Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sCh9IIAZEey9Vc5IJvwxpcyFdlI.roa
File: sCh9IIAZEey9Vc5IJvwxpcyFdlI.roa (raw, json)
Hash identifier: EKuXkDnzoC2TNnr7WlOaD5GASiOwe5LixZjXRouU/wg=
Subject key identifier: B0:28:7D:20:80:19:11:EC:BD:55:CE:48:26:FC:31:A5:CC:85:76:52
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2015
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sCh9IIAZEey9Vc5IJvwxpcyFdlI.roa
Signing time: Fri 25 Nov 2022 04:38:18 +0000
ROA not before: Fri 25 Nov 2022 04:38:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.14.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8213 (0x2015)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B0287D20801911ECBD55CE4826FC31A5CC857652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9d:77:73:06:c3:88:dc:9f:ee:72:13:44:be:
3d:b7:87:d7:81:6a:28:6d:f7:a0:13:21:c8:52:8d:
75:20:13:df:be:f8:30:4d:98:30:d6:b7:5e:0d:78:
2a:5e:a0:23:78:9d:df:1c:c1:8d:1c:f2:42:7c:1a:
a7:f5:48:de:29:4f:38:ad:df:0e:59:ba:09:36:68:
2e:ee:d0:7a:90:f3:77:85:91:dc:d0:67:1c:f2:94:
30:98:f4:de:c6:81:d3:1c:a6:f3:c3:1c:ed:31:00:
91:11:7a:16:e8:ea:30:ca:9b:a8:85:6b:41:a7:4a:
0a:ba:cb:77:fa:57:3a:bd:a8:fe:a0:79:e6:a6:f1:
d6:02:90:7c:c2:1f:57:1d:a6:f6:05:8d:bd:c0:dc:
aa:91:e0:71:44:e7:c5:c8:5f:63:c7:ff:08:8c:5b:
37:cc:cf:d9:3b:ca:12:e8:2a:ed:64:e0:ec:14:32:
34:36:df:ec:f1:a5:52:fe:35:9f:21:d9:15:25:07:
12:41:37:82:46:36:16:04:20:98:c6:52:5d:be:61:
9e:ab:ed:bc:87:d3:65:b2:49:40:02:1b:96:56:3e:
9f:99:db:9b:b5:b7:71:bc:ba:d5:0b:c6:70:e2:34:
ea:d7:06:4a:5a:47:5c:94:2b:d9:39:47:a6:3b:93:
f0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:28:7D:20:80:19:11:EC:BD:55:CE:48:26:FC:31:A5:CC:85:76:52
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sCh9IIAZEey9Vc5IJvwxpcyFdlI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.14.0/24
Signature Algorithm: sha256WithRSAEncryption
79:27:a5:bc:a7:72:1b:78:1c:e1:cb:0a:d2:72:57:43:f8:11:
f2:ca:a5:1d:17:58:7f:9f:57:08:5c:14:6d:58:db:ed:5d:6d:
63:f4:75:f8:88:fa:98:a3:f7:7b:04:85:e9:0b:31:a1:d9:83:
1f:00:8e:0f:1a:af:7a:69:94:4e:a0:d7:79:83:9f:cf:8f:43:
4b:b4:5d:98:f2:6a:4a:b2:a5:78:38:7a:f8:76:be:d8:84:1d:
14:1c:44:01:61:84:4c:7f:bd:89:c2:58:7f:ec:5d:0d:89:fe:
72:e0:87:66:7e:ec:16:50:ac:09:5b:02:ca:b9:29:61:84:d0:
71:f8:b3:0e:bb:ba:57:72:50:ff:ea:8b:1b:6f:12:d9:32:d1:
ce:20:ed:fe:57:6e:33:9d:3e:be:65:b5:0f:d7:b0:34:8b:73:
61:eb:87:e9:94:6a:0f:bd:74:dc:c4:dd:b0:64:bd:93:cb:7e:
b8:25:ce:a1:c3:a3:bb:77:80:fc:53:ad:63:82:f1:3d:d6:eb:
ac:c0:c0:e9:9b:8f:e6:6f:fc:ea:72:73:64:d2:82:cf:b5:3e:
8c:7f:b8:6d:9e:03:cf:43:7d:a0:12:52:bf:dd:70:ac:ba:b1:
23:78:72:c7:9c:bb:67:70:ea:ba:9b:38:9d:78:c0:17:f5:24:
39:d7:87:dd
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIBUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDM4MThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEIwMjg3RDIwODAxOTEx
RUNCRDU1Q0U0ODI2RkMzMUE1Q0M4NTc2NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1nXdzBsOI3J/uchNEvj23h9eBaiht96ATIchSjXUgE9+++DBN
mDDWt14NeCpeoCN4nd8cwY0c8kJ8Gqf1SN4pTzit3w5Zugk2aC7u0HqQ83eFkdzQ
ZxzylDCY9N7GgdMcpvPDHO0xAJERehbo6jDKm6iFa0GnSgq6y3f6Vzq9qP6geeam
8dYCkHzCH1cdpvYFjb3A3KqR4HFE58XIX2PH/wiMWzfMz9k7yhLoKu1k4OwUMjQ2
3+zxpVL+NZ8h2RUlBxJBN4JGNhYEIJjGUl2+YZ6r7byH02WySUACG5ZWPp+Z25u1
t3G8utULxnDiNOrXBkpaR1yUK9k5R6Y7k/ALAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUsCh9IIAZEey9Vc5IJvwxpcyFdlIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3NDaDlJSUFaRWV5OVZjNUlK
dnd4cGN5RmRsSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq
AQ4wDQYJKoZIhvcNAQELBQADggEBAHknpbyncht4HOHLCtJyV0P4EfLKpR0XWH+f
VwhcFG1Y2+1dbWP0dfiI+pij93sEhekLMaHZgx8Ajg8ar3pplE6g13mDn8+PQ0u0
XZjyakqypXg4evh2vtiEHRQcRAFhhEx/vYnCWH/sXQ2J/nLgh2Z+7BZQrAlbAsq5
KWGE0HH4sw67uldyUP/qixtvEtky0c4g7f5XbjOdPr5ltQ/XsDSLc2Hrh+mUag+9
dNzE3bBkvZPLfrglzqHDo7t3gPxTrWOC8T3W66zAwOmbj+Zv/Opyc2TSgs+1Pox/
uG2eA89DfaASUr/dcKy6sSN4csecu2dw6rqbOJ14wBf1JDnXh90=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:35 2023 by rpki-client on console-ams.rpki-client.org