Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/t95155myz3jRvfdiAl6HnyuYc8Y.roa
File: t95155myz3jRvfdiAl6HnyuYc8Y.roa (raw, json)
Hash identifier: MtzfKC1Dxuz0vL48wsfW+6NumjON5Cr9LGhjFUb8M0o=
Subject key identifier: B7:DE:75:E7:99:B2:CF:78:D1:BD:F7:62:02:5E:87:9F:2B:98:73:C6
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21EB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/t95155myz3jRvfdiAl6HnyuYc8Y.roa
Signing time: Fri 25 Nov 2022 04:40:33 +0000
ROA not before: Fri 25 Nov 2022 04:40:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 106.1.152.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8683 (0x21eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B7DE75E799B2CF78D1BDF762025E879F2B9873C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5d:2e:cc:4f:be:12:47:28:5d:05:63:c3:c1:
d2:2f:47:3b:77:e4:d7:f9:4b:70:62:ea:44:14:58:
27:db:85:6f:75:c1:2f:1e:d0:d6:c5:6c:47:c5:48:
cf:6f:9c:ed:b5:71:98:7f:67:79:3e:9f:ad:e4:54:
96:e5:59:95:71:a3:d5:53:c3:01:b0:df:8a:f4:92:
c6:5f:db:f6:63:6b:c7:32:81:b2:b7:a9:19:cd:59:
b8:13:56:0b:ec:48:49:53:2d:68:d4:aa:d4:fe:bf:
1f:86:4d:f8:12:3d:59:b1:41:94:e0:2a:a2:93:0d:
10:f7:b5:d8:d3:f2:1f:67:4d:29:df:d9:03:ae:b5:
37:66:c0:f4:9a:54:1c:76:32:3f:82:e5:96:32:39:
f6:49:f5:d1:cb:ce:3f:c7:13:8b:da:c7:05:57:b3:
dd:a7:61:6c:98:ca:a6:e7:ba:0e:8f:70:08:a0:ef:
0f:64:77:5b:b6:21:6c:5d:b6:48:14:74:40:c4:11:
de:5f:ae:ba:6b:99:e2:68:ab:eb:d0:f8:71:14:43:
d0:48:d2:6a:f2:3b:07:21:5f:70:8e:a8:6b:96:f0:
a7:81:84:b7:d6:34:ea:84:b9:06:cf:7e:90:aa:16:
5f:04:75:9a:f6:e1:d6:19:80:d4:bf:50:2f:4f:33:
b3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:DE:75:E7:99:B2:CF:78:D1:BD:F7:62:02:5E:87:9F:2B:98:73:C6
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/t95155myz3jRvfdiAl6HnyuYc8Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.152.0/22
Signature Algorithm: sha256WithRSAEncryption
72:f7:48:94:eb:23:d5:ae:3c:52:c0:05:64:e0:c0:06:7c:e4:
19:2f:e2:d0:52:51:e9:e6:30:b7:0c:92:93:0c:ec:77:75:55:
e6:aa:76:1f:f2:b6:28:e3:3e:e4:b4:d0:b6:ca:97:e8:0a:0a:
94:9b:c3:94:e0:17:8e:04:86:5b:e7:8a:76:48:ce:c1:d3:73:
04:d2:49:72:46:18:4e:c7:98:27:99:ca:7d:07:b1:8e:6b:35:
8d:96:8c:47:e3:35:2b:3e:93:e8:b7:8f:93:79:99:dd:7b:ce:
5a:5e:2d:52:77:77:e8:1b:78:f2:30:8a:16:9c:01:b4:6e:38:
fd:f5:bf:ca:04:f7:ac:6f:d3:8f:a2:15:6a:0a:ba:ee:9d:61:
db:8d:8d:e6:d3:d0:98:9d:3e:d5:e8:9c:9f:0b:01:6c:e4:0c:
74:11:19:d2:5b:3c:2b:d9:b1:47:ed:99:8a:73:e7:a5:4e:1c:
ba:55:00:0e:73:c0:28:f0:31:68:9a:4d:2d:b4:43:8e:66:b7:
11:7b:36:ad:e4:79:a1:bf:7c:40:ec:e4:c7:d0:04:86:be:68:
10:21:9e:eb:dc:1f:a7:0e:f8:24:91:66:7d:9b:33:91:bc:19:
bd:94:42:0f:02:21:bb:42:8e:9e:50:cb:2b:78:fc:49:69:48:
c1:5e:11:55
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIeswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwMzNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEI3REU3NUU3OTlCMkNG
NzhEMUJERjc2MjAyNUU4NzlGMkI5ODczQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6XS7MT74SRyhdBWPDwdIvRzt35Nf5S3Bi6kQUWCfbhW91wS8e
0NbFbEfFSM9vnO21cZh/Z3k+n63kVJblWZVxo9VTwwGw34r0ksZf2/Zja8cygbK3
qRnNWbgTVgvsSElTLWjUqtT+vx+GTfgSPVmxQZTgKqKTDRD3tdjT8h9nTSnf2QOu
tTdmwPSaVBx2Mj+C5ZYyOfZJ9dHLzj/HE4vaxwVXs92nYWyYyqbnug6PcAig7w9k
d1u2IWxdtkgUdEDEEd5frrprmeJoq+vQ+HEUQ9BI0mryOwchX3COqGuW8KeBhLfW
NOqEuQbPfpCqFl8EdZr24dYZgNS/UC9PM7NfAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUt95155myz3jRvfdiAl6HnyuYc8YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3Q5NTE1NW15ejNqUnZmZGlB
bDZIbnl1WWM4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq
AZgwDQYJKoZIhvcNAQELBQADggEBAHL3SJTrI9WuPFLABWTgwAZ85Bkv4tBSUenm
MLcMkpMM7Hd1Veaqdh/ytijjPuS00LbKl+gKCpSbw5TgF44EhlvninZIzsHTcwTS
SXJGGE7HmCeZyn0HsY5rNY2WjEfjNSs+k+i3j5N5md17zlpeLVJ3d+gbePIwihac
AbRuOP31v8oE96xv04+iFWoKuu6dYduNjebT0JidPtXonJ8LAWzkDHQRGdJbPCvZ
sUftmYpz56VOHLpVAA5zwCjwMWiaTS20Q45mtxF7Nq3keaG/fEDs5MfQBIa+aBAh
nuvcH6cO+CSRZn2bM5G8Gb2UQg8CIbtCjp5Qyyt4/ElpSMFeEVU=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:11 2023 by rpki-client on console-fra.rpki-client.org