Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hr8amyp3Qb9RmN4Z6Bcl7JliYJo.roa
File: hr8amyp3Qb9RmN4Z6Bcl7JliYJo.roa (raw, json)
Hash identifier: Yrlu0XZs5CO6ZlNNbtrb+DnFQ2hoe/lNeKrHllA8F3Q=
Subject key identifier: 86:BF:1A:9B:2A:77:41:BF:51:98:DE:19:E8:17:25:EC:99:62:60:9A
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hr8amyp3Qb9RmN4Z6Bcl7JliYJo.roa
Signing time: Thu 15 Sep 2022 02:54:01 +0000
ROA not before: Thu 15 Sep 2022 02:54:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.248.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8098 (0x1fa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 15 02:54:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=86BF1A9B2A7741BF5198DE19E81725EC9962609A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f6:05:2f:21:d2:66:b7:a7:9d:f5:4b:0b:b2:
b8:27:9e:16:b6:55:74:20:2f:1b:fc:45:cb:74:28:
9a:b2:db:f8:f0:5c:98:7d:c6:32:d6:9c:4e:87:db:
87:95:74:ab:07:ca:ad:ef:05:95:fa:e2:47:ba:8c:
84:40:e2:c9:c2:5a:49:ce:27:e5:34:84:ca:fc:83:
a0:60:16:36:24:67:1e:d1:7a:0e:c0:2b:33:15:5b:
b2:e0:37:16:f7:0f:86:1e:02:4a:4f:02:28:9e:c1:
56:40:86:4e:bf:98:51:1a:4e:10:d3:32:89:9d:75:
06:36:5c:b2:45:1a:7e:1f:eb:02:3d:37:92:ca:0a:
09:cb:d3:2a:7c:e2:fe:7b:38:b5:84:51:71:67:de:
88:d4:e8:2c:67:97:05:10:07:3f:1e:27:b3:7b:09:
19:9f:c6:08:82:f0:47:f0:ed:2e:2d:0a:25:c9:5f:
75:83:75:82:59:e8:a2:90:04:4c:c3:6c:3c:55:87:
08:03:e7:d6:1e:d8:20:48:75:ec:db:ab:54:da:74:
91:b2:1c:5a:1b:5d:25:b2:7d:60:12:0e:0e:86:38:
7e:7a:59:24:8a:89:b2:07:af:c0:82:ee:06:d2:36:
a6:be:8c:75:ff:3e:4d:14:80:2c:07:2a:3d:c5:b2:
38:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:BF:1A:9B:2A:77:41:BF:51:98:DE:19:E8:17:25:EC:99:62:60:9A
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hr8amyp3Qb9RmN4Z6Bcl7JliYJo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.248.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:41:48:c3:cf:b8:fb:11:a8:bc:e3:28:20:6a:24:d2:85:b9:
5c:4f:70:0d:36:37:76:2a:83:e2:84:20:bf:5c:02:f8:be:be:
bd:46:f2:fd:5a:e9:8b:50:35:40:a5:11:b7:f1:73:66:df:fe:
57:35:d0:be:02:9b:bb:c4:6e:45:3b:12:78:8d:cf:f7:a9:fb:
48:0c:58:39:1b:61:b4:1e:54:32:16:c1:c5:e5:16:2f:f4:a4:
9a:f0:b5:40:4a:32:45:e4:f6:ab:81:e4:7f:83:6a:83:de:01:
f4:d5:30:57:38:36:62:7e:bc:0d:db:c7:56:3b:2e:40:73:11:
3b:ff:38:71:28:7d:76:0e:ef:b7:82:bb:15:d4:0d:e9:c3:3a:
f0:d7:2c:97:16:ee:cd:6c:22:37:c7:80:5d:5e:dc:fe:f3:f4:
07:0c:98:4b:97:06:be:a2:5c:f2:6e:ad:4d:a4:9b:f8:d3:2d:
b3:ac:e6:ff:05:4c:53:33:a0:58:bb:95:84:bb:9a:4a:60:4c:
5d:c9:9f:b6:8c:1b:39:db:bf:42:4f:d4:d5:82:27:c2:f0:99:
37:b6:55:33:bd:ae:e5:1b:56:7f:df:c9:68:da:b2:1a:9d:21:
fa:a5:b5:9b:4b:2f:c2:8e:42:e8:21:e8:bf:84:f5:24:be:f5:
6d:e3:43:99
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICH6IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjA5MTUw
MjU0MDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg2QkYxQTlCMkE3NzQx
QkY1MTk4REUxOUU4MTcyNUVDOTk2MjYwOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDG9gUvIdJmt6ed9UsLsrgnnha2VXQgLxv8Rct0KJqy2/jwXJh9
xjLWnE6H24eVdKsHyq3vBZX64ke6jIRA4snCWknOJ+U0hMr8g6BgFjYkZx7Reg7A
KzMVW7LgNxb3D4YeAkpPAiiewVZAhk6/mFEaThDTMomddQY2XLJFGn4f6wI9N5LK
CgnL0yp84v57OLWEUXFn3ojU6CxnlwUQBz8eJ7N7CRmfxgiC8Efw7S4tCiXJX3WD
dYJZ6KKQBEzDbDxVhwgD59Ye2CBIdezbq1TadJGyHFobXSWyfWASDg6GOH56WSSK
ibIHr8CC7gbSNqa+jHX/Pk0UgCwHKj3FsjiRAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUhr8amyp3Qb9RmN4Z6Bcl7JliYJowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2hyOGFteXAzUWI5Um1ONFo2
QmNsN0psaVlKby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6PgwDQYJKoZIhvcNAQELBQADggEBAB9BSMPPuPsRqLzjKCBqJNKFuVxPcA02N3Yq
g+KEIL9cAvi+vr1G8v1a6YtQNUClEbfxc2bf/lc10L4Cm7vEbkU7EniNz/ep+0gM
WDkbYbQeVDIWwcXlFi/0pJrwtUBKMkXk9quB5H+DaoPeAfTVMFc4NmJ+vA3bx1Y7
LkBzETv/OHEofXYO77eCuxXUDenDOvDXLJcW7s1sIjfHgF1e3P7z9AcMmEuXBr6i
XPJurU2km/jTLbOs5v8FTFMzoFi7lYS7mkpgTF3Jn7aMGznbv0JP1NWCJ8LwmTe2
VTO9ruUbVn/fyWjashqdIfqltZtLL8KOQugh6L+E9SS+9W3jQ5k=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:26 2023 by rpki-client on console-ams.rpki-client.org