Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/IA88wP_nz4BEGq9afZiZ3Xigc8s.roa
File: IA88wP_nz4BEGq9afZiZ3Xigc8s.roa (raw, json)
Hash identifier: e530s0xs1ReVie40S7q7O6rEvrTb90EhFY9wSKr5loE=
Subject key identifier: 20:0F:3C:C0:FF:E7:CF:80:44:1A:AF:5A:7D:98:99:DD:78:A0:73:CB
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B72
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/IA88wP_nz4BEGq9afZiZ3Xigc8s.roa
Signing time: Fri 16 Dec 2022 04:19:43 +0000
ROA not before: Fri 16 Dec 2022 04:19:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 61.57.128.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2930 (0xb72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 16 04:19:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=200F3CC0FFE7CF80441AAF5A7D9899DD78A073CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:89:dd:a4:3d:2a:dc:5f:e0:07:5d:c1:7f:23:
14:4c:03:9a:e9:3e:81:4b:e9:3f:c6:51:95:d3:f0:
02:13:71:96:ea:02:df:94:31:b3:c1:f1:1e:e8:9f:
1e:e3:33:d6:5d:ba:29:b8:69:ee:84:5e:47:e8:7b:
e4:dc:55:9d:f1:51:37:4a:0e:8c:d1:fe:d4:de:3c:
f4:f7:8d:10:29:d2:20:05:ab:a4:38:36:f5:75:aa:
7a:52:53:82:e0:f7:05:60:d6:90:2a:a9:e1:17:e2:
1f:64:58:9d:91:08:d4:ef:e7:14:2c:a1:12:b9:48:
43:56:4a:d2:f0:b8:d8:af:7e:ca:24:f5:ed:d1:98:
fb:86:cc:3c:e3:7e:a2:92:d8:f9:c6:ab:82:6c:24:
f6:99:30:ab:c0:ed:0d:b4:83:b6:5e:54:ca:85:36:
74:ac:5a:b6:58:b1:8f:1d:f7:50:46:54:1d:bc:ca:
44:9b:19:e7:c3:c5:42:40:bf:4a:0a:05:45:d3:8b:
9f:a1:8f:88:c7:7a:82:a2:6f:c5:8a:54:d4:85:92:
2a:69:d4:5f:fc:64:c9:20:94:15:b8:24:1f:e6:12:
5f:47:52:9e:66:b5:85:76:ee:eb:83:30:fc:c3:9a:
d0:86:4a:f9:12:85:b5:1f:3e:33:db:27:a5:f3:44:
69:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:0F:3C:C0:FF:E7:CF:80:44:1A:AF:5A:7D:98:99:DD:78:A0:73:CB
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/IA88wP_nz4BEGq9afZiZ3Xigc8s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.128.0/20
Signature Algorithm: sha256WithRSAEncryption
3e:31:1a:7f:f3:f9:6e:c4:52:1e:9e:6a:3c:03:b0:d5:7e:c4:
1c:7f:c0:3a:5c:1e:c6:f3:74:09:f5:7c:0d:62:6b:e6:d2:9f:
f9:02:f2:f9:47:e2:e1:b5:8e:c3:8c:2b:2a:19:b1:6c:ed:2e:
a4:c2:9d:5b:91:1f:5b:c7:23:99:91:06:26:b4:84:30:d9:28:
c4:d8:89:b9:c2:00:4a:fe:a4:d0:0a:58:40:4f:08:8f:01:84:
4e:67:25:d0:e6:93:f0:1b:61:f2:d5:92:85:5f:30:a0:32:92:
f3:27:65:49:cf:7e:bf:84:33:9e:b5:c0:5a:42:38:ac:07:05:
75:76:fa:c3:f6:1f:04:8e:25:29:bf:e3:b6:a5:69:56:c3:fe:
aa:b6:81:e0:52:b8:55:8f:73:f9:a0:ea:79:38:b1:78:d8:d2:
6b:8a:15:3c:e1:df:e9:1d:fe:55:eb:ff:bf:5c:13:7f:1a:86:
df:dd:31:3a:68:d8:59:f9:e5:b3:2c:ca:0d:ec:1d:0f:3f:a7:
74:4d:e2:b1:dc:09:c5:3d:96:4b:8a:7c:66:d3:6e:07:22:a6:
38:c2:70:e1:1d:fc:9e:47:f1:d1:d4:a7:c0:5f:96:55:7b:de:
d3:37:41:25:a6:b0:c6:cd:6c:b8:21:52:bf:16:3e:b2:b9:0f:
6c:72:35:7b
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICC3IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx
RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMjEyMTYw
NDE5NDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDIwMEYzQ0MwRkZFN0NG
ODA0NDFBQUY1QTdEOTg5OURENzhBMDczQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCTid2kPSrcX+AHXcF/IxRMA5rpPoFL6T/GUZXT8AITcZbqAt+U
MbPB8R7onx7jM9Zduim4ae6EXkfoe+TcVZ3xUTdKDozR/tTePPT3jRAp0iAFq6Q4
NvV1qnpSU4Lg9wVg1pAqqeEX4h9kWJ2RCNTv5xQsoRK5SENWStLwuNivfsok9e3R
mPuGzDzjfqKS2PnGq4JsJPaZMKvA7Q20g7ZeVMqFNnSsWrZYsY8d91BGVB28ykSb
GefDxUJAv0oKBUXTi5+hj4jHeoKib8WKVNSFkipp1F/8ZMkglBW4JB/mEl9HUp5m
tYV27uuDMPzDmtCGSvkShbUfPjPbJ6XzRGlFAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUIA88wP/nz4BEGq9afZiZ3Xigc8swHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0
X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv
WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9JQTg4d1Bfbno0QkVHcTlhZlpp
WjNYaWdjOHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTmA
MA0GCSqGSIb3DQEBCwUAA4IBAQA+MRp/8/luxFIenmo8A7DVfsQcf8A6XB7G83QJ
9XwNYmvm0p/5AvL5R+LhtY7DjCsqGbFs7S6kwp1bkR9bxyOZkQYmtIQw2SjE2Im5
wgBK/qTQClhATwiPAYROZyXQ5pPwG2Hy1ZKFXzCgMpLzJ2VJz36/hDOetcBaQjis
BwV1dvrD9h8EjiUpv+O2pWlWw/6qtoHgUrhVj3P5oOp5OLF42NJrihU84d/pHf5V
6/+/XBN/Gobf3TE6aNhZ+eWzLMoN7B0PP6d0TeKx3AnFPZZLinxm024HIqY4wnDh
HfyeR/HR1KfAX5ZVe97TN0ElprDGzWy4IVK/Fj6yuQ9scjV7
-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:36 2023 by rpki-client on console-ams.rpki-client.org