Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/8OPvvLuGccYVz3kD6_9iIXisfwc.roa
File: 8OPvvLuGccYVz3kD6_9iIXisfwc.roa (raw, json)
Hash identifier: GcxoMGMkZu7OiFKiE+qz/wgzmw7fw/O3FZf2yMv/9qs=
Subject key identifier: F0:E3:EF:BC:BB:86:71:C6:15:CF:79:03:EB:FF:62:21:78:AC:7F:07
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B53
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/8OPvvLuGccYVz3kD6_9iIXisfwc.roa
Signing time: Thu 15 Dec 2022 02:56:59 +0000
ROA not before: Thu 15 Dec 2022 02:56:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 123.50.56.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2899 (0xb53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F0E3EFBCBB8671C615CF7903EBFF622178AC7F07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:91:58:0d:c8:48:a2:32:ad:6e:b9:e3:6e:89:
77:b3:23:9d:10:83:41:5f:aa:1d:35:34:f0:48:28:
26:86:03:66:6e:56:2f:7a:63:99:77:3b:b2:eb:a4:
7e:18:e9:d0:9f:12:1e:4e:52:30:ef:29:5d:01:f8:
e1:3c:26:57:16:fb:20:a6:b9:f7:bb:c5:4a:db:91:
e7:4b:f2:6a:58:34:3d:1e:51:54:6f:7b:8f:c4:92:
d5:08:d8:c9:78:4f:27:5d:b8:6c:5b:e7:23:6d:05:
80:3a:36:68:46:ae:14:98:27:d4:d5:85:7a:22:49:
da:a0:42:71:87:64:6f:8d:9a:d6:0a:11:da:ef:0a:
f6:1b:7f:00:14:11:af:e4:ad:14:5a:9f:c3:de:a5:
29:09:8e:b4:a1:08:42:b5:09:c4:ca:e4:48:81:38:
a2:b3:0a:e6:6b:bb:50:9b:b5:3b:97:ac:8c:fe:24:
bd:8d:44:06:fe:b1:23:b9:49:9e:e7:01:1f:cb:c9:
29:90:20:9a:93:c9:6d:9a:73:74:60:17:f7:07:71:
b8:6b:f2:1d:0d:0f:f0:f3:48:16:11:bc:1b:96:b5:
0d:01:ee:7b:9a:19:77:04:bf:70:44:5a:f8:f7:b2:
c2:87:ff:90:1c:46:3f:1a:17:34:24:08:30:8b:93:
f9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E3:EF:BC:BB:86:71:C6:15:CF:79:03:EB:FF:62:21:78:AC:7F:07
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/8OPvvLuGccYVz3kD6_9iIXisfwc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.56.0/21
Signature Algorithm: sha256WithRSAEncryption
68:29:58:a7:7d:c9:79:bb:8d:ae:41:e9:b4:bc:39:74:04:ce:
f6:fd:76:0d:57:99:2d:39:18:63:0e:b2:31:06:ce:e8:3c:b7:
8d:07:35:86:f9:dc:04:30:ff:f9:f2:83:3e:e4:f5:9e:4f:7d:
0a:0a:e0:16:87:46:69:e7:3d:22:90:95:10:3f:34:a1:1a:50:
04:a0:92:32:d8:af:9f:c0:be:58:e9:89:6c:86:cd:f9:14:26:
f3:c5:53:74:01:8c:3c:4c:41:de:5e:16:0e:3b:d7:f8:f9:84:
4c:c2:3c:1b:78:ee:22:43:3b:62:70:7a:7e:8b:fa:11:18:92:
7f:17:0e:1c:01:82:bd:ce:bf:01:a5:fd:2e:b8:56:73:b2:e5:
4a:37:09:22:b4:3f:07:2f:02:be:12:3c:d4:9d:60:17:6f:b3:
83:25:07:47:0f:ed:d9:b8:6e:8d:4b:d4:5d:e6:56:12:59:62:
7c:8d:d1:ac:5a:ec:85:62:dd:66:d6:0d:d4:13:77:c6:bb:f0:
27:cb:f5:08:40:f9:fc:55:fc:8d:d9:73:48:78:c4:39:df:8f:
83:b9:23:e8:64:d3:dc:8a:6a:1e:33:3f:11:a4:36:bc:4c:f8:
d7:c5:bc:fb:94:dd:12:cb:1f:ed:46:1a:80:c6:0e:9a:51:da:
08:03:bf:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:36 2023 by rpki-client on console-ams.rpki-client.org