Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/8KvygQfR6ZVDspCl8HRcTNPY3uQ.roa
File: 8KvygQfR6ZVDspCl8HRcTNPY3uQ.roa (raw, json)
Hash identifier: DbpKY4jeKZFIm/v9h+iFGBUwuiqTDMNOkUTTr5UimiA=
Subject key identifier: F0:AB:F2:81:07:D1:E9:95:43:B2:90:A5:F0:74:5C:4C:D3:D8:DE:E4
Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A
Certificate serial: 09
Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/8KvygQfR6ZVDspCl8HRcTNPY3uQ.roa
Signing time: Fri 09 Dec 2022 02:36:50 +0000
ROA not before: Fri 09 Dec 2022 02:36:50 +0000
ROA not after: Tue 05 Dec 2023 15:30:09 +0000
asID: 134823
IP address blocks: 2400:c9e0::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A
Validity
Not Before: Dec 9 02:36:50 2022 GMT
Not After : Dec 5 15:30:09 2023 GMT
Subject: CN=F0ABF28107D1E99543B290A5F0745C4CD3D8DEE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:17:74:6d:3c:c7:6c:2f:bc:c2:78:78:fc:cf:
05:46:1f:73:cc:b5:85:79:e8:86:c4:4f:b6:8f:c1:
47:80:54:04:7a:88:88:8d:50:1e:2a:c0:34:1a:eb:
aa:df:d9:07:77:a8:bd:b1:38:4c:0b:0f:58:17:ab:
1a:e2:08:9a:e0:d6:f8:ee:fb:71:d4:1d:3c:c8:12:
ab:c0:28:e0:c1:18:9d:a6:61:92:da:5f:f5:ca:1f:
ca:2f:d1:8f:01:e7:7e:83:e9:c0:70:e6:19:f7:4e:
0f:e0:35:eb:32:07:74:80:04:d3:22:85:a6:85:65:
c2:b5:fe:85:35:26:e4:5a:20:d0:0d:30:fa:76:8b:
1b:ee:2d:3c:53:ca:04:b3:51:7f:2f:c2:7c:d0:0c:
0a:8f:6d:1b:f0:39:e8:a2:d0:d3:b1:57:cf:6e:92:
f2:96:61:b6:b8:ec:d4:a1:81:e4:05:41:b3:d5:64:
0a:f6:91:9f:cc:aa:f8:ca:9f:06:00:e4:be:dd:05:
f4:82:ce:f2:31:4e:a4:4e:6b:d9:e1:6a:9b:64:5c:
d7:00:f5:34:7b:da:ac:ce:5f:ae:d8:1f:93:be:93:
92:6d:d5:10:f8:20:22:45:78:1e:b6:f9:8e:1f:a0:
98:c1:dd:c6:b2:ac:62:ce:83:01:e6:bc:a4:a1:dd:
20:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:AB:F2:81:07:D1:E9:95:43:B2:90:A5:F0:74:5C:4C:D3:D8:DE:E4
X509v3 Authority Key Identifier:
keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/8KvygQfR6ZVDspCl8HRcTNPY3uQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:c9e0::/32
Signature Algorithm: sha256WithRSAEncryption
27:50:7c:ee:0b:5d:85:ab:09:f0:ba:a2:32:fc:55:21:5c:2e:
2c:18:79:09:01:1c:6a:0c:e3:90:89:9d:e7:87:f3:9b:96:22:
91:53:46:14:bf:eb:4d:49:02:77:9e:00:03:20:9b:40:90:af:
22:b2:94:cb:29:c0:51:cb:eb:ad:12:11:cb:33:49:83:6b:95:
e6:aa:ac:8c:bb:91:38:95:f9:59:e0:60:cc:52:56:30:8c:7e:
71:79:eb:26:fa:48:5b:bf:98:34:be:76:aa:3b:d2:9d:4c:ba:
c0:c2:8a:d5:b9:3c:3b:ec:1d:79:09:24:c6:8a:6b:09:c6:1e:
d6:44:eb:7f:61:c3:04:11:8e:c2:5d:7a:f7:f3:65:47:78:be:
34:08:79:56:2b:23:a3:f2:92:bf:d8:da:c6:19:66:f3:5f:10:
3f:2f:0c:c9:af:c0:d9:2d:74:f3:74:31:e6:04:c2:8b:a2:8e:
44:5b:5f:76:58:5b:0a:ea:16:49:02:9e:0c:8c:40:21:28:3d:
f8:2d:87:61:16:98:05:ee:96:7e:5e:d9:48:f6:8f:0a:39:03:
b3:64:8a:b1:1b:39:5b:6f:fe:a6:b7:1f:e0:b3:1a:db:e9:37:
ff:cb:15:7e:58:bf:91:f6:0a:a1:02:93:ac:77:33:20:21:78:
9f:bc:2b:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 21 16:25:36 2023 by rpki-client on console-fra.rpki-client.org