Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/loXUYa72AXSePOcHQLpklA-TY60.roa
File: loXUYa72AXSePOcHQLpklA-TY60.roa (raw, json)
Hash identifier: 2WrvBZpZAktkpXBqIyhnkkD4deM08yE0qlXH1fdKLMo=
Subject key identifier: 96:85:D4:61:AE:F6:01:74:9E:3C:E7:07:40:BA:64:94:0F:93:63:AD
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2252
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/loXUYa72AXSePOcHQLpklA-TY60.roa
Signing time: Fri 25 Nov 2022 04:41:02 +0000
ROA not before: Fri 25 Nov 2022 04:41:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.232.24.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8786 (0x2252)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:41:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9685D461AEF601749E3CE70740BA64940F9363AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:65:56:b5:99:b8:e3:27:3b:fb:d4:d9:39:dd:
3f:ff:2c:31:82:26:e4:d1:5b:a1:a4:07:71:f2:d2:
74:3d:65:42:83:e4:f2:24:0d:2a:d5:26:b1:f4:2e:
4f:87:ee:44:ee:79:c5:e7:82:2c:f8:c2:c1:b5:5c:
bc:df:a3:4f:72:d2:91:19:5f:fb:77:ff:92:de:00:
80:67:05:29:22:26:a3:fc:1a:52:d3:8a:04:26:b8:
07:fa:d3:ca:9f:85:25:9d:67:d5:87:e6:3f:9c:3e:
0b:4d:1c:db:d8:4b:d7:f6:2b:5e:c4:ef:01:af:0e:
77:81:5d:10:1d:69:6c:bc:1e:43:91:0a:f8:88:e8:
e5:79:4b:bd:33:7a:be:7c:0e:e4:d2:a5:76:32:29:
c2:ef:aa:46:e0:fd:29:81:79:5a:7d:35:6e:18:12:
73:72:50:18:6a:76:3a:99:07:f0:ba:35:52:2d:76:
cc:0f:e1:8d:6b:95:de:82:26:45:fe:fd:e1:e4:dc:
c9:8c:ee:61:0c:31:63:c9:56:27:df:46:92:fa:53:
0d:00:46:75:81:f8:d0:13:5f:26:36:c5:51:1d:03:
bf:be:0e:c8:53:2d:66:79:df:4e:6c:1e:30:fa:36:
04:fb:68:be:e9:69:37:95:20:52:4a:b1:21:fa:07:
68:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:85:D4:61:AE:F6:01:74:9E:3C:E7:07:40:BA:64:94:0F:93:63:AD
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/loXUYa72AXSePOcHQLpklA-TY60.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.232.24.0/21
Signature Algorithm: sha256WithRSAEncryption
74:f6:1f:a4:66:2d:62:06:6e:82:a7:71:c3:2a:e1:39:56:a5:
67:b4:8e:38:a6:0d:35:d9:92:bc:26:f9:59:d8:6c:5b:20:9c:
0d:f6:14:84:a1:f1:3d:0e:32:e6:cb:91:d2:0e:4c:f0:ce:24:
86:2c:9c:bc:3d:c3:d0:b7:77:55:1b:c3:45:0c:6f:c5:c5:ad:
da:4b:76:92:41:83:f0:fd:56:d9:81:f6:bc:85:fe:84:52:90:
58:b6:f0:92:3b:04:ad:0e:b4:9b:2d:07:60:61:f6:03:be:2d:
9c:9c:ab:3e:8a:bd:16:39:d6:f1:00:00:11:19:f7:9e:c3:62:
57:51:e1:20:50:55:34:8d:43:34:24:59:d5:4a:43:77:a8:16:
7a:3d:4b:bc:1a:41:60:f1:13:fa:eb:f2:fe:75:02:56:97:11:
85:46:50:f9:7c:fb:0b:71:d4:65:fa:28:72:a7:16:60:5d:16:
67:7d:a9:c3:c9:d9:d2:bf:80:fc:ae:bb:d7:3f:40:8d:b0:19:
b2:29:05:fb:4c:c0:11:ce:f2:54:10:9a:a9:4d:96:bd:ae:82:
a7:4a:61:f9:ed:71:c9:20:91:4d:72:3f:79:4e:cc:4f:d2:2d:
d1:c3:20:b2:9b:a3:de:31:6d:2c:31:38:0d:7f:7c:48:24:7b:
78:1a:00:bb
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIlIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQxMDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk2ODVENDYxQUVGNjAx
NzQ5RTNDRTcwNzQwQkE2NDk0MEY5MzYzQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCTZVa1mbjjJzv71Nk53T//LDGCJuTRW6GkB3Hy0nQ9ZUKD5PIk
DSrVJrH0Lk+H7kTuecXngiz4wsG1XLzfo09y0pEZX/t3/5LeAIBnBSkiJqP8GlLT
igQmuAf608qfhSWdZ9WH5j+cPgtNHNvYS9f2K17E7wGvDneBXRAdaWy8HkORCviI
6OV5S70zer58DuTSpXYyKcLvqkbg/SmBeVp9NW4YEnNyUBhqdjqZB/C6NVItdswP
4Y1rld6CJkX+/eHk3MmM7mEMMWPJViffRpL6Uw0ARnWB+NATXyY2xVEdA7++DshT
LWZ5305sHjD6NgT7aL7paTeVIFJKsSH6B2jTAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUloXUYa72AXSePOcHQLpklA+TY60wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2xvWFVZYTcyQVhTZVBPY0hR
THBrbEEtVFk2MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6BgwDQYJKoZIhvcNAQELBQADggEBAHT2H6RmLWIGboKnccMq4TlWpWe0jjimDTXZ
krwm+VnYbFsgnA32FISh8T0OMubLkdIOTPDOJIYsnLw9w9C3d1Ubw0UMb8XFrdpL
dpJBg/D9VtmB9ryF/oRSkFi28JI7BK0OtJstB2Bh9gO+LZycqz6KvRY51vEAABEZ
957DYldR4SBQVTSNQzQkWdVKQ3eoFno9S7waQWDxE/rr8v51AlaXEYVGUPl8+wtx
1GX6KHKnFmBdFmd9qcPJ2dK/gPyuu9c/QI2wGbIpBftMwBHO8lQQmqlNlr2ugqdK
YfntcckgkU1yP3lOzE/SLdHDILKbo94xbSwxOA1/fEgke3gaALs=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:09 2023 by rpki-client on console-fra.rpki-client.org