Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oJLVG6djgqZldtMFD3FjA8M9gH0.roa
File: oJLVG6djgqZldtMFD3FjA8M9gH0.roa (raw, json)
Hash identifier: M9aoRe+Mx+NrzxzPbPJOt/jkrWFAui6S3XM+133EOLE=
Subject key identifier: A0:92:D5:1B:A7:63:82:A6:65:76:D3:05:0F:71:63:03:C3:3D:80:7D
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 237A
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oJLVG6djgqZldtMFD3FjA8M9gH0.roa
Signing time: Fri 16 Dec 2022 03:26:39 +0000
ROA not before: Fri 16 Dec 2022 03:26:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.100.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9082 (0x237a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Dec 16 03:26:39 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A092D51BA76382A66576D3050F716303C33D807D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:a8:88:09:94:df:0d:e9:60:28:e0:21:a8:3d:
ed:9d:9c:19:cf:d3:8d:88:8a:25:31:40:52:66:44:
9d:af:fc:60:d8:fb:4c:96:6f:41:14:ba:1f:79:a3:
7b:64:6a:ff:dc:84:3a:3e:63:6a:66:66:a7:c4:7a:
0d:1a:b6:bb:37:03:fc:2b:29:e9:d2:ee:d9:13:eb:
2a:35:d8:9a:77:fa:29:e6:01:db:b4:8c:11:04:e8:
8b:4b:a4:96:2f:f6:2e:ea:9d:97:15:ec:9e:39:71:
66:b8:cd:51:fd:af:5e:b3:5e:e7:76:73:f0:c8:79:
95:e1:23:5c:a9:43:ff:7b:9b:42:55:5c:da:69:03:
aa:f0:b0:e0:0b:73:ae:6b:f3:ed:bb:0c:57:da:1e:
44:48:1e:7c:2e:58:74:5c:79:00:6e:a4:ab:b9:ca:
bc:fc:12:8e:80:3f:34:87:73:f8:94:63:3a:f6:05:
78:3c:d3:be:7b:57:4b:db:c1:27:52:c0:2f:d3:24:
93:2a:8f:69:8c:e6:50:82:70:35:b2:28:3f:94:1b:
a3:6a:ed:7c:f0:9d:4a:26:5c:62:15:4c:0c:70:b5:
f3:3b:59:e7:e7:9f:ef:67:b1:28:c8:fb:f4:22:0f:
11:5d:e7:b5:7c:db:3a:63:f3:37:cf:bf:27:a6:1c:
54:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:92:D5:1B:A7:63:82:A6:65:76:D3:05:0F:71:63:03:C3:3D:80:7D
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oJLVG6djgqZldtMFD3FjA8M9gH0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.100.0/22
Signature Algorithm: sha256WithRSAEncryption
50:68:89:be:e6:31:31:71:85:18:93:4c:64:28:9a:e9:60:86:
9e:d6:04:31:ce:b4:ab:39:a4:cb:28:8b:03:8b:bc:07:1c:a7:
9b:72:5a:47:29:e7:d8:82:ee:cf:5f:d2:d6:c8:b8:f2:10:11:
ba:86:21:6f:a3:8e:17:fa:27:a9:46:e2:fd:7c:50:4d:c6:1d:
a1:b5:0b:0f:08:07:8f:bc:50:76:08:89:b4:6e:c6:b5:d9:a6:
21:88:6b:a7:40:60:fc:0e:48:2f:87:2d:16:08:d0:ff:a3:3a:
af:33:89:89:1d:a2:d4:07:c3:d0:8d:3d:c7:66:15:af:4d:a7:
af:45:b6:70:2b:9f:95:58:8e:e2:0d:a8:a5:b9:62:9f:33:5c:
39:6d:08:81:aa:93:33:9e:bc:5e:08:08:9b:b9:8b:85:65:c7:
e4:58:ae:6c:c6:d3:2c:cc:31:cd:c3:bd:1b:9a:9e:35:9a:17:
aa:c7:7e:56:1c:fd:28:3f:bb:d2:df:59:50:c0:cf:e4:37:01:
b2:f6:b3:68:01:7e:2c:71:f4:cd:41:30:58:1b:9c:44:ab:90:
3f:64:a2:df:8f:6b:50:4b:5b:b4:2a:cf:5a:4e:79:e1:b9:75:
9b:6e:20:08:df:31:75:ae:26:10:8d:c6:e4:94:fc:86:0c:bc:
ac:78:24:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:10 2023 by rpki-client on console-fra.rpki-client.org