Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zqz0ADYV86pI7bhmLlJzoWRI3n4.roa
File: zqz0ADYV86pI7bhmLlJzoWRI3n4.roa (raw, json)
Hash identifier: G+24rcp5CUrN1ra/IAibBhiYBLnk93lDh6RFfgle/3o=
Subject key identifier: CE:AC:F4:00:36:15:F3:AA:48:ED:B8:66:2E:52:73:A1:64:48:DE:7E
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 21A7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zqz0ADYV86pI7bhmLlJzoWRI3n4.roa
Signing time: Fri 25 Nov 2022 04:40:10 +0000
ROA not before: Fri 25 Nov 2022 04:40:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38841
IP address blocks: 118.233.156.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8615 (0x21a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Nov 25 04:40:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CEACF4003615F3AA48EDB8662E5273A16448DE7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:29:9c:a9:d8:5f:96:85:86:93:02:a8:3c:ee:
b8:41:29:bc:4e:c8:a5:00:07:24:b7:86:5e:45:be:
6f:8c:d7:04:c7:4c:ba:96:7d:8e:bf:e7:c2:4a:63:
65:c1:79:99:1f:c4:8f:8c:c9:f2:4f:e5:be:53:0a:
69:3e:94:52:0b:85:8c:97:14:fa:06:4f:11:72:0b:
36:20:65:a4:59:d1:8f:3f:8c:a8:f1:ba:83:9c:7f:
8e:4f:d6:3a:dd:6e:79:b2:61:c7:55:41:7e:62:59:
3d:0a:2f:2d:02:2c:6c:60:44:50:d5:9d:f3:7e:b4:
b8:99:34:6e:13:89:c6:7c:48:0d:24:5d:86:db:1f:
c3:62:6f:9f:04:41:dc:b3:1c:ec:f7:b4:99:dc:30:
42:d4:ad:e2:77:f7:d3:97:12:30:c4:18:a6:4a:6e:
06:81:01:e1:d5:d6:e4:6c:29:05:ed:87:46:d9:0a:
66:dd:51:a4:02:18:64:11:d1:27:fa:f4:ee:34:d0:
56:c4:32:e7:8b:99:5f:d5:4a:40:40:79:b3:ba:bd:
5a:2a:d3:d9:d4:62:0d:fe:8d:3b:f9:9d:25:fb:ac:
c4:14:df:79:05:cc:e6:0a:a2:74:62:2b:03:a6:14:
ba:a9:5e:09:8d:76:eb:1f:2a:0d:34:be:34:12:22:
db:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:AC:F4:00:36:15:F3:AA:48:ED:B8:66:2E:52:73:A1:64:48:DE:7E
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zqz0ADYV86pI7bhmLlJzoWRI3n4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.233.156.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:2a:12:6a:3e:3b:df:ab:9f:62:f4:73:9f:60:00:c9:b8:83:
92:03:a0:c6:a2:95:5c:0a:dd:92:7b:50:d9:b3:23:ea:bb:a1:
ba:80:b0:58:64:f1:9b:ca:a9:90:d2:3d:aa:b4:7a:12:93:16:
e6:61:f4:c2:84:15:9d:37:ee:13:f7:46:d8:f1:3f:29:f6:bd:
fc:d1:d1:89:3d:a3:7d:a1:07:ff:bd:f4:9b:a7:8b:7b:5d:ba:
70:57:0a:9e:c5:f6:8b:0c:fe:7c:45:c5:46:21:93:aa:90:74:
e2:9a:9c:02:92:6c:a6:36:1a:bd:99:36:23:1e:dc:22:b1:b4:
50:5a:e8:02:8e:8f:4d:10:84:38:61:fe:9a:58:da:5d:ba:38:
01:69:7b:6f:76:86:14:8e:04:0e:42:ae:e4:a4:34:c8:91:ef:
ed:4a:e0:a4:04:87:28:89:68:6a:59:2b:28:d7:31:6e:90:f5:
fc:6a:3a:3d:7c:62:e0:fe:78:d7:22:fb:9d:9c:bd:f3:54:33:
8f:8c:69:8d:24:58:48:2e:ad:3c:e9:76:0d:65:80:18:cf:78:
b8:63:1d:03:2c:1c:0c:1d:46:16:bc:a5:8c:6f:e0:16:59:c2:
c3:a9:9e:0b:3d:fd:70:10:bb:ea:14:b6:3e:3d:67:86:25:b1:
1b:9a:53:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:37 2023 by rpki-client on console-ams.rpki-client.org