Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uZ9nlCZhfiQ2PKZH3kXcRGCVf4Y.roa
File: uZ9nlCZhfiQ2PKZH3kXcRGCVf4Y.roa (raw, json)
Hash identifier: CMkMF05rjDgGOU08ATSnLhLmel9HuZqSAQ2nkGpZ4yQ=
Subject key identifier: B9:9F:67:94:26:61:7E:24:36:3C:A6:47:DE:45:DC:44:60:95:7F:86
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 2209
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uZ9nlCZhfiQ2PKZH3kXcRGCVf4Y.roa
Signing time: Fri 25 Nov 2022 04:40:41 +0000
ROA not before: Fri 25 Nov 2022 04:40:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 123.193.0.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8713 (0x2209)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:41 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B99F679426617E24363CA647DE45DC4460957F86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0a:a5:fd:73:db:63:92:32:89:91:ae:00:74:
3e:b5:53:a4:02:20:44:14:6b:75:18:87:d8:80:b0:
a4:eb:e5:75:e1:71:77:21:9b:3a:b8:58:fe:86:a5:
7b:82:90:86:ee:95:54:c7:3c:fa:74:da:18:24:d2:
43:86:f4:3d:3b:83:ad:67:8e:aa:75:d4:62:df:ec:
a0:47:43:7e:c1:b7:bd:f1:45:7c:71:95:2c:96:cf:
3f:a3:41:11:c4:44:01:22:c0:48:cc:c3:a6:5e:b1:
6b:d6:b9:c7:75:70:be:33:89:8f:e3:f4:95:c1:28:
3d:41:10:be:5d:7c:e0:08:28:0e:79:d1:47:6f:29:
b6:9e:02:13:b8:07:da:ce:43:8e:15:56:b5:bb:fe:
b8:79:4c:60:b5:2c:4c:60:35:6b:9d:21:2a:31:17:
39:57:6b:3e:72:f6:a3:fc:33:e9:6a:f8:f8:b2:10:
55:b3:c9:61:12:46:a2:99:10:07:57:9c:ae:6e:f0:
c9:67:08:05:30:b9:b8:35:66:21:ad:33:0c:0c:8a:
60:fa:dd:19:9b:52:ae:16:ef:70:0c:85:ac:2b:fd:
f8:47:c6:10:b2:a6:02:82:a1:9d:a3:b7:84:b0:84:
bd:b5:a7:20:90:3e:87:9e:26:5b:a0:0a:3b:e3:63:
32:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:9F:67:94:26:61:7E:24:36:3C:A6:47:DE:45:DC:44:60:95:7F:86
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uZ9nlCZhfiQ2PKZH3kXcRGCVf4Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.193.0.0/21
Signature Algorithm: sha256WithRSAEncryption
56:6f:c7:2c:32:85:36:65:1e:c1:2e:e9:a1:b7:0f:57:c9:02:
91:67:32:bf:da:44:32:f9:56:a8:ce:23:c4:4e:16:b5:80:44:
14:50:8a:8c:bb:d6:c7:19:8c:2b:4d:35:3c:a7:0f:9d:56:12:
82:95:15:a1:ba:e2:30:89:11:38:77:39:1f:19:e1:7a:ad:cb:
0c:1a:9f:dc:b9:90:7a:de:f0:4c:3c:cd:d4:67:b3:9e:7a:65:
15:f2:f5:0d:b0:0f:11:08:5d:c1:81:51:d4:fd:0f:c8:66:5c:
10:aa:6e:3d:af:e5:03:c5:e3:e8:9c:08:0c:64:4d:f9:41:b4:
fa:95:33:fb:d5:0c:96:73:0f:8a:81:ad:68:76:85:38:5f:eb:
28:8a:32:df:3c:3b:f7:35:d7:4b:d3:cf:c4:04:0f:50:4c:bb:
7d:6e:ca:56:0f:8f:b1:fd:bb:ad:86:96:1b:b2:d2:73:9a:24:
bc:22:7e:56:d6:e2:1e:bc:b9:9c:5d:cc:ba:68:6f:34:7a:22:
fe:54:1d:26:4f:31:d2:34:91:86:17:e7:e0:a0:06:e3:be:12:
02:65:59:9c:1e:39:65:8f:0a:de:1a:cb:3f:d6:89:69:b9:b7:
2b:0c:43:37:ea:2f:2a:6a:77:8c:69:32:0f:42:19:43:96:1e:
ce:a8:7f:8a
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIgkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwNDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEI5OUY2Nzk0MjY2MTdF
MjQzNjNDQTY0N0RFNDVEQzQ0NjA5NTdGODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDECqX9c9tjkjKJka4AdD61U6QCIEQUa3UYh9iAsKTr5XXhcXch
mzq4WP6GpXuCkIbulVTHPPp02hgk0kOG9D07g61njqp11GLf7KBHQ37Bt73xRXxx
lSyWzz+jQRHERAEiwEjMw6ZesWvWucd1cL4ziY/j9JXBKD1BEL5dfOAIKA550Udv
KbaeAhO4B9rOQ44VVrW7/rh5TGC1LExgNWudISoxFzlXaz5y9qP8M+lq+PiyEFWz
yWESRqKZEAdXnK5u8MlnCAUwubg1ZiGtMwwMimD63RmbUq4W73AMhawr/fhHxhCy
pgKCoZ2jt4SwhL21pyCQPoeeJlugCjvjYzLzAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUuZ9nlCZhfiQ2PKZH3kXcRGCVf4YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3VaOW5sQ1poZmlRMlBLWkgz
a1hjUkdDVmY0WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wQAwDQYJKoZIhvcNAQELBQADggEBAFZvxywyhTZlHsEu6aG3D1fJApFnMr/aRDL5
VqjOI8ROFrWARBRQioy71scZjCtNNTynD51WEoKVFaG64jCJETh3OR8Z4Xqtywwa
n9y5kHre8Ew8zdRns556ZRXy9Q2wDxEIXcGBUdT9D8hmXBCqbj2v5QPF4+icCAxk
TflBtPqVM/vVDJZzD4qBrWh2hThf6yiKMt88O/c110vTz8QED1BMu31uylYPj7H9
u62Glhuy0nOaJLwiflbW4h68uZxdzLpobzR6Iv5UHSZPMdI0kYYX5+CgBuO+EgJl
WZweOWWPCt4ayz/WiWm5tysMQzfqLypqd4xpMg9CGUOWHs6of4o=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:35 2023 by rpki-client on console-ams.rpki-client.org