Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dabAWMJySXHrYlrX0kSvO8dXy0Q.roa
File: dabAWMJySXHrYlrX0kSvO8dXy0Q.roa (raw, json)
Hash identifier: XyuatkRuLJhHoRfgm+M4qNuoYEBXz82W67X7haAiha4=
Subject key identifier: 75:A6:C0:58:C2:72:49:71:EB:62:5A:D7:D2:44:AF:3B:C7:57:CB:44
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 22FC
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dabAWMJySXHrYlrX0kSvO8dXy0Q.roa
Signing time: Fri 25 Nov 2022 04:41:53 +0000
ROA not before: Fri 25 Nov 2022 04:41:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 45.64.29.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8956 (0x22fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=75A6C058C2724971EB625AD7D244AF3BC757CB44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:fe:f8:9c:a5:d8:1a:c5:4f:c4:5e:01:c8:74:
7c:01:06:34:19:32:4b:f6:68:be:26:dd:77:03:ec:
78:5e:71:16:89:e2:6d:db:33:5b:f7:44:7c:c4:6f:
8f:5f:f2:36:25:ae:8e:d8:19:ea:ed:4b:92:b3:57:
af:6f:3a:c5:e7:48:83:18:bd:e2:be:d8:a4:f1:2b:
a8:6b:a6:26:df:4d:ee:0b:26:d7:ad:30:27:f3:5f:
0a:41:45:94:48:a3:5d:d8:c2:6d:e5:7d:9f:82:10:
ed:ba:dc:a8:4c:c9:c5:b6:12:19:bc:57:e9:39:90:
26:87:c8:ae:4c:86:69:0f:eb:a4:13:bb:2e:df:a5:
3a:4d:0a:c0:10:57:20:1a:46:36:5c:e6:2c:4a:ad:
80:8d:c1:15:33:93:55:74:a9:06:bb:4f:55:77:09:
84:17:bb:03:76:7a:10:a6:02:aa:cc:7c:0d:61:49:
05:67:6b:b0:0a:dd:af:e3:98:38:34:77:94:1d:c0:
b1:b2:c4:8f:48:70:aa:9c:70:5d:f8:b6:84:a8:71:
7a:08:5c:0f:10:d3:62:59:19:93:2d:20:fb:81:f1:
4d:5e:db:92:8e:ea:49:06:00:cd:b5:e0:81:48:1f:
81:0b:80:71:51:45:31:b5:9c:04:5b:99:a1:76:c4:
92:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A6:C0:58:C2:72:49:71:EB:62:5A:D7:D2:44:AF:3B:C7:57:CB:44
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dabAWMJySXHrYlrX0kSvO8dXy0Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.29.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:81:83:3b:db:d9:cf:c5:32:c9:91:a8:db:4b:6d:44:4a:04:
f3:c5:10:e6:a3:be:b7:da:90:24:78:7c:14:c2:a7:44:3a:c3:
66:cc:cd:52:30:c6:92:de:45:47:84:52:32:97:93:fb:8f:68:
c5:de:8f:66:1f:ff:5e:cd:23:e5:20:2b:42:55:b2:ad:dc:84:
04:e2:9b:a8:40:e1:98:07:ea:47:c3:53:f3:4b:d8:ff:ec:ef:
fd:25:20:ff:a8:9d:a2:45:d4:4d:84:68:05:49:ea:6c:87:89:
0c:d9:c7:b2:f1:17:f4:c7:2d:68:41:73:1a:35:70:7e:82:90:
ef:ff:a1:b8:43:05:e5:9a:42:d0:0c:3d:31:62:d1:2b:59:e8:
0c:91:af:30:44:56:80:15:51:4f:b7:ab:27:58:d6:a2:0f:91:
7b:0f:de:97:6b:9b:f5:5c:39:61:03:d3:e8:ab:6d:27:c8:2e:
6f:c4:8c:ec:9a:35:b9:56:f6:a5:e0:28:a1:ca:40:5f:3c:ef:
d2:1e:6c:70:93:4f:cd:24:bb:f8:b3:1b:fe:46:61:cc:fa:ed:
3f:e3:41:c3:88:85:90:b4:82:d3:34:92:a6:a8:1f:45:3e:f0:
ac:8f:4a:6b:89:37:69:41:73:00:63:5b:e0:ae:ff:bd:c6:7c:
ae:f1:4d:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:08 2023 by rpki-client on console-fra.rpki-client.org