Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/h8cl5PPQCBOJuOKcCMMlsAFk4Sg.roa
File: h8cl5PPQCBOJuOKcCMMlsAFk4Sg.roa (raw, json)
Hash identifier: Ksm43FXiMzyav/8dtuYNxnyN6FIqLkNRtdPjHnpkxNg=
Subject key identifier: 87:C7:25:E4:F3:D0:08:13:89:B8:E2:9C:08:C3:25:B0:01:64:E1:28
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2318
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/h8cl5PPQCBOJuOKcCMMlsAFk4Sg.roa
Signing time: Fri 25 Nov 2022 04:42:02 +0000
ROA not before: Fri 25 Nov 2022 04:42:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.195.232.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8984 (0x2318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:42:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=87C725E4F3D0081389B8E29C08C325B00164E128
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:37:69:fa:60:2e:7b:7c:62:5e:97:8b:be:3a:
37:39:d5:ab:35:65:9b:6c:48:23:02:eb:5c:99:59:
7f:f9:b1:36:69:a2:41:f1:4f:cf:dc:bf:09:b6:5e:
c5:5e:d7:0a:98:9a:85:2e:ed:91:96:fc:b9:85:b0:
96:2b:6e:02:3c:88:1a:90:1f:b1:29:27:16:4b:b1:
68:57:bf:b5:9b:74:4c:b0:ef:74:d1:c8:40:43:fe:
05:1c:6f:f9:38:b9:8a:db:58:fd:9f:c5:35:a5:d5:
9e:9a:6d:82:37:42:97:84:be:13:53:b8:ad:d7:92:
45:5c:49:38:ee:ae:c3:29:be:5e:46:0d:86:57:9b:
03:d2:0d:85:9e:bb:ea:c3:b8:43:d8:68:58:a5:b0:
da:35:bb:16:cb:82:44:4c:fa:91:72:5a:c2:e9:b9:
9d:7b:c5:be:ec:e0:37:d0:be:f2:a7:b6:c0:ee:30:
a0:d5:b3:f2:ee:fe:c5:ff:af:c9:25:58:27:21:cc:
3f:bb:11:6f:de:b0:90:32:78:19:8a:e7:c6:b2:ed:
a8:98:29:8d:ee:91:03:41:54:16:58:7e:6c:2b:aa:
a4:b2:ea:c2:63:71:bd:8e:7f:62:47:9e:64:49:ba:
8b:8b:60:4c:61:c3:0f:a0:12:32:e3:4b:83:e3:c5:
84:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C7:25:E4:F3:D0:08:13:89:B8:E2:9C:08:C3:25:B0:01:64:E1:28
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/h8cl5PPQCBOJuOKcCMMlsAFk4Sg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.195.232.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:3a:9a:26:fe:20:44:d0:54:fb:5e:9c:c2:5a:53:e9:32:ad:
95:27:40:77:52:e3:f5:41:83:c9:26:bb:29:2d:ad:3e:1d:04:
a2:c2:29:c1:82:3e:5f:d1:26:e8:e6:97:33:60:42:54:a0:6b:
af:69:7c:dd:46:14:98:99:80:ab:cb:23:1c:5d:14:5c:21:8a:
e6:23:46:48:61:4e:5b:08:3d:9f:4f:5a:21:db:b3:70:02:b3:
64:9d:6b:a9:60:c6:0a:a0:58:be:01:33:4d:72:2d:83:de:5c:
47:dc:5a:52:9f:69:21:da:d2:66:97:d5:10:1f:7d:3e:88:cc:
5d:63:0a:b1:75:47:b9:eb:bf:36:b9:05:d3:a0:1f:fb:2d:0d:
51:44:f5:6b:75:c6:3c:90:fc:a9:dd:08:69:62:26:fe:4f:3d:
2f:3d:4e:d5:42:78:10:b0:19:5d:1c:44:fe:06:4b:fa:e3:f2:
db:e6:ec:cc:a0:72:24:2c:b7:36:9c:85:31:5a:81:c7:76:47:
8a:d5:b3:e6:ac:96:5a:cb:1d:df:d6:d8:69:27:2e:00:f3:53:
89:aa:9d:be:a3:25:11:d8:c2:e9:57:3e:3e:f1:11:82:55:c6:
31:da:8d:ed:07:89:e3:e5:01:c3:e7:96:ef:83:d1:e8:85:e1:
d0:f0:1d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:08 2023 by rpki-client on console-fra.rpki-client.org