Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uLdJ6ERfkF9OlMl7Dh1ZNU32V3g.roa
File: uLdJ6ERfkF9OlMl7Dh1ZNU32V3g.roa (raw, json)
Hash identifier: YsgqfCUk7RODxR6880gSTqgbyzNKNhSqyoG+xGzOPCs=
Subject key identifier: B8:B7:49:E8:44:5F:90:5F:4E:94:C9:7B:0E:1D:59:35:4D:F6:57:78
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 201D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uLdJ6ERfkF9OlMl7Dh1ZNU32V3g.roa
Signing time: Fri 25 Nov 2022 04:38:20 +0000
ROA not before: Fri 25 Nov 2022 04:38:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.244.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8221 (0x201d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:38:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B8B749E8445F905F4E94C97B0E1D59354DF65778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4b:aa:41:4f:25:4e:ce:76:a8:55:f5:ee:a4:
bc:be:17:33:b5:af:63:8a:4e:84:53:e4:26:b9:19:
85:d7:26:40:96:f0:88:0b:55:ca:68:79:e8:87:9a:
24:20:e8:d7:e0:6d:ef:b1:53:73:c5:d5:56:64:a7:
c8:f8:46:51:90:9f:79:9e:12:21:63:bc:96:b8:1b:
1b:c3:64:14:a6:2f:a6:3c:cc:3e:81:2f:72:ac:82:
64:38:4c:50:6a:61:73:8c:67:53:54:ed:25:9f:79:
92:48:f8:3b:7e:37:75:ec:b8:d8:5b:b7:43:62:73:
a2:d1:0e:f9:3f:9b:c9:ec:22:df:be:f2:a8:3c:d3:
8d:e0:89:99:fe:ca:ce:9d:ce:f9:8c:af:88:54:b0:
87:6d:f5:6b:be:31:a8:a1:6b:c5:3e:31:53:87:35:
27:4a:94:8e:70:43:8a:87:4c:71:4e:d1:f1:93:cf:
45:7b:1b:7d:ae:ff:cf:f1:20:59:83:59:cb:43:fd:
f5:01:46:c7:51:f9:9f:10:86:f5:62:75:56:73:6a:
55:1f:b8:9b:52:6e:36:90:0e:e0:66:f9:24:cf:69:
e4:03:94:69:7b:ba:d7:4d:a1:b0:2c:06:8d:8d:bf:
55:e2:3c:57:5d:c3:5d:43:38:8a:56:02:56:7b:2c:
ee:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B7:49:E8:44:5F:90:5F:4E:94:C9:7B:0E:1D:59:35:4D:F6:57:78
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uLdJ6ERfkF9OlMl7Dh1ZNU32V3g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.244.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:5c:1a:e1:97:05:b7:f9:da:51:6a:7e:92:47:99:1f:8f:47:
68:88:e1:cc:03:bb:f5:08:ae:17:a0:d5:c5:3b:a3:f4:5e:73:
d2:31:61:65:2f:16:42:81:43:63:a3:99:6b:97:ea:f3:4b:a2:
33:f3:df:f5:35:10:df:28:a1:3d:19:21:94:80:fd:a7:d3:e1:
3c:88:19:21:e8:a2:bb:e3:b5:43:25:8a:3c:b7:cf:e1:e1:b2:
8f:b4:18:9a:59:8c:8b:86:2d:9a:47:07:65:dd:07:5f:35:1f:
5a:ff:3a:dc:5e:dd:46:e9:61:00:1b:45:04:76:11:bd:d7:84:
9f:48:75:a5:b2:ed:3b:8a:15:3a:89:cf:e3:3b:52:f3:95:2a:
36:20:44:5c:14:c5:80:00:8d:a4:5d:1c:c6:f7:11:d5:d0:ad:
fa:e0:aa:a2:8e:24:fc:b6:4c:79:45:32:c9:01:5c:39:bd:5a:
5b:55:f1:11:59:96:f8:c3:f8:cd:10:bc:dd:d0:c6:9c:ba:c5:
89:06:de:fa:dc:fd:b6:d8:db:29:0c:bb:9d:75:49:13:b2:77:
01:79:2b:13:b1:a3:7c:90:e0:81:85:86:64:4d:c4:9e:be:b4:
20:4f:15:b6:00:8a:db:d9:0a:e9:7a:1c:c6:a3:20:82:d3:f6:
94:a4:2f:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:35 2023 by rpki-client on console-ams.rpki-client.org