Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/ZxAD7SUkgrHqHq0n3FrmO0ssrYI.roa
File: ZxAD7SUkgrHqHq0n3FrmO0ssrYI.roa (raw, json)
Hash identifier: 67hXprw/8AgrEqWRA1AKHhnRaSRwFDKLkP2WIAbDOes=
Subject key identifier: 67:10:03:ED:25:24:82:B1:EA:1E:AD:27:DC:5A:E6:3B:4B:2C:AD:82
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B3D
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/ZxAD7SUkgrHqHq0n3FrmO0ssrYI.roa
Signing time: Thu 15 Dec 2022 02:56:52 +0000
ROA not before: Thu 15 Dec 2022 02:56:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 124.155.168.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2877 (0xb3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=671003ED252482B1EA1EAD27DC5AE63B4B2CAD82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:da:36:e4:80:36:b6:ba:e4:7d:89:8c:0b:ad:
56:46:0c:8a:3c:ad:82:ad:d0:fc:a5:4c:b1:57:f2:
a1:65:22:3c:22:9e:b3:55:e0:27:93:fa:5c:22:e1:
2f:30:d4:f3:07:8b:bb:68:fe:b7:5a:95:fd:33:27:
e7:a2:74:b5:2a:82:04:b8:71:7f:ce:20:08:97:4a:
84:45:5f:6e:22:6b:64:f6:3d:1c:ad:2b:ca:73:e8:
35:d5:a7:e1:33:60:48:b0:58:81:f7:b3:bc:b3:a5:
33:0e:bb:36:25:78:6b:a7:40:ca:94:fd:68:05:53:
c1:30:c7:89:37:63:10:8d:91:f1:bb:1f:f9:28:ce:
b5:b3:ae:79:3f:90:75:ef:03:b4:a6:fd:8e:44:7f:
94:f9:cb:aa:8b:f2:48:23:25:95:74:1f:46:d3:d2:
97:3b:dc:79:fa:53:3b:65:cb:21:f0:a0:b9:1a:f7:
51:6d:95:1f:e5:46:18:4a:0b:28:8d:02:72:3d:e4:
7f:02:e5:7f:0b:b5:d3:51:11:f6:ff:47:ea:18:46:
33:63:06:ef:a5:6b:16:0a:78:cc:ff:93:3e:14:be:
aa:13:64:ed:8e:3f:d7:90:9d:08:b9:9c:ec:e5:3e:
1c:fd:08:80:30:f4:72:a3:17:9f:28:1e:ae:d4:c3:
cd:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:10:03:ED:25:24:82:B1:EA:1E:AD:27:DC:5A:E6:3B:4B:2C:AD:82
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/ZxAD7SUkgrHqHq0n3FrmO0ssrYI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.168.0/21
Signature Algorithm: sha256WithRSAEncryption
91:00:b3:6f:78:6a:3b:f0:eb:a3:05:61:c1:a0:47:c7:83:19:
c2:41:6d:aa:8d:73:37:24:3b:dd:78:b0:0a:67:0c:a9:05:61:
c0:a8:d7:2d:f9:b6:13:c8:8d:0a:e2:bd:e3:4c:d1:cf:1c:27:
22:a0:57:6c:96:40:f4:b8:2b:5b:a9:cf:98:47:6a:3a:ac:ac:
ca:fb:0f:25:2d:93:ef:4f:f8:7a:74:08:25:28:c8:f2:0e:b6:
87:f2:8f:34:cd:39:a1:f2:d9:e5:27:a8:dd:2d:9d:eb:3a:7f:
aa:16:a2:a0:18:5d:9c:3a:4e:b4:56:fb:d4:ca:ce:47:03:67:
8c:e8:ff:28:13:12:1e:4e:d1:6e:16:36:65:34:c0:2e:80:31:
41:7c:97:a4:1d:87:e1:03:8a:74:c6:dd:c7:d0:41:c2:67:13:
24:5e:51:a5:bf:ce:c7:55:cc:1c:4a:ad:a8:e7:69:92:b4:40:
98:8b:34:1b:e3:b6:6f:7b:b3:e2:8f:2b:e1:2b:06:33:0f:d5:
34:e9:d6:25:79:1a:0e:06:92:6b:26:eb:db:09:14:8d:fd:e4:
ba:d8:a9:9e:27:65:72:4f:9e:b8:19:23:7c:d4:c3:b6:d3:bc:
f3:b9:c1:93:f3:9c:2b:ae:85:63:30:b6:f9:d1:a7:bf:3d:9a:
4d:83:fc:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org