Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q5AvKNbLsdaa9LsROf4Wk5bgXE8.roa
File: Q5AvKNbLsdaa9LsROf4Wk5bgXE8.roa (raw, json)
Hash identifier: 9uHeGSZ0FU7Ux5aUxaT1XY/S67Vw+H0prB8hqDyBzWk=
Subject key identifier: 43:90:2F:28:D6:CB:B1:D6:9A:F4:BB:11:39:FE:16:93:96:E0:5C:4F
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20B6
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q5AvKNbLsdaa9LsROf4Wk5bgXE8.roa
Signing time: Fri 25 Nov 2022 04:39:01 +0000
ROA not before: Fri 25 Nov 2022 04:39:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.206.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8374 (0x20b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=43902F28D6CBB1D69AF4BB1139FE169396E05C4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:58:2d:a0:98:07:55:5e:e9:50:65:6d:7c:1a:
bf:38:2d:60:25:94:a3:95:d0:45:7b:1c:ad:5d:d3:
95:cb:7e:d4:e4:ea:23:24:14:ca:8f:3c:66:eb:d2:
cc:a2:66:e9:de:e9:a4:89:1d:73:2b:23:7b:a8:8d:
39:25:25:53:8d:43:40:ce:94:e5:7a:f2:b8:70:40:
07:ba:62:d8:bd:54:5b:15:fd:c5:88:e7:dc:52:41:
ce:1d:b6:73:87:e8:61:fd:b7:15:d4:f0:c0:e3:dd:
b2:3a:ae:77:54:ec:69:c0:3d:b1:15:05:bd:ce:86:
e8:3d:b5:8f:93:b9:18:8d:da:0a:dd:d9:4a:90:9e:
dd:94:25:37:8a:4f:88:1e:db:c6:65:91:1b:c5:11:
99:c9:f4:7b:8e:09:76:4e:a2:9a:19:cf:71:9c:fe:
a7:d9:2b:06:f2:9a:86:7a:9d:d7:e1:53:20:20:25:
2f:52:a4:5d:39:f4:95:ee:37:07:d3:81:d2:a4:ab:
37:f9:38:a4:2c:93:6f:9b:22:b1:55:63:4c:4f:5a:
3a:56:f3:a0:3e:02:b8:b6:52:e3:c0:18:10:fc:45:
00:96:7d:65:c7:9f:c7:8a:9a:5c:dc:61:f4:01:b2:
54:ae:15:a0:a1:81:a5:c2:f6:32:86:e4:3f:97:bd:
ea:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:90:2F:28:D6:CB:B1:D6:9A:F4:BB:11:39:FE:16:93:96:E0:5C:4F
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q5AvKNbLsdaa9LsROf4Wk5bgXE8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.206.0/23
Signature Algorithm: sha256WithRSAEncryption
39:43:2a:b7:e3:6d:02:49:f2:22:3a:ec:33:27:e9:c8:dc:4a:
54:9e:7b:22:78:c9:a6:bc:ca:b7:03:fc:19:8f:63:ef:7d:38:
aa:a2:15:a2:fe:c7:8b:25:f9:d7:9c:92:b7:6e:03:15:42:fc:
2a:2b:5f:a4:37:8f:b3:a6:28:99:72:69:c8:5e:d8:23:98:27:
fc:33:ac:6d:ec:c1:b9:82:89:aa:75:56:4a:e3:95:ee:13:09:
63:54:89:87:4c:e3:c6:4c:75:f2:d8:ce:df:61:46:80:c7:7e:
44:58:e4:27:30:be:88:d9:e1:20:ea:62:0b:fa:24:d6:69:4a:
69:4e:e0:27:7f:b1:ca:26:08:7a:00:be:a8:3c:6f:b8:8e:85:
c4:e1:d2:9d:b8:37:3c:35:88:73:31:78:08:06:72:f3:d0:60:
f3:83:73:a9:b1:54:8c:a3:d6:85:dc:08:c3:d6:65:02:df:f2:
67:02:98:48:e2:98:ff:db:f9:c3:67:c5:b6:46:63:98:0b:99:
72:63:b8:c8:6d:79:0f:17:e0:60:32:7c:1c:47:e9:2d:7e:2c:
9e:0e:9a:8f:2e:2d:fb:62:cf:14:10:66:39:1c:e4:62:07:e2:
fc:df:b0:0a:20:53:5a:ec:b4:22:88:2b:3a:7a:35:62:98:83:
29:df:29:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:27 2023 by rpki-client on console-ams.rpki-client.org