Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hQodAl-FMGhkc_a7kz26FhrxLTM.roa
File: hQodAl-FMGhkc_a7kz26FhrxLTM.roa (raw, json)
Hash identifier: U0S44us9H5+uY5LRVfXwNfp7kVZN3FTlKdEj2rHzjmo=
Subject key identifier: 85:0A:1D:02:5F:85:30:68:64:73:F6:BB:93:3D:BA:16:1A:F1:2D:33
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2299
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hQodAl-FMGhkc_a7kz26FhrxLTM.roa
Signing time: Fri 25 Nov 2022 04:41:23 +0000
ROA not before: Fri 25 Nov 2022 04:41:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.177.232.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8857 (0x2299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=850A1D025F8530686473F6BB933DBA161AF12D33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:97:fc:fe:de:a0:58:7d:37:d8:90:a5:10:c3:
95:64:88:06:02:30:51:0f:5f:d7:33:e5:b3:32:34:
b1:a4:49:ee:73:c7:16:40:44:ca:9e:b0:81:58:00:
0b:24:4f:bb:cd:83:3f:84:43:9d:79:db:95:b9:85:
51:41:6b:ca:59:1a:70:92:d4:4c:d9:2c:00:b9:f5:
94:32:93:43:80:75:25:0b:ce:fc:ac:b0:ff:b2:c9:
cc:cf:2a:70:3e:e5:63:61:f2:40:ac:90:5d:54:fc:
77:6b:88:b4:02:a6:cb:45:9a:70:0f:0d:70:ed:c0:
e9:2d:a6:a6:00:11:c9:67:cb:ed:28:6a:eb:68:65:
88:99:67:9a:5e:f4:d0:9c:3d:0c:29:e4:07:48:0c:
f8:dd:4f:ff:60:df:f3:dc:78:b0:6a:2b:50:81:04:
f3:a1:42:fa:e0:25:43:b3:e9:87:f2:3d:3c:31:3c:
16:41:a6:2a:fb:74:71:9c:ac:e4:1c:a3:fb:e3:57:
1a:80:76:4e:4a:bf:01:e7:1b:6b:84:ba:11:64:55:
ec:fc:be:dd:87:75:6f:a5:4f:c6:7c:6b:34:d9:83:
63:33:82:97:60:d0:bc:71:b4:40:57:16:7e:de:9b:
99:3f:40:00:61:32:5d:8d:ef:1a:ba:62:61:38:ba:
03:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:0A:1D:02:5F:85:30:68:64:73:F6:BB:93:3D:BA:16:1A:F1:2D:33
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hQodAl-FMGhkc_a7kz26FhrxLTM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.177.232.0/23
Signature Algorithm: sha256WithRSAEncryption
63:2b:b3:e1:a1:fb:66:fe:f6:4a:ca:cd:62:5f:f8:1f:a0:50:
44:dd:4a:88:ed:4d:f9:2a:52:b9:44:f2:58:0b:08:17:63:e4:
c8:59:a9:a9:f6:0b:4f:70:23:47:7f:04:7f:b2:dd:72:a1:aa:
5c:7e:45:be:e1:46:f0:d4:7a:49:8e:6d:89:21:7e:87:ee:21:
ef:ab:3b:05:af:62:7a:4b:dc:72:ca:47:0d:2a:2f:dd:51:cc:
b8:19:3c:d1:90:b9:5c:7f:c3:51:33:5e:c8:98:db:58:a9:bc:
c3:d2:37:a5:41:b8:19:ca:76:ae:65:12:aa:17:70:28:57:f7:
89:f2:a6:2e:9f:53:3f:d4:64:f1:8b:73:38:71:ac:b3:b3:af:
b7:bd:95:ce:bc:06:5f:d5:e3:b0:0f:05:cc:2a:37:eb:3a:4a:
65:58:fb:45:fb:8a:94:dd:cc:60:4a:00:2a:dc:cb:26:a5:3f:
59:11:3c:e5:4a:72:4c:7d:80:38:0c:db:77:c7:a2:5b:c6:45:
4a:4a:e2:68:f4:3b:53:b1:64:8c:da:d2:67:c4:3f:e0:7c:2f:
23:72:f4:1a:01:c1:63:93:38:18:99:a0:8c:18:8b:d9:2f:62:
55:05:5b:7c:1e:8e:de:47:21:1e:f2:03:0c:1f:5a:a3:eb:2b:
5d:f5:6a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:32 2023 by rpki-client on console-ams.rpki-client.org