Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/caEmwOxydsFtmQICtKMvPJxFy-I.roa
File: caEmwOxydsFtmQICtKMvPJxFy-I.roa (raw, json)
Hash identifier: 2rGFwRmWZuPpek1K1w5vzlmTBTdPWf4ivu8aFKR9vVg=
Subject key identifier: 71:A1:26:C0:EC:72:76:C1:6D:99:02:02:B4:A3:2F:3C:9C:45:CB:E2
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22B8
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/caEmwOxydsFtmQICtKMvPJxFy-I.roa
Signing time: Fri 25 Nov 2022 04:41:34 +0000
ROA not before: Fri 25 Nov 2022 04:41:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.220.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8888 (0x22b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=71A126C0EC7276C16D990202B4A32F3C9C45CBE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:39:3b:20:b6:e1:ba:7c:95:7e:f3:5a:6e:f4:
b1:eb:3f:6a:55:55:40:f9:64:e4:ee:79:56:3f:db:
9d:c0:30:de:4a:88:8d:d8:1a:c2:5d:52:f9:d1:4d:
b3:ee:d9:7d:53:99:51:32:13:30:d3:14:e8:97:18:
cc:dd:6d:ef:ff:85:fa:d0:3d:d8:4e:df:11:e7:17:
81:19:67:17:45:cc:03:2a:36:77:c5:a7:07:ba:df:
5c:3c:51:dc:3e:27:62:ae:5c:d3:39:e7:40:e6:1b:
12:b1:12:78:ad:44:34:64:e9:70:ce:c1:a6:f3:63:
25:38:24:71:7f:e9:de:55:a5:45:bd:1c:18:ad:70:
fc:43:38:68:a4:8f:52:6f:16:b9:2e:7a:01:21:85:
9e:86:c4:60:0e:81:a4:83:51:11:9e:f2:07:4e:ca:
0d:05:a6:ca:83:d3:d4:2d:fd:55:38:08:cb:93:55:
8a:1c:04:00:71:9c:f5:45:40:54:df:fc:9f:05:c0:
1a:67:51:db:60:b4:f3:2a:37:f1:ea:6c:c1:41:13:
ec:f2:f4:69:e1:7f:d7:99:f7:40:73:b6:cd:13:38:
24:78:c6:e1:86:be:b0:ca:e5:dc:70:78:ab:af:04:
db:95:0a:f1:47:cb:58:0a:cf:bc:4b:bb:c6:32:71:
f8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A1:26:C0:EC:72:76:C1:6D:99:02:02:B4:A3:2F:3C:9C:45:CB:E2
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/caEmwOxydsFtmQICtKMvPJxFy-I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.220.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:99:28:34:72:41:9e:cd:62:da:1a:39:05:3c:1e:6b:ec:e3:
70:d7:90:26:31:bc:91:6b:6b:6e:4f:6d:26:e4:e4:e5:ef:b6:
b1:f9:b3:26:46:13:6c:6e:81:6d:9f:5b:e3:44:d7:93:3a:f4:
27:05:37:97:aa:17:e0:0c:36:ed:78:68:00:b0:b2:bc:17:ed:
32:66:45:e7:89:8e:d2:d3:12:f8:4a:bd:a2:c9:5c:5f:45:44:
6c:ac:fa:c3:d0:76:10:3c:4b:31:c5:0f:34:06:c4:36:ca:46:
38:2c:ce:a0:5f:e8:e2:49:63:66:e3:0f:06:08:ef:90:a5:79:
79:91:24:59:4c:e4:59:56:dc:7d:46:6e:47:c4:f4:3c:7d:b7:
60:fe:73:ff:ba:e2:1d:79:68:8b:b9:b0:94:e4:a9:aa:76:4d:
78:36:ea:ca:6d:73:b1:a9:ba:22:15:9b:cc:e0:53:7a:9c:9d:
1f:c4:0b:a8:eb:83:05:91:ed:6a:66:01:a2:d2:ad:f2:ea:a2:
51:50:2e:a6:1e:dd:16:1d:09:a8:4e:b3:90:bd:6c:90:78:2d:
c6:4a:1f:e7:1b:d7:84:f0:45:59:df:2d:4c:ee:7d:f8:1f:2b:
bc:1b:00:e3:1c:cb:1c:c4:f7:ba:8d:c5:93:34:3b:05:61:e5:
93:b2:7c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:07 2023 by rpki-client on console-fra.rpki-client.org