Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ge4xuygB-haUHZR36768VO8FBPc.roa
File: ge4xuygB-haUHZR36768VO8FBPc.roa (raw, json)
Hash identifier: fXaODeZM4g2INA28t/Bl0e+3TOyCI+JxewU4+G5geQw=
Subject key identifier: 81:EE:31:BB:28:01:FA:16:94:1D:94:77:EB:BE:BC:54:EF:05:04:F7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ge4xuygB-haUHZR36768VO8FBPc.roa
Signing time: Thu 15 Sep 2022 02:53:53 +0000
ROA not before: Thu 15 Sep 2022 02:53:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.194.152.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:53:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=81EE31BB2801FA16941D9477EBBEBC54EF0504F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4b:c6:42:5e:5b:90:e1:48:d1:06:9e:d3:c1:
ea:52:04:fa:d2:6f:37:73:20:1e:44:b5:37:a7:0f:
2d:65:15:b3:18:5b:0a:bc:5f:95:4f:c4:c2:79:fc:
f5:a1:20:71:0e:43:08:7e:7e:7c:cc:8d:5c:47:f6:
7c:1b:8d:10:3c:f4:fd:3e:13:04:8f:c5:30:7d:63:
a3:60:99:48:ca:2c:a4:2b:65:4d:f9:17:cb:d1:c0:
c4:97:9c:c2:6c:4a:61:c4:c0:69:d9:54:aa:f3:11:
d7:dc:d8:d3:35:33:a4:8e:72:a1:b9:97:e6:04:42:
74:2f:69:a4:9f:b0:d9:34:be:1c:4a:b7:bd:3c:48:
36:ec:8a:dc:b0:4b:48:f9:cb:02:ac:7b:d4:bc:9f:
ad:24:d2:be:c6:48:5b:eb:f0:bc:c2:24:d1:f3:13:
30:3e:4a:9f:8b:1c:72:9f:70:11:26:41:29:b5:a1:
df:39:d2:c3:f2:78:e3:16:3e:71:5a:05:3c:3f:81:
7f:1c:7c:74:81:93:9e:8d:09:31:6d:0d:9f:eb:1d:
c2:45:27:f3:37:56:19:23:34:27:36:29:9a:86:2f:
bc:01:c5:9a:de:d3:59:dd:fd:21:10:f4:8b:70:09:
53:7f:1a:d5:ef:91:70:3c:d2:24:24:fb:20:e3:3b:
24:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:EE:31:BB:28:01:FA:16:94:1D:94:77:EB:BE:BC:54:EF:05:04:F7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ge4xuygB-haUHZR36768VO8FBPc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.194.152.0/22
Signature Algorithm: sha256WithRSAEncryption
26:b1:60:e5:0a:c2:43:b8:dc:cf:68:c0:ca:c5:4f:84:7d:d5:
ef:9e:00:f5:f0:4e:c9:45:2f:b1:94:4e:7b:e8:4b:02:53:69:
eb:35:d3:49:30:c4:e0:11:37:fc:9d:0b:d2:c9:b4:4b:ec:54:
c5:5c:bc:23:3a:39:94:bf:13:e7:3d:86:e5:cd:65:3c:15:c6:
7d:b5:2f:b3:98:90:d5:38:0b:af:2c:b0:c5:07:52:64:f0:30:
e1:1b:1a:9e:d2:48:d3:ab:2a:07:78:e5:34:f0:b6:05:9e:4e:
75:55:ce:1e:07:ba:35:bf:bc:4c:b0:1e:7b:91:62:f2:9f:4e:
1d:79:75:b3:85:0a:61:f9:c8:f3:80:83:45:7d:f9:98:f0:2b:
f6:33:cf:98:08:63:d6:af:84:ba:63:25:d3:09:59:d2:30:49:
3f:6e:b8:96:d3:14:d8:12:d7:45:27:fa:bb:de:b0:38:8e:70:
fa:94:d6:78:ed:d2:a5:8c:95:f5:82:6e:d9:41:e8:ca:db:cc:
44:22:4d:fb:a2:80:a1:27:8b:88:a4:f1:15:b2:a5:67:07:8a:
d6:b0:17:86:08:93:37:eb:52:83:dc:20:f8:fd:c0:e2:dc:cc:
33:cd:dd:24:b4:e6:20:e4:f5:f6:4e:e4:f0:eb:27:b8:a9:4d:
ab:83:51:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:25 2023 by rpki-client on console-ams.rpki-client.org