Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/h269p5QlsRCuqZmKIKk1EPsRfDk.roa
File: h269p5QlsRCuqZmKIKk1EPsRfDk.roa (raw, json)
Hash identifier: a724uecdiVLuuANC7O12iByKaebT4IRXITzZ2diXTJY=
Subject key identifier: 87:6E:BD:A7:94:25:B1:10:AE:A9:99:8A:20:A9:35:10:FB:11:7C:39
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 231D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/h269p5QlsRCuqZmKIKk1EPsRfDk.roa
Signing time: Fri 25 Nov 2022 04:42:03 +0000
ROA not before: Fri 25 Nov 2022 04:42:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.192.192.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8989 (0x231d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:42:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=876EBDA79425B110AEA9998A20A93510FB117C39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e7:5d:3b:12:1a:a2:a6:e6:d5:fd:4d:0f:b7:
94:14:c5:32:3d:b2:4e:f2:d0:05:ec:ad:4b:b8:fb:
92:35:d8:d0:07:ad:80:f9:69:d3:8b:18:be:ce:94:
38:09:f7:14:e6:98:03:fc:15:9b:01:62:d7:28:31:
9b:8e:41:3e:19:e6:3d:79:5d:f6:26:81:49:68:37:
13:c6:7b:c0:ae:82:2d:ae:71:31:12:d9:1d:71:b3:
ee:0f:a3:95:df:6d:13:b0:fa:7d:fd:a0:53:4a:4b:
89:7a:5a:c1:96:e3:43:70:3d:2e:9a:cb:1d:0b:14:
fd:43:42:ba:47:64:4e:8d:09:9e:0f:47:ca:68:e7:
c1:72:9d:39:2c:69:38:14:65:b1:39:b3:43:e6:0a:
86:b3:96:c1:20:10:f1:6e:04:6d:f8:0b:5f:23:0b:
bf:c9:44:7c:c9:44:3b:8c:d7:2e:6b:35:f2:b1:ea:
74:e9:34:2d:ed:dc:ec:4c:d3:ff:10:1e:92:a6:81:
1b:d1:e0:6f:16:fd:00:af:92:ea:09:34:86:64:bf:
ce:05:38:16:5f:c2:c3:82:cf:a4:9b:2a:e9:94:95:
14:62:23:5c:2b:1d:f2:8e:9c:dd:ca:9a:ff:b7:46:
fd:53:55:76:33:71:57:88:99:c5:c9:b6:3b:0c:eb:
7d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:6E:BD:A7:94:25:B1:10:AE:A9:99:8A:20:A9:35:10:FB:11:7C:39
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/h269p5QlsRCuqZmKIKk1EPsRfDk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.192.192.0/21
Signature Algorithm: sha256WithRSAEncryption
3b:d5:ca:be:a3:8c:7f:e1:56:7b:de:30:a0:8b:3d:2f:e1:e9:
61:45:e8:c5:4a:03:e3:93:0b:df:83:13:43:da:31:04:6e:01:
e7:b6:d1:4f:1d:53:07:e8:31:6c:51:5e:05:af:f9:bf:b7:a4:
6e:72:1b:87:a7:2c:d3:de:2f:f3:dd:8c:3d:b1:e0:8b:12:43:
70:cf:d6:f0:3a:90:70:ae:89:4f:4d:e6:c8:46:7c:a5:22:7d:
b1:e7:e5:5c:08:80:95:46:5b:49:90:2b:0c:c6:2b:18:c6:92:
14:44:6f:76:77:14:b4:50:31:98:a8:d3:13:d8:86:88:8b:65:
06:e8:25:fb:6d:2c:da:35:c8:8c:ca:4f:68:d8:99:f9:49:42:
52:35:d7:c6:65:38:3f:32:5f:b0:6d:ab:34:07:ca:a1:af:04:
0b:a1:76:a4:ff:08:5b:2d:a7:f5:df:2d:d5:89:78:bc:ee:78:
e5:b9:17:69:c9:9c:d3:39:60:20:f8:cd:23:28:2b:19:e0:5d:
10:6a:8a:7e:a9:c0:9e:03:79:20:50:0c:f6:07:df:6e:9e:d2:
2d:97:4a:be:a6:c5:40:70:1f:a2:98:4a:d4:1a:39:35:64:14:
6b:eb:52:e5:8c:07:ce:b6:2e:4e:8d:1f:9f:ec:bb:1f:d8:2e:
e2:2a:a9:e0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIx0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQyMDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg3NkVCREE3OTQyNUIx
MTBBRUE5OTk4QTIwQTkzNTEwRkIxMTdDMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJ5107EhqipubV/U0Pt5QUxTI9sk7y0AXsrUu4+5I12NAHrYD5
adOLGL7OlDgJ9xTmmAP8FZsBYtcoMZuOQT4Z5j15XfYmgUloNxPGe8Cugi2ucTES
2R1xs+4Po5XfbROw+n39oFNKS4l6WsGW40NwPS6ayx0LFP1DQrpHZE6NCZ4PR8po
58FynTksaTgUZbE5s0PmCoazlsEgEPFuBG34C18jC7/JRHzJRDuM1y5rNfKx6nTp
NC3t3OxM0/8QHpKmgRvR4G8W/QCvkuoJNIZkv84FOBZfwsOCz6SbKumUlRRiI1wr
HfKOnN3Kmv+3Rv1TVXYzcVeImcXJtjsM633FAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUh269p5QlsRCuqZmKIKk1EPsRfDkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2gyNjlwNVFsc1JDdXFabUtJ
S2sxRVBzUmZEay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wMAwDQYJKoZIhvcNAQELBQADggEBADvVyr6jjH/hVnveMKCLPS/h6WFF6MVKA+OT
C9+DE0PaMQRuAee20U8dUwfoMWxRXgWv+b+3pG5yG4enLNPeL/PdjD2x4IsSQ3DP
1vA6kHCuiU9N5shGfKUifbHn5VwIgJVGW0mQKwzGKxjGkhREb3Z3FLRQMZio0xPY
hoiLZQboJfttLNo1yIzKT2jYmflJQlI118ZlOD8yX7BtqzQHyqGvBAuhdqT/CFst
p/XfLdWJeLzueOW5F2nJnNM5YCD4zSMoKxngXRBqin6pwJ4DeSBQDPYH326e0i2X
Sr6mxUBwH6KYStQaOTVkFGvrUuWMB862Lk6NH5/sux/YLuIqqeA=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:32 2023 by rpki-client on console-ams.rpki-client.org