Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hRAJ0SDEqmPgHa9rJbWQmIqQkOs.roa
File: hRAJ0SDEqmPgHa9rJbWQmIqQkOs.roa (raw, json)
Hash identifier: rejHm9xosrSOSIWth+bslUcy4/5/qTR4Ah301kFIAzQ=
Subject key identifier: 85:10:09:D1:20:C4:AA:63:E0:1D:AF:6B:25:B5:90:98:8A:90:90:EB
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 212F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hRAJ0SDEqmPgHa9rJbWQmIqQkOs.roa
Signing time: Fri 25 Nov 2022 04:39:36 +0000
ROA not before: Fri 25 Nov 2022 04:39:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.228.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8495 (0x212f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=851009D120C4AA63E01DAF6B25B590988A9090EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:48:cc:c4:06:75:55:8e:c7:c0:96:d8:1f:27:
85:d6:5f:51:f4:61:63:92:f2:2d:66:3e:ce:95:23:
76:71:2d:be:6c:f9:23:e9:3d:48:b5:3f:a1:0e:7d:
1d:37:65:b9:29:7a:2b:fe:bf:a6:64:c8:fd:b7:2f:
73:06:af:68:22:1c:21:39:cc:3f:6e:04:47:4d:15:
c9:dc:37:0d:fd:65:79:44:d9:3f:62:a4:04:10:0e:
39:af:86:e0:ce:d8:64:88:b3:c6:7f:3a:45:30:01:
b3:a4:cf:c2:8a:dc:2c:8c:af:27:89:0b:9d:52:93:
98:f1:ec:3a:7e:b4:f8:74:6c:e9:d4:2f:98:0e:cc:
f5:a1:88:8c:63:66:ea:91:55:41:18:34:e1:e8:85:
96:7b:75:0d:88:6b:d4:8d:99:92:69:a3:d4:e7:9b:
31:30:bb:37:e6:1f:d9:77:1c:df:71:f0:fb:8c:9d:
e9:19:8d:99:32:d8:9b:51:1e:f1:f1:4c:ec:6e:b0:
f5:3a:f9:7a:58:30:c2:31:39:7b:97:3e:5e:af:db:
70:42:73:f2:91:3a:2b:77:c9:bd:fd:ab:23:3f:b4:
fd:bb:f4:22:a8:19:9d:a3:76:c6:75:ef:cf:da:9c:
33:70:c2:50:1c:bc:48:5d:a8:4b:28:48:4f:a0:bc:
0f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:10:09:D1:20:C4:AA:63:E0:1D:AF:6B:25:B5:90:98:8A:90:90:EB
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hRAJ0SDEqmPgHa9rJbWQmIqQkOs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.228.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:43:ac:87:4d:e4:89:e5:74:27:15:de:e1:13:5a:73:17:50:
a5:96:f5:06:30:6f:9a:60:9b:25:47:93:3a:9c:bf:cc:97:98:
ff:f9:a5:10:61:34:80:8a:77:b5:68:3f:31:47:bc:93:24:9e:
c8:73:bb:37:c5:9c:09:7c:22:56:94:e9:08:52:a1:54:57:ba:
cf:01:a0:5b:11:b0:87:ea:d0:f7:54:d6:e0:d4:09:a3:36:07:
0b:07:a0:ec:99:55:1e:d9:7c:7e:8b:99:8b:06:38:25:26:e0:
ad:e9:c5:41:92:84:eb:7e:e0:09:6a:11:e4:db:4c:74:0d:18:
9c:89:19:ac:de:e7:b5:0e:a8:de:63:b4:1e:50:74:d0:34:d9:
40:8a:be:20:89:d7:79:8c:89:32:4b:de:9b:4a:ec:6b:8e:fb:
ed:bd:f2:72:11:34:90:e4:b8:e9:80:f9:5e:1b:de:6e:1f:5f:
68:c9:f4:42:0b:75:6d:74:9c:b0:86:43:38:78:dc:d1:ea:b2:
5f:48:38:78:c9:b1:3d:12:ee:50:e8:ba:0f:1e:b1:5d:e4:5c:
d8:fc:f2:94:66:2e:ec:1d:ea:3b:a8:e1:a0:c2:c9:24:d3:6d:
25:b4:42:64:fa:c1:74:6d:0e:15:8e:a0:59:a7:87:9d:80:7d:
77:7c:2d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:08 2023 by rpki-client on console-fra.rpki-client.org