Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QN5PBwnAAqIUCxmZlkaxsb4wQRw.roa
File: QN5PBwnAAqIUCxmZlkaxsb4wQRw.roa (raw, json)
Hash identifier: cGZ1NAxnVU7mbFKpg/FMLHP43UKvgcV4mp1r5BWki4k=
Subject key identifier: 40:DE:4F:07:09:C0:02:A2:14:0B:19:99:96:46:B1:B1:BE:30:41:1C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QN5PBwnAAqIUCxmZlkaxsb4wQRw.roa
Signing time: Thu 15 Sep 2022 02:53:38 +0000
ROA not before: Thu 15 Sep 2022 02:53:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.240.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=40DE4F0709C002A2140B19999646B1B1BE30411C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:5f:89:33:50:d2:d3:d5:7e:2f:5f:35:a1:09:
70:7d:c4:9e:10:92:ec:9c:f6:2e:27:df:9f:b9:a9:
02:fb:bb:a0:10:01:a0:14:8d:87:4e:29:e1:1c:02:
3b:bb:70:1c:0b:13:f2:55:45:fd:48:98:32:07:51:
87:4a:a7:47:7c:6b:3f:ee:d1:d8:2c:2f:f5:17:f7:
9f:14:0b:93:c6:92:f7:aa:aa:99:09:07:41:d0:6b:
6e:dd:10:6e:e2:63:59:2d:52:b7:52:d1:5d:4d:d4:
1d:c9:6e:94:79:7e:77:40:e8:f7:fb:dc:f4:f4:b2:
df:a3:ac:f5:b0:eb:cc:a8:2b:21:cc:2a:7d:c4:cd:
ef:50:e5:be:72:6b:c7:8e:bb:a4:05:a4:b9:b8:8a:
36:58:6a:58:61:9f:b9:7c:a6:7d:5d:9f:08:94:c0:
1b:e2:01:3c:6d:b5:e1:aa:2d:ac:7b:7a:44:40:b6:
98:a3:6b:83:65:b2:61:01:39:3f:f5:25:1b:90:01:
25:39:e3:8a:30:59:99:d5:4a:f6:c6:b4:4b:3d:ff:
0b:22:0d:49:59:19:5d:99:1e:17:5b:97:b3:e1:b6:
46:aa:48:5d:12:f5:9d:fa:75:85:ed:50:1a:ff:c4:
b7:b9:8b:89:f6:62:9f:d7:5b:25:0c:3d:69:63:01:
a1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:DE:4F:07:09:C0:02:A2:14:0B:19:99:96:46:B1:B1:BE:30:41:1C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QN5PBwnAAqIUCxmZlkaxsb4wQRw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.240.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:d9:7b:6d:7c:de:99:f2:be:0a:af:13:ab:31:c9:8f:8b:ec:
4c:e4:f2:59:c5:9f:b6:8e:ce:31:fe:d4:fb:9c:fa:e2:84:9c:
a6:24:e3:a3:de:f9:54:63:48:e5:dc:9c:4d:e6:41:7e:a5:dd:
55:48:68:f9:d3:76:37:a6:15:5a:49:eb:d5:13:59:20:16:27:
2b:38:8f:c6:2a:a1:2b:59:22:1f:b4:51:e4:88:87:44:22:f9:
0a:84:0e:1d:ac:5a:5a:f7:7c:a4:f3:b5:9a:26:79:5f:c8:75:
9a:f2:5b:af:18:a5:61:c8:8b:05:0a:c4:f0:79:3a:0e:2f:a2:
b6:7b:06:92:06:e9:5b:87:7c:f1:09:0b:06:e1:8f:21:46:5d:
bb:4b:05:1e:4d:00:09:c1:87:79:1e:08:f5:b2:09:a1:63:25:
97:0a:47:8c:4a:fa:e3:ec:e0:8b:7f:e2:c5:95:3c:48:ec:57:
eb:52:2b:93:ad:19:8b:45:f2:38:81:92:65:25:ce:5b:c7:0d:
5b:ea:eb:80:bd:cb:87:a1:61:73:2c:85:18:67:a0:d7:16:98:
88:37:19:38:7e:90:43:5d:53:06:3e:63:b5:07:8f:5b:1d:cf:
75:8b:7f:f9:64:24:6a:2f:c4:df:31:d0:17:ee:73:bb:4b:39:
c1:aa:3e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:18 2023 by rpki-client on console-ams.rpki-client.org