Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lCFYOPfJ3QIxlFYZvgBAkm34TJw.roa
File: lCFYOPfJ3QIxlFYZvgBAkm34TJw.roa (raw, json)
Hash identifier: Lc5zNsVjeE7xqCc3VCrC3KVFONbEj25iWLIOqOKQ9MY=
Subject key identifier: 94:21:58:38:F7:C9:DD:02:31:94:56:19:BE:00:40:92:6D:F8:4C:9C
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2339
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lCFYOPfJ3QIxlFYZvgBAkm34TJw.roa
Signing time: Fri 25 Nov 2022 04:42:13 +0000
ROA not before: Fri 25 Nov 2022 04:42:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 45.64.28.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9017 (0x2339)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:42:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=94215838F7C9DD0231945619BE0040926DF84C9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ea:14:b3:ef:50:f5:de:1b:7c:a3:21:74:f0:
54:0e:05:66:71:32:07:4a:e7:54:21:a1:96:bd:0a:
9d:bc:8a:13:92:8f:7e:53:d8:14:01:42:c0:7e:4c:
ca:3a:e8:c8:5f:b9:87:64:ca:8b:07:3c:a6:d3:46:
18:ae:7b:58:c7:7a:77:7e:13:12:f6:5f:ea:c5:a4:
62:ca:8f:9e:7b:70:1c:b1:c9:ca:7d:bc:85:a2:1d:
67:9b:3f:85:9e:64:9c:65:06:40:60:07:0c:a3:db:
55:bc:60:9d:25:e8:53:49:34:8d:b2:aa:a3:32:54:
0f:24:67:67:94:8f:cd:25:25:5c:22:25:c1:a2:a8:
41:9b:e3:16:81:79:97:7a:9f:16:d3:f8:fa:72:8b:
c5:32:61:dc:c8:37:3f:c5:cd:48:10:05:6f:0c:b9:
cf:ad:49:32:f7:62:82:07:48:4e:3a:f7:bd:65:59:
7a:4f:50:96:2b:50:30:dd:52:30:f7:9b:75:14:ac:
93:ce:e1:52:24:08:a2:e5:77:0e:ee:5b:c2:82:16:
f5:29:8d:5d:3a:c7:5b:26:02:5a:33:ca:89:ff:2d:
ba:92:48:42:43:06:fb:fc:71:22:94:bc:8d:d1:cb:
04:61:61:99:7b:fb:1f:7f:6b:af:a1:27:c5:d0:d6:
db:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:21:58:38:F7:C9:DD:02:31:94:56:19:BE:00:40:92:6D:F8:4C:9C
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lCFYOPfJ3QIxlFYZvgBAkm34TJw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.28.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:11:02:84:75:f2:2c:5f:e6:1a:50:b8:83:0d:d1:3e:31:66:
3c:e4:e0:a6:3a:09:95:9e:99:2a:2e:1a:41:e6:eb:42:46:97:
21:9c:15:f5:18:56:d1:5b:65:b7:b9:76:5d:89:6a:2b:6c:1a:
61:7f:69:93:8f:0d:d7:87:70:d5:bc:ef:6e:82:61:25:df:80:
32:8d:b2:c6:e2:db:93:c6:47:23:38:de:b3:0e:39:af:66:4a:
a7:ec:ac:e9:00:fb:07:df:ef:21:9e:85:38:8e:57:23:49:14:
bb:9a:a5:45:ba:30:44:ce:71:c2:8b:f0:a6:89:51:f6:b8:5b:
35:74:0f:d8:e0:15:18:f0:61:10:cd:ec:0a:13:08:5b:3b:df:
01:bd:28:97:68:b0:02:95:94:d0:eb:49:93:ba:5f:71:a0:c5:
b3:d3:ef:59:c3:55:ed:c5:2c:56:3b:d8:15:dc:52:94:86:26:
94:e3:cc:02:ea:9a:62:36:bd:f4:de:5b:c7:6a:36:f9:15:dd:
95:a5:42:1a:23:76:e2:3b:bb:4c:8c:59:49:ea:f6:2f:95:e0:
69:50:6a:d2:2e:f1:73:c4:a9:d7:8e:0e:e5:0a:31:cf:71:96:
19:49:0a:67:ba:17:8e:3b:a7:5d:a1:2e:f4:ce:ef:ee:62:97:
4b:fd:fe:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:33 2023 by rpki-client on console-ams.rpki-client.org