Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BOOKS/6FwOrefUeBxoZyljKV4boa4ognA.roa
File: 6FwOrefUeBxoZyljKV4boa4ognA.roa (raw, json)
Hash identifier: hhgwE0iONNtcGAl3V/QNbGx9c0Xt8x4z8WuAOdhGmmQ=
Subject key identifier: E8:5C:0E:AD:E7:D4:78:1C:68:67:29:63:29:5E:1B:A1:AE:28:82:70
Certificate issuer: /CN=1AADEB4D45D7941D9B53EF4C2CC61B9602476FCA
Certificate serial: 0F0C
Authority key identifier: 1A:AD:EB:4D:45:D7:94:1D:9B:53:EF:4C:2C:C6:1B:96:02:47:6F:CA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Gq3rTUXXlB2bU-9MLMYblgJHb8o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BOOKS/6FwOrefUeBxoZyljKV4boa4ognA.roa
Signing time: Wed 14 Sep 2022 01:40:13 +0000
ROA not before: Wed 14 Sep 2022 01:40:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 103.125.228.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3852 (0xf0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1AADEB4D45D7941D9B53EF4C2CC61B9602476FCA
Validity
Not Before: Sep 14 01:40:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E85C0EADE7D4781C68672963295E1BA1AE288270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:02:d8:7a:48:ae:fc:90:ae:ed:f6:d6:d7:f4:
96:10:88:42:bc:4f:7d:56:1d:80:29:4d:f1:f5:39:
8a:a5:95:a0:3c:b1:f4:07:81:76:66:60:5b:c5:84:
0b:66:04:a5:bd:86:4c:b8:68:1a:b9:fa:b1:15:a1:
3b:9c:61:98:bd:b6:b3:c1:d1:21:ea:a3:b6:21:c3:
8a:42:8d:52:c0:3d:ba:a3:ba:e0:d1:9c:1d:e6:5c:
05:d3:01:ff:34:e0:c1:a3:f7:b5:18:3d:5c:9b:54:
ca:1e:40:4b:87:d3:13:da:8d:95:67:a1:0d:3e:c2:
36:fe:2a:22:64:67:b2:ac:e4:a5:10:91:a9:f7:c1:
7c:cf:f0:49:55:67:5a:87:8a:f0:ac:19:d6:b6:55:
b7:4d:ee:4a:cf:fd:0c:2a:14:3b:a0:4c:af:a8:3f:
c3:ee:42:86:fb:4c:49:23:1a:2c:3a:db:0e:cd:3a:
ad:cc:cf:e9:7f:81:d8:11:38:ef:30:8f:82:0f:63:
be:09:8c:d7:78:99:e8:e8:c6:b8:72:5e:8b:e0:f8:
13:e6:5d:41:73:de:e3:cb:bb:17:77:31:b6:7f:cc:
7c:c5:db:93:3d:bf:cc:80:39:9c:c5:b6:13:8b:a3:
fb:2a:7c:dd:0e:a7:b4:b7:4a:77:78:bc:7a:9d:e0:
a0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:5C:0E:AD:E7:D4:78:1C:68:67:29:63:29:5E:1B:A1:AE:28:82:70
X509v3 Authority Key Identifier:
keyid:1A:AD:EB:4D:45:D7:94:1D:9B:53:EF:4C:2C:C6:1B:96:02:47:6F:CA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BOOKS/Gq3rTUXXlB2bU-9MLMYblgJHb8o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Gq3rTUXXlB2bU-9MLMYblgJHb8o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BOOKS/6FwOrefUeBxoZyljKV4boa4ognA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.125.228.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:58:fe:ae:80:11:80:fd:65:3d:16:eb:92:f9:e6:4f:6e:30:
d0:fa:d6:7d:8f:da:db:c3:c4:dd:7d:1c:71:48:8c:56:7a:1c:
b6:7e:04:3b:29:d4:87:04:10:70:84:06:47:84:4c:1a:c9:0a:
17:20:75:08:0c:04:53:92:52:43:1a:bf:3b:6a:5f:ed:c2:5e:
dd:6e:08:fe:21:b7:75:2a:99:1a:9e:d9:7a:10:a2:87:6c:f5:
8a:8c:56:66:11:3a:6c:33:4b:c3:07:b4:07:40:8f:6c:8f:90:
58:31:1b:17:04:15:1b:5e:dd:cc:3a:34:82:9f:0d:1a:6c:aa:
5b:d7:3f:69:a5:fc:a7:ed:09:58:0a:fd:60:21:b8:de:b9:3f:
3f:b3:72:7a:a6:0d:1a:bd:12:4c:92:c5:a4:fb:ed:30:0a:97:
23:ed:3d:b1:36:04:02:dc:cb:15:27:7c:27:b9:ba:45:3b:a9:
3d:54:74:db:72:97:9f:53:ff:93:bc:54:bb:89:6e:65:0d:34:
50:31:9b:c3:7f:65:e8:1d:32:64:5e:d9:6c:09:06:fd:c2:60:
a5:a9:72:02:0e:3d:d1:60:d5:3d:86:98:de:97:70:6e:0d:ae:
10:52:89:7f:df:af:97:1c:13:26:ae:fa:25:45:19:63:9a:ee:
9b:4b:9b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:36 2023 by rpki-client on console-ams.rpki-client.org