Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASGC/kQhnsyeK5XvSjoat6WWu1DjorFU.roa
File: kQhnsyeK5XvSjoat6WWu1DjorFU.roa (raw, json)
Hash identifier: Hck0N7ve7VlMFd55eK0uVzQitJ+ZFZw4Joe0UoI5cpE=
Subject key identifier: 91:08:67:B3:27:8A:E5:7B:D2:8E:86:AD:E9:65:AE:D4:38:E8:AC:55
Certificate issuer: /CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Certificate serial: 0A3D
Authority key identifier: 76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/kQhnsyeK5XvSjoat6WWu1DjorFU.roa
Signing time: Thu 15 Sep 2022 02:48:50 +0000
ROA not before: Thu 15 Sep 2022 02:48:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24167
IP address blocks: 202.140.160.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2621 (0xa3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Validity
Not Before: Sep 15 02:48:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=910867B3278AE57BD28E86ADE965AED438E8AC55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f9:ae:92:dd:fd:c6:85:f5:d1:c6:7c:ff:03:
7b:cd:8c:30:0f:e3:e3:f2:eb:6f:b9:d9:05:d3:21:
4e:4a:28:ca:d3:c5:63:bf:ac:d3:bf:e5:89:ff:ee:
a5:7e:bd:fe:96:0b:7a:98:68:b9:87:fb:0c:98:8b:
fb:4d:c8:55:b4:0f:51:10:a7:44:87:ee:d1:c4:26:
2a:37:ee:99:53:6d:a6:be:01:5b:00:dc:20:fd:3f:
1e:a1:ae:9f:00:68:15:e2:93:bd:dd:89:e6:5e:9e:
60:f2:50:1a:98:e6:28:49:a7:96:d3:3f:59:f6:36:
5b:ef:e1:98:2a:f8:83:fe:36:ca:d3:d5:ce:b3:d0:
de:27:1f:9d:4d:d9:38:79:44:e6:c7:61:31:ea:17:
05:85:ab:16:ef:f3:c5:47:2d:18:5a:7b:43:7c:8c:
05:73:0a:50:88:c0:3d:7c:48:a7:47:4a:c4:48:5c:
07:cf:09:56:e7:2b:87:50:99:96:fe:30:31:60:b8:
cd:61:ec:ee:35:b2:19:dd:4e:99:31:d1:9a:a4:c0:
23:1c:74:60:43:13:5d:0d:81:f6:30:8b:9e:89:1a:
1d:92:fc:27:d4:ef:1c:0a:fe:d5:9f:66:8d:3e:62:
b6:b6:3a:e8:e0:ce:fe:ca:0a:55:03:7e:cf:fa:83:
87:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:08:67:B3:27:8A:E5:7B:D2:8E:86:AD:E9:65:AE:D4:38:E8:AC:55
X509v3 Authority Key Identifier:
keyid:76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/dg6p94M-3GNm_V4jpCa89iuwHmw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/kQhnsyeK5XvSjoat6WWu1DjorFU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.140.160.0/19
Signature Algorithm: sha256WithRSAEncryption
e6:8e:cc:e5:3b:2c:29:b3:b6:42:2c:7e:aa:51:67:18:92:06:
51:28:ff:f6:bc:bc:3f:f7:46:48:33:db:0a:ed:74:cd:b6:6f:
58:04:b9:e5:3e:d4:4b:5f:4c:d5:37:3b:a7:52:6f:90:c0:b4:
35:26:55:d3:95:99:d9:c6:11:af:8d:2a:fa:d4:80:92:a3:1e:
2d:2a:6b:98:a2:36:0c:9b:c4:ad:57:36:1e:4c:28:32:c5:ba:
fa:4c:f8:9d:70:7b:e8:5d:86:cf:52:ba:c5:69:68:45:94:d0:
cf:2f:d3:7d:61:a7:93:45:ad:23:fb:42:f4:e9:7a:6a:d3:e8:
03:7d:aa:53:36:22:fc:43:77:67:ad:ef:31:1a:1c:45:75:f8:
c9:78:92:10:17:96:11:79:7d:e9:39:bb:3f:a7:9f:4c:dd:7a:
eb:5c:e8:5f:1c:12:e4:e6:68:47:bb:b7:93:22:c3:fa:37:c4:
36:17:0e:4f:a5:29:3f:c2:d4:32:42:4e:85:9d:d5:3f:02:16:
f4:d5:9e:88:72:13:75:e7:75:21:48:5a:b3:7c:58:b5:ff:fa:
25:04:59:26:47:f5:26:d5:b6:7f:d8:01:8e:86:f3:95:af:bc:
3c:18:6d:86:7e:79:29:f9:00:8a:5b:5a:78:f6:9d:38:9f:19:
a4:8a:a2:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:46 2023 by rpki-client on console-fra.rpki-client.org