Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Z31bDywgFE6nmCpPSKAflJNZOPs.roa
File: Z31bDywgFE6nmCpPSKAflJNZOPs.roa (raw, json)
Hash identifier: 6n6saO59/4lgSuA869iVTejY/kmAZXghzwey+hBztXg=
Subject key identifier: 67:7D:5B:0F:2C:20:14:4E:A7:98:2A:4F:48:A0:1F:94:93:59:38:FB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Z31bDywgFE6nmCpPSKAflJNZOPs.roa
Signing time: Thu 15 Sep 2022 02:44:50 +0000
ROA not before: Thu 15 Sep 2022 02:44:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.182.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:44:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=677D5B0F2C20144EA7982A4F48A01F94935938FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:2f:84:b8:95:11:69:4d:fc:28:d8:92:6b:8e:
32:55:f4:c1:f8:3c:0b:ba:7f:32:dd:a8:bc:76:f4:
71:eb:9f:f9:9e:7c:38:d5:a4:4d:c9:ba:07:a8:4e:
a5:a4:31:06:0f:67:03:14:11:94:82:a9:c7:11:20:
c8:48:29:45:db:bf:b7:67:63:a9:4a:c2:4d:a7:6d:
80:e5:33:b6:f7:17:23:62:f5:87:35:d4:9c:5c:80:
71:a1:3d:32:ec:3e:39:05:48:4b:a4:b0:8e:ed:43:
28:81:c1:f7:7e:2e:e1:ff:ea:ed:d2:bb:ad:5a:ed:
04:0b:81:03:28:32:95:56:dc:04:a1:74:cf:76:bd:
0a:fe:0e:b0:d8:bc:9d:77:13:9f:db:9d:f1:9a:60:
4b:e9:4a:87:23:a2:e8:5b:ff:a9:9f:f9:e7:f6:3a:
29:54:38:dd:c6:28:20:ba:7e:3e:ff:ab:1a:5b:49:
f0:9c:b5:85:aa:2f:31:b8:e0:e6:90:76:1e:60:e5:
81:08:cf:31:05:55:55:af:dc:f0:ad:ad:51:a2:01:
3f:21:bf:3d:56:04:f7:15:89:e1:d9:6d:0e:03:23:
27:69:2d:59:89:36:d2:74:4e:5d:97:ae:01:6f:32:
6a:ea:89:40:1e:95:82:fe:36:e6:1d:4b:b0:4b:41:
c9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:7D:5B:0F:2C:20:14:4E:A7:98:2A:4F:48:A0:1F:94:93:59:38:FB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Z31bDywgFE6nmCpPSKAflJNZOPs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.182.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:75:b4:c6:8f:27:5a:f2:23:72:99:04:89:87:2b:fd:86:0b:
5a:98:57:6a:2a:79:ec:15:cb:af:fb:a2:c1:87:7f:69:3b:bf:
89:d0:a6:63:10:d7:dc:b0:40:fe:57:28:2f:6c:bb:6b:b2:cd:
be:fb:40:b2:c9:77:41:f7:b3:2f:7c:ab:d9:84:d6:73:5a:8d:
e5:9b:4c:67:bf:d9:c8:22:c2:f2:6b:a0:86:8c:ed:e5:2f:36:
6e:1c:86:81:d0:cc:0d:c3:d2:6b:4f:07:f2:56:8a:53:15:1b:
89:21:66:61:30:27:d5:8d:f2:84:eb:f0:84:15:71:61:48:b4:
72:a7:e8:af:53:a0:3f:27:07:04:79:49:e6:46:86:3d:19:57:
52:1f:e0:50:fd:87:34:07:cc:ff:4f:d0:96:73:3d:64:2e:90:
da:e7:74:a8:aa:21:f4:0d:73:1f:98:5f:bc:5c:ab:3e:21:bf:
6d:21:e2:f3:d4:f4:3b:e5:02:06:a9:35:66:a0:d1:11:2a:4a:
80:1f:56:de:95:d2:bd:35:89:fe:55:89:e8:d6:b9:10:fc:0f:
ae:77:4e:86:f9:95:44:11:65:6b:d1:97:b8:fe:b5:fe:f1:93:
08:fb:a0:33:3e:7d:eb:09:bf:79:b5:0e:dd:66:31:ee:78:fa:
3c:32:15:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:34 2023 by rpki-client on console-fra.rpki-client.org