Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/UmDDTvu8VawwWuTDKYzwd0ApAUA.roa
File: UmDDTvu8VawwWuTDKYzwd0ApAUA.roa (raw, json)
Hash identifier: dlrlYKL0t1DEY5b3EVg8HTFkX09/z47PAND6B4sM+Lg=
Subject key identifier: 52:60:C3:4E:FB:BC:55:AC:30:5A:E4:C3:29:8C:F0:77:40:29:01:40
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B4D
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/UmDDTvu8VawwWuTDKYzwd0ApAUA.roa
Signing time: Thu 15 Dec 2022 02:56:57 +0000
ROA not before: Thu 15 Dec 2022 02:56:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 61.57.148.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2893 (0xb4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5260C34EFBBC55AC305AE4C3298CF07740290140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:be:ba:99:45:0b:46:14:a9:0b:2b:67:ca:64:
80:f4:4f:aa:37:dd:90:a4:4e:29:ba:67:a0:2a:d8:
dc:32:f9:13:b9:d3:74:0a:ef:69:2f:d8:73:55:60:
b8:9a:fd:ba:47:b5:d6:f7:cb:47:23:26:f0:48:a0:
c7:29:84:d4:61:28:4c:1f:34:ce:ad:6c:54:fd:33:
72:9a:c7:7b:94:e2:da:70:57:4a:da:54:fc:f1:0b:
3c:27:c4:f7:d7:d0:c5:f4:2a:d6:d4:00:eb:1a:a7:
f5:3b:7d:3f:97:f5:7f:c3:0f:b7:20:ce:85:ed:77:
c9:1e:d1:b4:e1:4e:59:e0:10:86:d8:1f:32:0b:2c:
9b:0b:ab:44:8c:6f:bc:d4:35:fe:ff:0d:14:94:ee:
e2:98:00:94:bc:eb:ae:81:c8:8e:04:9d:47:85:ad:
a0:09:11:e3:cc:e6:22:d8:c8:16:06:df:f4:16:1f:
07:9e:ff:e2:a0:91:85:b6:cd:6c:44:cc:71:10:27:
7c:ed:77:b1:ad:1e:40:d0:d2:53:2c:a0:96:ff:d3:
2a:11:ed:1c:59:fb:75:41:c7:3c:ce:c1:84:ee:c6:
be:fe:93:13:45:27:50:44:ab:75:a9:6b:20:a5:d0:
22:a2:d6:e5:82:44:ff:05:8f:6d:3e:d7:b2:2c:92:
f8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:60:C3:4E:FB:BC:55:AC:30:5A:E4:C3:29:8C:F0:77:40:29:01:40
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/UmDDTvu8VawwWuTDKYzwd0ApAUA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.148.0/24
Signature Algorithm: sha256WithRSAEncryption
26:62:8f:10:96:78:3f:f8:61:c9:1f:ee:42:30:2c:fa:d0:67:
fd:fc:03:90:60:ad:a4:eb:5a:9f:f0:12:af:fe:34:9a:56:41:
07:58:07:f8:4b:37:ae:fb:0e:59:c2:2a:78:b6:f1:e7:79:5b:
6d:75:4b:db:25:de:d4:64:c3:d2:d7:a5:a7:b8:ba:05:69:44:
b5:ed:fa:d2:74:0e:ef:7b:f6:ce:a1:11:af:bf:b2:64:7c:0b:
72:bd:fb:36:42:1e:2b:e4:75:ea:71:1c:cb:4c:9f:eb:1e:16:
4e:90:4d:53:db:52:7f:b8:69:79:48:70:38:0b:67:75:53:27:
90:2c:6d:8c:3b:dd:18:15:ca:b4:8e:32:d0:a5:bb:2e:7f:1d:
88:fa:c9:fb:1c:52:0c:f8:98:45:12:1b:09:9f:e4:53:94:2f:
6a:ef:6c:70:48:f0:e2:07:d2:c1:81:17:ff:e2:38:79:4e:93:
f7:db:ed:b7:e2:e2:61:f6:b8:a8:a8:8d:72:9d:04:29:7e:49:
6a:3c:95:3f:bb:f4:a0:84:0d:1a:0e:67:e1:ed:bb:40:23:dc:
e3:0e:7d:7a:05:d1:de:51:16:b2:e7:b0:f1:fd:45:8d:d6:90:
ec:28:4f:22:9f:12:88:9e:bf:2f:44:2c:f5:c3:c0:89:dc:35:
ab:a9:6c:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:03:14 2023 by rpki-client on console-fra.rpki-client.org