Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qN01p3cP7gNoIcWajCMKlLxv7Kc.roa
File: qN01p3cP7gNoIcWajCMKlLxv7Kc.roa (raw, json)
Hash identifier: pVygBvHNU0pec916YX1Q2fg3U3bdKWbKmPwVTxScJ/U=
Subject key identifier: A8:DD:35:A7:77:0F:EE:03:68:21:C5:9A:8C:23:0A:94:BC:6F:EC:A7
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 233E
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qN01p3cP7gNoIcWajCMKlLxv7Kc.roa
Signing time: Fri 25 Nov 2022 04:42:15 +0000
ROA not before: Fri 25 Nov 2022 04:42:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.240.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9022 (0x233e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:42:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A8DD35A7770FEE036821C59A8C230A94BC6FECA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:15:e1:fb:c9:45:d6:0b:75:37:0f:3a:60:0b:
a1:98:17:fd:7e:ab:83:24:8b:bf:2f:f6:0d:62:60:
c9:90:8f:1c:aa:e7:5a:39:8f:e7:e9:d6:94:be:6e:
d2:8b:8f:a7:2c:e2:6b:b3:2d:fa:bd:ae:7a:41:76:
33:45:8e:f2:25:e6:04:29:26:1f:05:72:93:3e:e2:
c4:2e:71:e6:23:0d:89:c8:34:4c:b6:21:96:3e:10:
3d:4b:eb:f7:4a:5c:4c:d3:de:67:a4:59:26:24:df:
cc:3d:bc:58:fc:c2:0c:e4:28:18:83:03:bf:d5:10:
b5:f3:59:e1:60:c4:13:82:2c:f3:75:d3:ab:e6:5e:
f4:83:72:b1:db:2e:00:8e:40:32:f0:d7:98:03:2f:
8f:ca:b6:47:3c:fe:96:ef:c4:b4:ac:52:12:99:26:
60:ac:dc:11:67:04:d4:21:bc:88:08:02:51:4f:8a:
0e:c4:f9:b6:ab:e6:1c:df:3e:01:e6:f5:da:ca:65:
e4:ab:0e:00:bd:82:3a:1e:76:f4:ef:be:3c:8f:92:
d0:09:c1:8f:12:19:e8:fc:ef:f3:4c:7e:15:c6:be:
07:7d:7c:24:0e:c7:3b:7d:f6:44:b3:c3:29:be:db:
3b:c7:ee:eb:55:dc:bb:e0:22:35:c5:7e:00:cb:0d:
86:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:DD:35:A7:77:0F:EE:03:68:21:C5:9A:8C:23:0A:94:BC:6F:EC:A7
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/qN01p3cP7gNoIcWajCMKlLxv7Kc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.240.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:8b:5e:8d:0a:c4:25:80:e3:18:48:86:5d:80:d4:95:70:d1:
41:bb:1f:d2:76:23:0f:57:71:eb:0e:09:fb:41:66:e8:ca:01:
1b:6c:60:51:d1:3a:a5:f9:3a:1d:c7:a1:aa:88:99:fe:ff:f7:
c1:5f:8c:92:33:60:e6:06:a2:5c:86:60:58:53:99:2c:b4:72:
66:5d:67:a5:0f:9b:b9:63:6a:f1:f2:39:da:af:9c:05:b7:37:
d1:70:3c:0a:43:52:bc:20:f6:2e:56:72:96:ee:cd:76:ae:32:
36:53:86:b5:ae:06:4a:5a:ac:45:1b:39:b1:e7:58:66:a0:81:
5a:6d:44:08:b2:5b:f6:32:f5:97:dd:60:cf:3c:56:fa:73:dd:
ca:e9:5d:b3:43:b8:1e:e3:2e:8e:39:c0:2b:34:ef:96:4b:40:
c4:83:3a:48:28:26:d0:30:78:b9:4d:d5:bc:65:1e:3d:d5:08:
57:d3:bf:21:d5:d6:14:f8:af:e8:61:bd:c1:82:6d:32:51:d3:
f5:2c:b0:76:10:11:f9:7d:57:fd:f4:cd:17:49:49:62:bb:06:
00:d1:67:3f:b8:ee:e0:71:d1:8c:07:bd:e6:01:1f:61:c2:99:
08:ae:5a:ef:f9:52:f2:3d:f0:87:5d:01:d8:1b:ed:ab:99:65:
cc:dc:3e:70
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIz4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQyMTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE4REQzNUE3NzcwRkVF
MDM2ODIxQzU5QThDMjMwQTk0QkM2RkVDQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHFeH7yUXWC3U3DzpgC6GYF/1+q4Mki78v9g1iYMmQjxyq51o5
j+fp1pS+btKLj6cs4muzLfq9rnpBdjNFjvIl5gQpJh8FcpM+4sQuceYjDYnINEy2
IZY+ED1L6/dKXEzT3mekWSYk38w9vFj8wgzkKBiDA7/VELXzWeFgxBOCLPN106vm
XvSDcrHbLgCOQDLw15gDL4/Ktkc8/pbvxLSsUhKZJmCs3BFnBNQhvIgIAlFPig7E
+bar5hzfPgHm9drKZeSrDgC9gjoedvTvvjyPktAJwY8SGej87/NMfhXGvgd9fCQO
xzt99kSzwym+2zvH7utV3LvgIjXFfgDLDYaTAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUqN01p3cP7gNoIcWajCMKlLxv7KcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3FOMDFwM2NQN2dOb0ljV2Fq
Q01LbEx4djdLYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq
AfAwDQYJKoZIhvcNAQELBQADggEBALeLXo0KxCWA4xhIhl2A1JVw0UG7H9J2Iw9X
cesOCftBZujKARtsYFHROqX5Oh3HoaqImf7/98FfjJIzYOYGolyGYFhTmSy0cmZd
Z6UPm7ljavHyOdqvnAW3N9FwPApDUrwg9i5WcpbuzXauMjZThrWuBkparEUbObHn
WGaggVptRAiyW/Yy9ZfdYM88Vvpz3crpXbNDuB7jLo45wCs075ZLQMSDOkgoJtAw
eLlN1bxlHj3VCFfTvyHV1hT4r+hhvcGCbTJR0/UssHYQEfl9V/30zRdJSWK7BgDR
Zz+47uBx0YwHveYBH2HCmQiuWu/5UvI98IddAdgb7auZZczcPnA=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:34 2023 by rpki-client on console-ams.rpki-client.org