Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kALOvf73Er7xBHxYkFBPalaYKRc.roa
File: kALOvf73Er7xBHxYkFBPalaYKRc.roa (raw, json)
Hash identifier: PnjeUe1r3ZB8np9zOpkpBm26FAAqrCoNbQ9WZy0W+Ys=
Subject key identifier: 90:02:CE:BD:FE:F7:12:BE:F1:04:7C:58:90:50:4F:6A:56:98:29:17
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2045
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kALOvf73Er7xBHxYkFBPalaYKRc.roa
Signing time: Fri 25 Nov 2022 04:38:31 +0000
ROA not before: Fri 25 Nov 2022 04:38:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 180.176.0.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8261 (0x2045)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9002CEBDFEF712BEF1047C5890504F6A56982917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f0:58:f8:aa:e9:a7:da:35:d3:3b:3b:e2:ab:
ab:e9:ba:b4:de:fa:e5:ac:8f:01:8a:d9:16:59:a4:
c2:b0:60:7c:1a:2b:04:ba:c8:0c:24:e0:dd:2a:bf:
a4:22:a2:ab:60:a5:37:5a:a2:10:c7:64:2a:c5:07:
89:29:38:f5:d9:56:e9:58:9e:65:fe:61:8d:71:60:
3a:13:bc:49:16:76:85:20:b7:85:3f:2d:ee:08:4c:
cf:91:fa:bf:f1:ec:f4:dd:a2:76:c0:6e:ba:36:85:
ea:7b:d2:44:e1:b3:4d:a8:84:b7:39:19:03:7d:52:
ee:92:ed:d7:f4:42:34:74:3f:d1:ca:53:7f:1d:b0:
4f:8a:b5:39:ed:c6:e5:e9:c2:31:d2:7d:e2:5f:05:
3b:b6:7d:90:ee:ca:2e:e9:0c:71:8d:09:e8:ed:6c:
73:95:0c:e0:6e:63:34:1e:7f:30:77:dc:30:c3:da:
3b:76:e0:10:ed:c0:71:b9:a9:00:cb:a6:bf:c0:e4:
01:4d:5c:03:42:ed:ed:a4:24:af:cc:2d:13:35:c3:
5f:ec:22:30:50:09:c1:0d:98:71:47:17:b6:33:1c:
a3:14:0f:45:ca:5f:87:39:ec:c7:6b:cb:61:c0:bb:
6d:40:ae:9b:a6:bb:d1:90:66:82:80:dc:58:d8:83:
df:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:02:CE:BD:FE:F7:12:BE:F1:04:7C:58:90:50:4F:6A:56:98:29:17
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kALOvf73Er7xBHxYkFBPalaYKRc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.176.0.0/20
Signature Algorithm: sha256WithRSAEncryption
b0:08:49:c3:68:63:9c:dc:59:da:ee:94:68:cf:66:80:a1:61:
fd:70:c4:c4:51:7b:10:68:58:bf:69:9a:bc:fd:77:d6:08:4a:
9c:bc:d6:ba:54:78:0e:23:87:ba:b7:c0:d8:73:11:d6:bc:d8:
3c:6d:2a:ef:16:10:89:c7:7c:f8:d7:44:1b:e2:0a:19:df:b3:
1a:8c:a8:78:78:9a:c7:15:05:10:2d:b2:23:79:c3:50:b4:b2:
7b:8a:3e:d5:1a:00:7f:3f:7f:01:e3:5d:68:2f:d4:1b:6a:5c:
a5:6c:82:9d:53:ec:d3:47:22:fa:09:dd:2b:74:be:f4:08:86:
51:b9:a0:79:9d:8f:87:95:86:c3:4a:29:5b:81:d0:36:2d:47:
14:59:8b:9f:bf:12:9c:bd:fd:f2:75:4c:e2:df:77:7d:d8:af:
cc:87:5d:38:63:f4:6a:7c:4d:62:13:bb:b7:96:36:0f:3e:78:
7e:2b:e2:bd:99:d9:81:fe:91:a0:87:b8:a9:a6:b8:4e:9e:9a:
b5:e9:4c:85:21:33:75:0d:99:23:b3:a0:9e:2e:25:d1:f0:67:
b4:19:8c:a2:33:e2:f2:34:1d:9d:41:0b:bc:4d:67:d8:02:0a:
a5:99:c6:e4:50:c8:96:92:fa:61:45:a0:b0:ea:bb:89:46:05:
cf:8f:ac:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:09 2023 by rpki-client on console-fra.rpki-client.org