Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hgryQ7UCyOjhUnSbCvUKm80Otg0.roa
File: hgryQ7UCyOjhUnSbCvUKm80Otg0.roa (raw, json)
Hash identifier: Kqm8TTVJhPE7GeuC1TPHWbuOwIsP9jsb4XUlyK/t+UI=
Subject key identifier: 86:0A:F2:43:B5:02:C8:E8:E1:52:74:9B:0A:F5:0A:9B:CD:0E:B6:0D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 20F2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hgryQ7UCyOjhUnSbCvUKm80Otg0.roa
Signing time: Fri 25 Nov 2022 04:39:19 +0000
ROA not before: Fri 25 Nov 2022 04:39:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.4.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8434 (0x20f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:39:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=860AF243B502C8E8E152749B0AF50A9BCD0EB60D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bd:20:80:d7:9d:67:8d:0f:2c:10:60:45:45:
56:0a:f5:cb:fa:94:3f:11:02:5e:f3:d2:56:cd:cd:
e2:81:b7:eb:fb:d8:a6:8a:50:3f:01:b2:ed:45:8e:
86:c4:b3:c1:39:a0:72:be:b1:22:ce:05:34:fc:64:
ec:55:9e:a0:6d:2f:54:11:0c:2b:ef:f6:9d:1d:f3:
e0:f7:ec:ca:10:42:b5:b1:57:ba:e5:44:94:eb:73:
5b:da:30:a0:6e:87:37:ed:74:de:f5:34:ad:ad:b3:
9b:33:fb:db:6b:c4:f0:db:01:d9:0f:56:ec:69:b4:
38:11:ad:4c:9c:99:84:57:c3:ac:b1:e8:c7:17:88:
3d:db:04:c6:04:db:8f:63:db:04:6f:37:3b:a8:ff:
9f:1d:e7:d7:2e:17:58:ff:96:82:48:9d:0c:2f:fa:
c3:b1:35:ce:1f:95:97:27:58:53:87:58:c2:0b:01:
8e:06:7d:2f:bc:02:3a:36:35:08:95:4f:63:80:5c:
00:65:a3:f8:89:ab:9a:1f:01:84:24:f5:ce:53:17:
d5:2e:1c:34:58:00:fe:18:f4:fb:e3:c9:d9:61:64:
ea:ff:6d:62:d0:df:16:87:8d:f1:c9:df:84:4b:55:
20:b2:a3:00:16:98:7b:b6:04:fd:10:ea:6d:e3:54:
0e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0A:F2:43:B5:02:C8:E8:E1:52:74:9B:0A:F5:0A:9B:CD:0E:B6:0D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hgryQ7UCyOjhUnSbCvUKm80Otg0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.4.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:18:53:be:f7:e6:af:5f:78:88:76:b0:cb:97:d4:f6:6e:1e:
db:5d:7c:83:7d:a1:50:4b:b7:cd:de:8e:5f:c9:19:a2:d2:1c:
da:34:69:58:cc:3e:4c:8e:63:40:6d:0e:7b:83:08:e5:1a:7f:
bf:f3:9a:a7:24:72:87:d6:a9:08:45:32:6c:78:3c:83:23:21:
61:1c:f0:d3:e6:ba:9d:12:3c:92:20:f2:ad:bd:4b:f9:e5:52:
26:93:6c:3e:c3:41:43:33:cd:1e:b9:bf:70:2b:19:7b:c7:57:
6d:10:e1:b4:e2:0b:d0:4c:25:8f:fb:3d:6a:cf:93:bb:be:02:
0a:8e:8b:ba:84:a8:99:95:db:7a:a4:78:3f:2f:13:5a:c5:ca:
f6:6e:2d:3f:9f:14:86:8b:0b:7d:e4:a3:9a:a1:f1:50:05:51:
0b:d6:0e:06:ba:8b:36:e6:fe:e0:ca:58:c0:e2:c5:10:74:cf:
3a:39:ce:b9:26:3e:24:87:62:4b:82:87:97:ea:46:9d:6d:df:
82:29:db:1d:14:34:c9:d0:f6:74:04:d8:de:ba:05:f9:29:13:
13:64:3d:b5:b1:e5:83:2f:d7:78:7e:17:67:59:9a:f6:49:f8:
6a:8e:4b:46:21:11:9c:6d:ca:4c:dd:ef:01:6e:7a:c4:e6:d7:
5c:c4:8e:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:08 2023 by rpki-client on console-fra.rpki-client.org