Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aPS9d2rk6Ypb9RWhiq-fB8Tv5ag.roa
File: aPS9d2rk6Ypb9RWhiq-fB8Tv5ag.roa (raw, json)
Hash identifier: wa+f1ZJBBeTRnci0+m8nvSrNzIabABTeP/4zfYrtIrw=
Subject key identifier: 68:F4:BD:77:6A:E4:E9:8A:5B:F5:15:A1:8A:AF:9F:07:C4:EF:E5:A8
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2041
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aPS9d2rk6Ypb9RWhiq-fB8Tv5ag.roa
Signing time: Fri 25 Nov 2022 04:38:30 +0000
ROA not before: Fri 25 Nov 2022 04:38:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.176.0/20 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8257 (0x2041)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=68F4BD776AE4E98A5BF515A18AAF9F07C4EFE5A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:2b:8c:3b:68:92:90:cf:05:dd:1e:55:9e:e1:
29:40:50:3c:73:b4:5a:b4:2f:17:ca:22:af:04:c6:
bc:92:70:86:3e:e3:1a:60:ef:3a:07:2b:7b:99:95:
aa:0c:39:9c:37:97:06:f8:99:9b:bc:70:c6:68:65:
d8:d4:a2:2f:af:cd:c7:38:b6:c5:96:bf:3e:47:32:
70:c7:52:63:b4:ac:8f:84:88:32:c7:1f:3b:90:bd:
35:9c:26:13:70:dc:8e:6d:d3:af:f4:0c:1e:f9:ca:
3c:9d:78:df:c5:e2:92:6f:85:5a:3d:35:52:47:b6:
5a:8d:07:84:d0:fd:f7:fd:df:14:0a:26:e2:f6:51:
b7:87:a9:c7:60:1e:8b:b2:e6:a2:45:aa:ba:4c:df:
d8:46:70:2a:bb:73:01:87:09:ed:58:ef:0d:a3:89:
fa:3a:eb:73:4d:1c:45:c2:a5:f7:73:ca:b2:1c:10:
ba:2f:f8:80:ec:12:15:26:58:34:3c:63:b9:6d:be:
64:f5:b5:e4:bd:12:a7:61:a1:80:61:3f:eb:9a:8d:
b5:18:20:ed:8a:5b:9a:ce:11:99:d6:aa:b4:ca:05:
73:cb:c4:fd:c9:39:15:ea:d6:9c:47:bb:c5:46:6a:
85:ce:b5:2c:bf:1b:83:cd:c8:9e:80:7e:23:a6:a4:
2d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:F4:BD:77:6A:E4:E9:8A:5B:F5:15:A1:8A:AF:9F:07:C4:EF:E5:A8
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aPS9d2rk6Ypb9RWhiq-fB8Tv5ag.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.176.0/20
Signature Algorithm: sha256WithRSAEncryption
07:bb:87:1d:53:99:b9:f1:5a:5a:4d:fa:f5:e5:1d:97:89:37:
94:23:b2:3e:82:f9:eb:16:f3:a7:ce:c0:8c:dc:dc:82:39:3f:
ab:b3:76:c0:c8:13:1f:1f:48:99:fc:a4:b9:f5:4b:11:31:29:
6f:bd:83:39:fe:7e:04:0d:67:db:58:b7:23:e2:e3:bf:c8:c9:
fb:06:1e:94:e7:73:66:2a:6a:54:45:8e:c8:19:e3:44:12:d8:
54:c4:81:ca:4b:0a:b3:e2:a8:2c:5e:f5:ba:9a:7a:c7:4a:55:
0e:97:ff:a5:9d:7a:1d:e0:a0:67:9f:24:56:ff:59:d5:7e:9a:
4b:0f:35:bb:c0:10:28:1e:0c:4e:ed:e8:e4:66:1d:83:fe:16:
27:d1:17:21:6c:e2:41:55:91:b1:a5:84:78:a3:fb:2c:2d:24:
4c:25:c7:d0:83:3d:51:98:a0:90:87:1b:8a:db:34:92:77:3c:
bb:9c:df:14:47:61:97:40:79:bf:2c:00:60:09:7c:b7:80:de:
0b:73:de:6e:04:74:20:c1:d3:b6:c2:9f:f3:ba:17:58:8a:e2:
c2:91:ab:bc:57:89:d9:48:28:71:dc:70:2c:fe:b4:24:7c:ce:
fa:85:12:92:7d:8c:7d:48:1e:3e:88:3f:70:16:73:8b:5f:ff:
29:96:7e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:30 2023 by rpki-client on console-ams.rpki-client.org