Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/g69jVxIOxx9lBvGvmLE9IfZQ-Us.roa
File: g69jVxIOxx9lBvGvmLE9IfZQ-Us.roa (raw, json)
Hash identifier: /QyihxYObSU1zWPKdbj/Ba2Wb6G1pCDJC88uwqaf0MA=
Subject key identifier: 83:AF:63:57:12:0E:C7:1F:65:06:F1:AF:98:B1:3D:21:F6:50:F9:4B
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 232A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/g69jVxIOxx9lBvGvmLE9IfZQ-Us.roa
Signing time: Fri 25 Nov 2022 04:42:08 +0000
ROA not before: Fri 25 Nov 2022 04:42:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.180.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9002 (0x232a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:42:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=83AF6357120EC71F6506F1AF98B13D21F650F94B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bb:2d:57:a3:c7:51:37:38:08:fb:e2:bf:97:
d6:92:c1:d6:87:d7:e9:fb:83:2c:d4:db:6f:c3:34:
35:07:30:93:0c:3d:f9:a0:29:cd:02:b5:e4:ad:22:
02:83:5c:f6:b4:89:9e:44:17:f2:d0:2d:13:61:1f:
62:4a:e5:5f:8c:bb:3d:c3:3b:a9:27:90:bd:62:c1:
da:2b:e6:3c:75:23:7f:76:24:c2:a9:62:1c:7f:57:
10:f6:dd:3a:2e:b0:5a:8d:d9:82:6d:33:bd:69:0f:
cc:80:46:3c:0e:74:21:71:3e:7d:3b:04:1d:05:0d:
b7:4b:1d:e7:9d:c5:1f:02:b6:80:24:70:ca:36:86:
18:96:fb:7b:b9:53:e1:43:29:95:95:09:4b:33:f0:
c9:ba:2f:72:56:da:42:f3:68:2b:3e:89:3b:3e:d9:
bb:77:e3:c1:54:18:9f:22:9c:ee:13:82:13:a6:ce:
12:11:27:25:c6:cb:d1:e1:41:d9:8d:d3:f7:8e:1e:
5a:83:24:42:70:6d:e7:55:9f:54:18:f7:15:46:f6:
ec:dc:37:a4:2f:b7:9f:2c:2c:27:b3:e0:b2:6c:18:
16:e1:1d:61:06:69:ec:4d:b1:c6:ed:45:36:41:c8:
fa:8a:f4:68:d6:78:e5:d2:b7:63:4f:bd:2c:51:db:
74:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:AF:63:57:12:0E:C7:1F:65:06:F1:AF:98:B1:3D:21:F6:50:F9:4B
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/g69jVxIOxx9lBvGvmLE9IfZQ-Us.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.180.0/22
Signature Algorithm: sha256WithRSAEncryption
29:88:4b:98:50:9b:ea:12:10:bf:91:ba:13:f0:33:b7:26:c6:
02:1a:8f:23:cc:d8:5e:c1:9d:8e:cf:ea:8e:9a:2b:3a:95:f0:
96:0f:8e:e0:6f:7f:55:38:3f:94:96:fd:d2:0a:6d:59:b1:78:
83:2b:b8:17:e2:8f:8a:40:29:52:87:90:ae:1b:9b:31:08:89:
dc:66:66:2c:b3:97:b9:08:40:23:74:1f:e9:3c:b8:c6:a1:58:
e9:88:2d:60:28:f5:47:50:82:90:2e:a6:57:bc:09:91:62:88:
f1:50:d3:28:bd:08:b4:ee:70:3e:c7:05:19:f9:8e:f5:f4:2a:
cf:18:8e:2f:08:f7:66:81:3c:a4:f3:bf:da:f1:ee:90:e1:89:
dd:a4:1d:fd:ae:6f:67:43:1d:c1:01:11:03:f8:47:b2:e9:42:
31:e0:c9:f0:a6:df:4b:10:b4:bc:4a:99:85:c3:7c:56:9e:b8:
3c:d4:46:76:f1:b4:c2:69:9d:a7:ac:af:c4:4a:2c:27:bf:0d:
bc:2d:f0:63:53:fa:dc:15:96:90:9a:44:06:4a:9b:06:de:70:
39:c6:6a:9d:c5:94:2d:f1:61:18:af:14:33:db:9b:e7:02:ef:
27:da:08:19:d2:2c:26:78:6d:c7:ef:46:3d:66:a6:59:4d:fc:
9c:53:f7:ee
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIyowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQyMDhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDgzQUY2MzU3MTIwRUM3
MUY2NTA2RjFBRjk4QjEzRDIxRjY1MEY5NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBuy1Xo8dRNzgI++K/l9aSwdaH1+n7gyzU22/DNDUHMJMMPfmg
Kc0CteStIgKDXPa0iZ5EF/LQLRNhH2JK5V+Muz3DO6knkL1iwdor5jx1I392JMKp
Yhx/VxD23TousFqN2YJtM71pD8yARjwOdCFxPn07BB0FDbdLHeedxR8CtoAkcMo2
hhiW+3u5U+FDKZWVCUsz8Mm6L3JW2kLzaCs+iTs+2bt348FUGJ8inO4TghOmzhIR
JyXGy9HhQdmN0/eOHlqDJEJwbedVn1QY9xVG9uzcN6Qvt58sLCez4LJsGBbhHWEG
aexNscbtRTZByPqK9GjWeOXSt2NPvSxR23QNAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUg69jVxIOxx9lBvGvmLE9IfZQ+UswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2c2OWpWeElPeHg5bEJ2R3Zt
TEU5SWZaUS1Vcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq
AbQwDQYJKoZIhvcNAQELBQADggEBACmIS5hQm+oSEL+RuhPwM7cmxgIajyPM2F7B
nY7P6o6aKzqV8JYPjuBvf1U4P5SW/dIKbVmxeIMruBfij4pAKVKHkK4bmzEIidxm
Ziyzl7kIQCN0H+k8uMahWOmILWAo9UdQgpAuple8CZFiiPFQ0yi9CLTucD7HBRn5
jvX0Ks8Yji8I92aBPKTzv9rx7pDhid2kHf2ub2dDHcEBEQP4R7LpQjHgyfCm30sQ
tLxKmYXDfFaeuDzURnbxtMJpnaesr8RKLCe/Dbwt8GNT+twVlpCaRAZKmwbecDnG
ap3FlC3xYRivFDPbm+cC7yfaCBnSLCZ4bcfvRj1mpllN/JxT9+4=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:08 2023 by rpki-client on console-fra.rpki-client.org