KaLP+mqDowUG1x+NQq2ZygqSad7s4WK+O85Y0/ct1c1rTeLJLIO4YqA793byf
Y5TUS6r2MEhz1vumYkoRQ3r/mCNFfH5o9E9/GHpZOU4ijjpT4WCJfcYwCW3KtKTv
EmREMVszaZl0Sb8vgYQAYdWgwCrGR8L6JMgGwMXcmVBbk30e7dE=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:26 2023 by rpki-client on console-ams.rpki-client.org