Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/8a_em8Px73r_R2tQpqhojvuqN9U.roa
File: 8a_em8Px73r_R2tQpqhojvuqN9U.roa (raw, json)
Hash identifier: e1RXUqQlUs3YZnUj5gqSZDd80TkurhsY2n1KUg5UEkw=
Subject key identifier: F1:AF:DE:9B:C3:F1:EF:7A:FF:47:6B:50:A6:A8:68:8E:FB:AA:37:D5
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0AEB
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/8a_em8Px73r_R2tQpqhojvuqN9U.roa
Signing time: Thu 15 Sep 2022 02:49:28 +0000
ROA not before: Thu 15 Sep 2022 02:49:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 124.155.168.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2795 (0xaeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 15 02:49:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F1AFDE9BC3F1EF7AFF476B50A6A8688EFBAA37D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1c:10:17:a1:e4:06:fb:f8:32:66:e7:56:ab:
b3:43:3e:8d:b1:58:eb:76:2e:e5:d1:22:f0:54:84:
11:bd:21:9b:e4:d7:b4:5e:aa:a8:56:60:68:98:c5:
6a:14:b0:82:6e:15:02:a8:6d:04:fe:a1:6d:f6:23:
ce:5d:59:18:ba:0b:03:82:13:21:90:ce:f9:40:bf:
2c:4e:7b:47:41:9c:14:4e:0c:7d:72:42:d7:8f:7f:
26:6a:85:8d:14:00:57:87:da:e4:b7:ad:bf:c0:c5:
e8:6f:c2:e0:a4:b9:a0:5b:47:f2:23:a7:fb:15:d3:
fb:07:bf:46:3c:d6:c6:0a:26:26:07:77:f8:3f:7c:
7b:5c:7e:11:50:da:1b:a9:fc:11:a9:30:72:23:22:
dc:c2:36:0a:0e:38:ac:3f:ca:ca:24:12:f7:0d:fb:
67:2e:02:78:33:e2:cb:a5:97:db:34:0e:12:67:8f:
a7:cc:33:43:50:52:a5:2c:92:3c:38:39:6a:11:e6:
81:33:3b:eb:43:c9:e5:1c:57:72:a9:4a:77:e6:2c:
34:c7:2a:2d:5b:56:23:13:8b:7c:00:ec:2a:7d:1e:
13:0f:99:54:96:a2:10:e5:a5:ad:75:df:7c:fd:86:
db:bb:17:1f:2b:bb:fe:71:9b:07:8e:1d:48:ca:da:
4f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:AF:DE:9B:C3:F1:EF:7A:FF:47:6B:50:A6:A8:68:8E:FB:AA:37:D5
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/8a_em8Px73r_R2tQpqhojvuqN9U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.168.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:c2:c3:ac:75:4e:3f:78:b7:19:32:5a:14:9c:54:c5:ff:88:
1a:36:d1:f0:9a:4e:a3:2e:44:2d:d6:4b:9c:94:ad:62:67:4f:
f7:cc:39:84:ed:66:29:53:10:32:76:3b:a5:f3:6a:21:ad:2e:
cb:a9:00:20:90:a9:b2:b1:cd:79:06:4b:c0:c6:00:a4:9a:55:
3f:b1:1d:9f:00:c1:5e:a4:b7:47:60:c6:49:09:27:bd:43:70:
af:e7:c4:92:e2:da:7a:30:ec:87:79:1d:c9:2e:3e:92:67:48:
52:6d:b3:08:3a:41:99:64:ae:0f:0c:d2:89:55:bf:53:ad:f6:
97:85:32:e9:d7:72:71:cf:42:08:48:ef:55:dc:c7:e7:a4:c3:
6d:09:fd:1f:6b:25:83:eb:5c:62:d9:02:35:af:10:c4:bb:9d:
12:c2:52:0c:e8:84:de:45:23:79:09:7e:f7:ba:53:a5:49:3d:
0b:c9:4a:e1:1d:79:b1:9c:0a:d0:77:78:05:4f:14:64:fb:65:
5e:30:c4:06:56:b7:6c:7a:77:ab:2a:1e:49:03:f4:ae:6d:57:
05:17:a0:8b:e4:10:60:7c:63:50:49:3a:59:5b:9f:50:41:80:
5b:41:25:52:f9:b8:53:07:e2:02:34:4b:42:46:7a:a4:43:31:
68:ca:bb:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:47 2023 by rpki-client on console-ams.rpki-client.org