Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cPSeVQ1CGqXBqWk1u1eG_swBpYw.roa
File: cPSeVQ1CGqXBqWk1u1eG_swBpYw.roa (raw, json)
Hash identifier: X2YCdxpYiSLSNVy4V56ybmuMbprpV5Cgj+PCir7snX8=
Subject key identifier: 70:F4:9E:55:0D:42:1A:A5:C1:A9:69:35:BB:57:86:FE:CC:01:A5:8C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cPSeVQ1CGqXBqWk1u1eG_swBpYw.roa
Signing time: Thu 15 Sep 2022 02:54:03 +0000
ROA not before: Thu 15 Sep 2022 02:54:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.128.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:54:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=70F49E550D421AA5C1A96935BB5786FECC01A58C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:43:60:5c:d4:04:dc:e7:5e:7b:48:d8:65:f2:
15:31:df:8d:30:e0:a4:b1:18:f7:5f:bf:5e:50:0a:
02:27:3b:c1:fd:91:22:91:ef:b0:f7:31:0a:3a:44:
5d:0d:e5:76:31:1b:88:39:ef:14:2b:18:d9:35:ca:
25:09:9c:f3:bb:35:d7:30:66:ad:e1:d7:23:47:db:
ab:cd:ad:9a:b9:97:75:1b:d6:05:85:8c:61:32:95:
47:cb:e6:6c:55:43:3c:0b:4a:64:f0:49:c0:50:4e:
6f:66:c9:22:ec:37:a8:24:47:41:a6:98:fe:8c:7d:
48:d2:45:6f:9e:68:8c:5d:76:cd:a9:9f:35:45:24:
85:59:dc:c6:2c:5f:b3:01:0e:2e:a0:8a:be:ce:7b:
f9:49:e9:4d:f9:a3:85:b9:4c:61:cb:7f:2b:cd:d9:
4c:db:f5:43:c0:a6:f4:ea:a3:54:a1:ba:2d:56:ca:
0e:4b:89:6d:be:f2:82:9a:6a:ff:25:2a:9e:94:f6:
71:f3:16:96:ee:76:55:bf:82:f5:3d:28:9a:5b:aa:
10:15:db:29:75:49:b3:a1:5f:65:3d:59:5e:97:33:
39:0a:77:8b:22:a0:93:d2:99:42:98:43:aa:c0:e3:
b9:b2:da:a7:0e:b2:5d:ec:31:ec:0f:91:4e:63:c5:
03:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:F4:9E:55:0D:42:1A:A5:C1:A9:69:35:BB:57:86:FE:CC:01:A5:8C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cPSeVQ1CGqXBqWk1u1eG_swBpYw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.128.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:26:a1:89:5c:a5:9c:c2:93:26:ea:a0:15:9a:99:8a:0e:ab:
ba:d0:05:6b:35:60:78:8e:f4:99:74:d1:48:1f:2b:79:a4:b4:
b7:94:45:1f:95:e4:7a:f4:6d:ca:a2:df:ac:4f:9f:58:c9:85:
ec:83:70:fd:b4:9e:22:3d:0b:d0:b4:9c:18:70:52:bb:d2:f6:
8d:d6:f3:30:4e:e1:87:a7:64:73:3f:3b:6e:9e:87:c9:be:a3:
3a:d8:54:1d:7e:fe:e4:4b:84:35:9a:79:54:c0:7c:9f:68:64:
16:ab:cc:8f:57:f6:58:6f:0d:4c:62:d4:ab:5a:38:0c:53:d0:
0a:06:e4:09:d3:99:61:85:cc:03:7d:99:49:90:3c:0e:91:ab:
9f:6b:ba:a4:61:50:9c:b1:35:ab:2a:6d:12:0e:25:a3:bd:1d:
30:89:86:64:cb:1c:a0:f5:85:81:c9:3f:6d:44:eb:8b:0c:e8:
8f:e2:c6:9b:11:14:8e:a3:9f:12:3e:00:70:fb:00:a4:df:cd:
0f:ea:e8:d2:03:5f:11:44:a4:57:88:9e:a3:aa:c8:f0:a6:1c:
66:eb:3d:d3:53:26:b3:c4:d2:02:f5:ca:ac:d1:13:35:8f:1a:
ba:be:18:89:61:cf:88:ed:c2:84:15:f5:bd:f7:c5:65:cf:13:
be:4c:f1:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:36 2023 by rpki-client on console-fra.rpki-client.org