Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gjX6oQGcX7JwtDuJhsCkY2w0tpY.roa
File: gjX6oQGcX7JwtDuJhsCkY2w0tpY.roa (raw, json)
Hash identifier: fPzo+rmRqAG4j6zxROQltAtISkWPCz7lNqMWAZlE7PM=
Subject key identifier: 82:35:FA:A1:01:9C:5F:B2:70:B4:3B:89:86:C0:A4:63:6C:34:B6:96
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gjX6oQGcX7JwtDuJhsCkY2w0tpY.roa
Signing time: Thu 15 Sep 2022 02:46:30 +0000
ROA not before: Thu 15 Sep 2022 02:46:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.32.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8096 (0x1fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:46:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8235FAA1019C5FB270B43B8986C0A4636C34B696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:56:54:4a:d3:08:40:28:41:05:47:44:4b:95:
06:8b:91:0b:9e:41:79:23:a8:2c:3e:32:32:e0:13:
4d:8a:f5:36:91:10:4d:0b:cc:45:f6:b9:f1:13:7f:
f4:37:89:0c:bf:06:3a:ec:62:96:f4:95:97:48:08:
bd:67:ed:ce:dc:76:69:1e:b4:77:c0:ef:d5:b2:04:
cf:1f:a0:38:de:87:9f:68:5a:1b:60:c8:ec:e8:d1:
cd:d3:eb:7b:b3:e6:fe:28:67:7c:59:25:92:bc:45:
c7:bb:b1:01:d6:7c:c9:b2:24:6a:64:44:49:b1:ed:
10:8a:3e:a5:14:09:89:c6:04:03:cc:40:80:42:a5:
a7:78:e7:00:8e:b0:d8:6e:00:50:8f:8e:c4:61:2d:
cd:cf:5d:e6:fa:d8:af:4d:a8:2d:2c:13:f4:b9:dc:
61:05:99:ca:ad:77:88:dd:48:f9:4e:08:c7:c2:01:
f5:f9:c3:9f:e5:76:06:ff:1f:31:40:b2:f6:52:c3:
33:e1:fe:b5:04:47:ad:32:d4:c6:1c:d8:ed:e5:9e:
21:1f:45:19:c5:30:98:64:14:f8:da:1c:c2:95:c7:
5c:b5:30:24:dc:51:55:47:bc:57:3b:c1:13:ed:c6:
e1:d7:54:c8:4c:b8:7d:b7:c8:d8:59:4c:fd:18:0d:
11:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:35:FA:A1:01:9C:5F:B2:70:B4:3B:89:86:C0:A4:63:6C:34:B6:96
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gjX6oQGcX7JwtDuJhsCkY2w0tpY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.32.0/21
Signature Algorithm: sha256WithRSAEncryption
af:2b:da:3f:63:ab:c7:f5:0e:f5:f4:47:ed:15:5e:f0:30:aa:
66:89:a7:68:0a:8e:9c:03:65:54:5f:1a:bd:10:86:4c:3c:03:
54:2c:b9:bb:bb:be:55:45:8c:cc:40:53:cb:40:c5:64:95:56:
04:34:db:8d:cc:6e:02:6a:37:18:ea:15:ca:30:3e:21:b8:78:
d1:d7:5d:b2:74:67:92:b1:49:f9:70:bc:5c:ad:56:a4:6c:a8:
5f:ac:a9:21:06:2a:9d:6c:17:71:55:3e:95:12:a2:57:a3:b8:
49:83:c5:5c:03:a9:78:2b:ad:e1:52:4b:15:03:f7:40:00:2a:
db:6d:ff:ba:80:87:7c:cc:4a:85:07:54:74:91:ab:e2:a5:3a:
22:14:49:ce:49:8a:4d:61:39:58:9f:c7:39:13:2b:b4:f4:13:
df:4f:1b:74:f9:35:0e:f9:b1:99:c2:2d:a1:ed:b1:11:7f:8b:
cd:12:c8:fd:ca:f4:65:d7:8c:57:04:64:39:bb:7c:19:87:a5:
cf:25:92:d8:d0:dc:7c:9d:9d:40:05:0d:e2:87:10:13:73:eb:
dd:24:e5:2e:f8:5d:69:6f:4d:94:01:97:0e:2e:a5:bc:79:4f:
84:fb:34:28:20:e4:34:28:ad:63:44:00:f6:8c:3f:ff:a8:40:
ff:8f:72:f3
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjQ2MzBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDgyMzVGQUExMDE5QzVG
QjI3MEI0M0I4OTg2QzBBNDYzNkMzNEI2OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwVlRK0whAKEEFR0RLlQaLkQueQXkjqCw+MjLgE02K9TaREE0L
zEX2ufETf/Q3iQy/BjrsYpb0lZdICL1n7c7cdmketHfA79WyBM8foDjeh59oWhtg
yOzo0c3T63uz5v4oZ3xZJZK8Rce7sQHWfMmyJGpkREmx7RCKPqUUCYnGBAPMQIBC
pad45wCOsNhuAFCPjsRhLc3PXeb62K9NqC0sE/S53GEFmcqtd4jdSPlOCMfCAfX5
w5/ldgb/HzFAsvZSwzPh/rUER60y1MYc2O3lniEfRRnFMJhkFPjaHMKVx1y1MCTc
UVVHvFc7wRPtxuHXVMhMuH23yNhZTP0YDREtAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUgjX6oQGcX7JwtDuJhsCkY2w0tpYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2dqWDZvUUdjWDdKd3REdUpo
c0NrWTJ3MHRwWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wyAwDQYJKoZIhvcNAQELBQADggEBAK8r2j9jq8f1DvX0R+0VXvAwqmaJp2gKjpwD
ZVRfGr0Qhkw8A1Qsubu7vlVFjMxAU8tAxWSVVgQ0243MbgJqNxjqFcowPiG4eNHX
XbJ0Z5KxSflwvFytVqRsqF+sqSEGKp1sF3FVPpUSolejuEmDxVwDqXgrreFSSxUD
90AAKttt/7qAh3zMSoUHVHSRq+KlOiIUSc5Jik1hOVifxzkTK7T0E99PG3T5NQ75
sZnCLaHtsRF/i80SyP3K9GXXjFcEZDm7fBmHpc8lktjQ3HydnUAFDeKHEBNz690k
5S74XWlvTZQBlw4upbx5T4T7NCgg5DQorWNEAPaMP/+oQP+PcvM=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:25 2023 by rpki-client on console-ams.rpki-client.org