Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bkPpEmqalRoEQSmx-1fJFLxGvLk.roa
File: bkPpEmqalRoEQSmx-1fJFLxGvLk.roa (raw, json)
Hash identifier: uq8zEM+Fj1dRwYrCm3M5OffaonyAYsUpn/UIIduWFz4=
Subject key identifier: 6E:43:E9:12:6A:9A:95:1A:04:41:29:B1:FB:57:C9:14:BC:46:BC:B9
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2193
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bkPpEmqalRoEQSmx-1fJFLxGvLk.roa
Signing time: Fri 25 Nov 2022 04:40:05 +0000
ROA not before: Fri 25 Nov 2022 04:40:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.120.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8595 (0x2193)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:05 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6E43E9126A9A951A044129B1FB57C914BC46BCB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7f:8c:d4:27:84:87:ba:78:16:cb:a6:2e:40:
f4:e0:35:98:a8:26:0d:85:f5:3d:89:c1:12:40:f1:
62:d6:bc:20:23:ec:b7:65:97:b4:df:b1:bc:28:5a:
57:5a:9b:f9:ec:1b:16:bf:73:ea:ee:da:25:af:dd:
81:17:68:6b:12:fb:7f:d4:1a:77:1b:59:70:88:3a:
b4:7c:c4:34:55:8b:3d:9c:85:17:66:8d:36:4e:53:
09:63:70:a6:03:60:fd:38:25:7f:09:56:76:fc:29:
45:8b:bb:65:18:ef:01:49:9e:e8:7d:e8:63:55:44:
dc:03:b6:49:e0:e6:44:3d:23:92:82:2a:6f:c4:d8:
8d:eb:b8:74:da:bb:d0:4c:13:3d:7b:de:04:1e:a9:
cf:97:6a:05:e0:7a:43:f7:83:df:73:a0:fe:3b:73:
35:13:8f:89:67:50:65:8d:68:dd:6b:04:5e:ce:2e:
92:5a:ee:ea:e1:3f:c3:93:39:23:1e:01:be:2f:f0:
92:c0:86:bf:58:b9:5a:22:d5:a1:30:e6:4f:f8:46:
56:4f:8c:81:95:e8:1d:a7:ea:30:d5:a7:11:89:6b:
46:48:0f:0b:96:82:8b:a2:71:e5:f8:1b:a6:ca:c8:
ca:02:18:13:21:61:f0:0e:d5:e6:23:6b:6b:72:48:
80:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:43:E9:12:6A:9A:95:1A:04:41:29:B1:FB:57:C9:14:BC:46:BC:B9
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bkPpEmqalRoEQSmx-1fJFLxGvLk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.120.0/21
Signature Algorithm: sha256WithRSAEncryption
51:04:0d:59:9f:c8:9a:de:4e:f9:87:89:0a:19:5f:bd:47:a4:
a0:99:20:b1:75:2a:ba:8c:77:5d:88:30:56:d4:1f:3e:51:45:
cc:82:42:88:33:4e:e6:78:98:d1:fc:15:b4:54:0c:f2:c8:9b:
7f:0a:51:5a:cc:33:94:f7:bd:d7:5a:1b:a7:c5:86:8d:9a:65:
ef:f6:b6:e1:82:73:08:6c:39:09:03:c8:96:fe:8d:72:0d:1c:
24:9b:eb:81:c4:5e:47:b2:04:e4:b6:fe:b3:99:5f:89:94:33:
e6:8e:29:90:06:ce:52:5b:a3:29:ee:62:18:71:28:67:85:8f:
30:41:63:52:99:58:31:6b:09:43:55:18:9f:20:9c:c8:87:e9:
fb:ca:21:f2:df:9c:03:58:9f:3c:79:10:39:58:a0:90:f7:ea:
66:e9:89:b5:9a:aa:f0:bc:82:a0:2e:70:ba:a3:7e:5b:ba:de:
59:48:6f:f1:84:32:97:85:0b:50:73:17:7f:5b:23:a3:c8:8f:
b2:d8:6a:49:52:7d:59:3f:42:b4:ae:a2:31:e7:b8:e2:fc:9b:
44:56:db:1f:0e:e7:61:0f:c0:29:42:27:f1:11:55:8b:b9:d4:
30:41:3f:2c:5a:b0:a8:35:70:60:85:d1:da:c5:96:6b:66:f7:
e3:e6:a4:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:07 2023 by rpki-client on console-fra.rpki-client.org