Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Po8n24kHyQbxoLdIj9vwo4Fej5k.roa
File: Po8n24kHyQbxoLdIj9vwo4Fej5k.roa (raw, json)
Hash identifier: soXRf4JIoh93kt0r7TmZ2CUoUudvblJhafT7CBR4JLM=
Subject key identifier: 3E:8F:27:DB:89:07:C9:06:F1:A0:B7:48:8F:DB:F0:A3:81:5E:8F:99
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2089
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Po8n24kHyQbxoLdIj9vwo4Fej5k.roa
Signing time: Fri 25 Nov 2022 04:38:51 +0000
ROA not before: Fri 25 Nov 2022 04:38:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.104.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8329 (0x2089)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3E8F27DB8907C906F1A0B7488FDBF0A3815E8F99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:37:36:68:75:9c:95:4d:09:d5:cf:a6:04:0e:
83:5a:b6:3f:7d:23:68:3f:d8:2d:6a:f7:82:d3:eb:
5d:d7:af:04:bb:8c:38:32:14:a5:40:ef:b7:af:ee:
8f:d3:19:70:c5:ba:76:80:c6:7a:7b:69:e7:56:d6:
f0:6b:7e:c6:18:74:48:0d:75:b9:d8:cd:27:7c:be:
07:e8:d0:5a:9c:91:ae:58:8f:1c:f1:59:e4:31:a1:
c4:b2:46:51:d9:7c:53:f1:40:26:98:56:60:e9:77:
7b:54:da:c6:24:32:85:3d:01:e9:64:00:80:ac:94:
aa:95:fb:31:f6:5e:fb:24:63:f4:1e:92:0f:a4:47:
ca:d6:f7:6f:8b:8a:05:57:6b:96:c9:e2:f9:bf:0c:
13:dc:fd:59:d4:64:2b:95:21:57:ab:cf:dd:5e:23:
87:60:ce:53:dd:17:2c:71:a5:80:2a:2b:c1:b4:34:
53:54:46:f8:d0:e4:3c:86:84:5c:c2:dc:ce:fc:79:
79:a8:b3:0f:a6:f9:d7:98:31:f8:8e:4d:4d:88:54:
e5:fa:f6:c5:48:e5:b1:96:3d:ff:ed:e8:4d:cd:ff:
f1:33:be:60:06:62:6f:55:5a:cc:9d:4c:4e:0a:51:
e0:ef:56:68:b2:a0:03:ef:8a:ae:f5:6c:4b:f2:f4:
00:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:8F:27:DB:89:07:C9:06:F1:A0:B7:48:8F:DB:F0:A3:81:5E:8F:99
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Po8n24kHyQbxoLdIj9vwo4Fej5k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.104.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:d0:f1:44:e7:5e:4c:28:a3:59:4e:ae:29:d9:23:80:89:e9:
9e:66:3b:fc:48:be:e1:ea:9f:97:6b:12:a0:64:1f:71:77:b8:
c7:e6:b6:84:49:6a:cf:50:79:71:05:02:06:05:89:85:c8:cb:
c3:bb:e4:4e:d5:d2:b7:7c:bc:31:db:f5:dd:71:bc:ab:a1:4e:
82:e8:e6:c2:1d:fa:db:df:b6:8d:75:5f:95:1d:cd:53:25:31:
67:4c:0d:09:d8:7f:45:b4:2c:0b:c0:fe:06:f5:30:ce:92:5b:
2e:25:72:07:50:55:75:55:00:59:30:66:77:23:d9:50:2f:9c:
2e:0d:5a:1f:bd:2c:ef:18:79:26:8c:a7:6c:c0:f8:1b:98:bb:
37:1a:6a:8a:88:31:17:71:2b:74:e1:ef:ed:ff:b6:fe:d5:67:
e0:05:3a:42:98:45:15:99:4d:97:c8:8e:b9:43:27:ef:fb:de:
22:11:92:99:c6:79:68:9d:04:0a:fe:e1:09:b2:7f:f2:4e:3f:
d8:c7:98:d3:d0:a8:2d:4c:f2:c6:33:2a:55:68:8e:f4:0e:aa:
97:d7:ab:f3:b4:17:07:e0:4b:40:d5:80:2d:d9:13:4c:1c:ff:
ff:9b:80:db:f2:d7:fa:66:bb:ed:2d:8c:0d:02:1b:87:84:e1:
16:0d:8d:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:26 2023 by rpki-client on console-ams.rpki-client.org