Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/RMZTffGnzd_NDOq2K2-4QQF8aho.roa
File: RMZTffGnzd_NDOq2K2-4QQF8aho.roa (raw, json)
Hash identifier: YA/KTb0SGUcqJmzOfxqIKf6NXotFbPaa+7cWkP4beVI=
Subject key identifier: 44:C6:53:7D:F1:A7:CD:DF:CD:0C:EA:B6:2B:6F:B8:41:01:7C:6A:1A
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0336
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/RMZTffGnzd_NDOq2K2-4QQF8aho.roa
Signing time: Thu 15 Sep 2022 02:34:45 +0000
ROA not before: Thu 15 Sep 2022 02:34:45 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 60614
IP address blocks: 103.156.184.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 822 (0x336)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Sep 15 02:34:45 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=44C6537DF1A7CDDFCD0CEAB62B6FB841017C6A1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:71:02:65:ac:95:ea:13:64:25:2f:3b:fb:b6:
4d:16:2c:f7:d5:06:e0:0b:11:98:8f:e1:29:2b:a3:
9b:4c:7f:84:40:67:97:5a:cd:d3:7e:2a:e4:f8:50:
a9:f7:f0:c3:96:f4:05:14:f1:70:f4:bd:e7:01:e1:
18:90:bd:d0:7c:f7:63:9a:07:4b:cb:b0:07:de:bf:
c4:e8:b3:d2:ff:28:b4:44:b6:50:69:3f:e7:2d:59:
08:1a:ce:80:4c:36:23:b8:f2:52:3d:d9:50:76:3e:
36:86:ea:13:59:6e:fa:67:f4:31:b3:c0:97:4a:9d:
6d:3b:e8:3e:e8:1c:e0:e2:a5:14:b3:13:2f:d4:f6:
d3:45:d0:cf:2b:74:aa:f0:ed:08:ff:c8:70:b3:55:
f4:7c:0d:57:86:8f:5b:18:57:0b:d8:30:07:1f:58:
f4:8d:e7:1a:6c:9b:8c:86:af:43:ad:3e:d9:48:fb:
e4:c2:86:b3:98:4f:f6:5f:9b:26:b8:bf:11:65:29:
98:84:41:b5:2e:f5:37:74:6d:be:73:aa:22:c3:eb:
0a:ee:c2:73:2a:0f:72:26:c6:d9:80:1c:19:8b:17:
c2:dd:bb:ce:cd:1b:0b:e6:7c:ae:50:3a:1d:cc:c7:
13:1c:d5:25:3b:ea:33:30:49:a9:a7:7e:10:7f:9e:
8e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C6:53:7D:F1:A7:CD:DF:CD:0C:EA:B6:2B:6F:B8:41:01:7C:6A:1A
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/RMZTffGnzd_NDOq2K2-4QQF8aho.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.156.184.0/24
Signature Algorithm: sha256WithRSAEncryption
04:f9:f2:af:57:8d:18:59:d4:ee:8b:ab:92:5c:19:bd:80:20:
a7:e7:32:2e:d3:52:ef:57:01:dd:aa:33:48:3d:9d:d6:2e:54:
2d:96:5e:6b:3f:82:62:f1:0e:3f:35:30:a9:d3:8e:8d:ef:c7:
23:7e:98:42:2c:76:6d:0a:bb:cd:0c:5a:82:bb:2b:1c:3a:dc:
9e:c9:b5:79:ce:79:32:d9:ae:f5:b3:37:e2:b5:ef:65:e3:33:
1e:99:cd:6b:69:15:a7:7f:5a:ae:d0:24:ff:28:84:23:3f:21:
5f:c8:56:32:d8:48:cd:e0:8a:13:ba:b4:3f:bc:df:a9:f2:58:
75:44:ce:b3:7a:6d:1a:75:7c:3f:b5:3a:e0:31:04:4b:3d:d8:
ae:da:23:d5:ea:93:71:b7:63:9e:a5:b9:06:e1:4c:32:18:4a:
c0:89:58:40:5e:fa:13:63:2e:22:20:6c:41:8b:52:5d:af:d0:
57:fb:7f:e5:db:ed:79:fd:cf:70:e7:a4:6a:3c:43:4d:98:63:
df:4f:71:e1:11:99:43:5d:ef:7a:29:04:ef:6b:f8:53:3a:84:
da:a1:8c:8a:44:1c:f0:0d:96:e2:00:ca:68:fa:af:ac:d9:25:
bb:81:a9:3d:d2:b7:30:46:9f:f4:a6:6f:f9:34:c1:18:a8:21:
1a:92:d0:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:17 2023 by rpki-client on console-ams.rpki-client.org