Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWDS/ipYvDuI2jfjObMJTzfMH9dRcWEU.roa
File: ipYvDuI2jfjObMJTzfMH9dRcWEU.roa (raw, json)
Hash identifier: 0Q29M8n9WjvTDc2u4V4nRHEvck2BtnenMkC0BpBTZLo=
Subject key identifier: 8A:96:2F:0E:E2:36:8D:F8:CE:6C:C2:53:CD:F3:07:F5:D4:5C:58:45
Certificate issuer: /CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB
Certificate serial: 07DC
Authority key identifier: 29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/ipYvDuI2jfjObMJTzfMH9dRcWEU.roa
Signing time: Thu 15 Sep 2022 02:34:49 +0000
ROA not before: Thu 15 Sep 2022 02:34:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131668
IP address blocks: 103.147.22.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2012 (0x7dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB
Validity
Not Before: Sep 15 02:34:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8A962F0EE2368DF8CE6CC253CDF307F5D45C5845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:be:55:28:ef:5e:3d:7f:ea:56:76:20:79:dd:
58:a5:42:33:51:d7:7c:b2:e1:f8:80:09:0b:b9:48:
6f:ae:88:89:65:4c:47:86:2d:32:0e:7e:17:29:0f:
b9:ba:e5:26:d4:32:e8:e2:85:b8:df:d5:e0:e9:7b:
0d:73:bf:2b:f9:8e:e3:7d:7f:32:fa:97:10:ec:d4:
22:1d:a5:46:42:11:a2:91:4d:4c:6f:c6:30:bf:c2:
be:1d:e9:83:f3:67:61:c2:db:12:59:ce:04:4c:16:
14:17:00:5e:44:43:6e:99:f6:6c:cf:3b:31:a5:2c:
ec:d0:62:c0:28:3f:20:82:61:5c:13:4a:8e:51:32:
65:59:f9:21:bf:e9:b2:54:8d:1f:d0:28:1a:31:a4:
75:ec:84:46:be:b6:4b:c6:ca:de:13:55:73:cf:2c:
64:1e:da:50:d5:e3:50:b1:f8:15:e4:9f:80:7a:3f:
89:b6:d3:00:31:ad:06:54:26:9f:49:9a:d7:a9:9a:
09:f7:54:45:88:0e:eb:b9:4e:8f:18:91:9f:be:cc:
53:7a:4e:9d:3b:ea:47:02:e0:98:2a:be:72:b2:37:
c8:be:14:9d:b9:22:8f:00:5c:b0:e5:a5:d1:3b:fe:
2a:24:87:fb:55:b4:e7:80:85:d4:8a:ec:40:60:4d:
e5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:96:2F:0E:E2:36:8D:F8:CE:6C:C2:53:CD:F3:07:F5:D4:5C:58:45
X509v3 Authority Key Identifier:
keyid:29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/ipYvDuI2jfjObMJTzfMH9dRcWEU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.22.0/23
Signature Algorithm: sha256WithRSAEncryption
50:38:af:b1:e8:be:c5:30:50:57:58:51:6d:a0:29:25:dd:36:
3a:43:41:2b:c9:0c:fe:f1:19:58:ad:6e:7e:46:5b:ba:a1:bc:
d5:2a:22:47:ab:69:02:35:87:5f:c9:74:dd:3c:a1:f6:05:c6:
4b:d9:4b:93:c0:5f:76:1b:e5:92:dd:0d:aa:e1:06:a3:aa:75:
53:4e:aa:07:56:ac:5b:2a:a9:93:19:26:f4:96:5e:2e:23:0e:
65:a7:ca:db:fc:b6:1b:a5:be:91:c7:95:33:28:dd:e0:e7:c5:
63:c5:bf:c8:39:a2:96:75:7c:bc:c2:4b:d6:ae:cd:b9:c4:69:
b3:42:7c:a0:03:14:6d:37:f0:2b:19:2e:67:e4:4e:e7:a1:6d:
81:5c:ca:81:4a:f4:16:b0:82:61:b7:fd:85:ca:48:f7:ef:4e:
a8:12:52:e7:42:d2:89:25:1f:27:64:cb:3c:f4:d4:e8:3a:ac:
62:8c:0e:3a:60:88:bc:06:de:06:c1:a4:5d:af:6b:71:53:7f:
1e:70:88:7f:46:e9:e7:29:55:59:3e:db:bf:61:e1:60:44:b2:
81:4e:f3:5c:76:0f:fb:d1:5c:5d:be:75:df:35:1b:8b:78:c7:
e2:04:11:01:d2:ac:65:2f:81:ab:9e:10:ca:67:08:ab:b8:f0:
c0:95:40:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org