Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/bU3xDSAAetvz_PiY38VjxOvzN_I.roa
File: bU3xDSAAetvz_PiY38VjxOvzN_I.roa (raw, json)
Hash identifier: NJ24mFgpnDtgZp3+nDblyDjF931x4R5MEG2qxz6dZPI=
Subject key identifier: 6D:4D:F1:0D:20:00:7A:DB:F3:FC:F8:98:DF:C5:63:C4:EB:F3:37:F2
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B56
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/bU3xDSAAetvz_PiY38VjxOvzN_I.roa
Signing time: Thu 15 Dec 2022 02:57:00 +0000
ROA not before: Thu 15 Dec 2022 02:57:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 123.50.48.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2902 (0xb56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:57:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6D4DF10D20007ADBF3FCF898DFC563C4EBF337F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4a:48:4a:50:5e:f7:d7:6e:43:9a:c4:02:e0:
b3:1c:f1:5b:4b:9e:9e:87:29:3d:99:e6:5f:3f:bd:
69:ec:51:d2:1d:ef:2b:07:3b:82:e0:08:20:ad:ac:
66:0d:5f:bd:cd:01:53:4f:b8:9f:ea:f8:7e:eb:63:
48:5d:57:f9:a6:cb:81:f3:61:fe:f2:18:6f:35:7d:
bd:e5:ce:59:cf:f9:01:e7:07:6d:e9:82:52:16:f9:
7a:b4:29:51:ca:f8:d3:e3:39:02:e6:e2:c0:3e:8b:
d2:07:64:f7:24:1c:d4:b4:bd:a4:d3:ea:92:6e:c7:
63:36:96:ba:e8:a6:a3:83:8d:2e:ac:90:28:0c:bf:
8e:61:c7:f8:78:1d:6b:7f:b7:6b:1f:b3:47:23:ea:
56:54:96:16:42:31:32:d2:14:d4:14:ec:84:e1:48:
6f:b3:1a:f6:6f:5b:7d:be:52:ab:54:10:4e:3c:e1:
43:11:f5:6f:4a:b1:54:65:fd:09:2d:c0:02:91:ae:
e1:83:dc:3c:ef:f1:d0:e9:92:b3:ba:f3:da:e9:3f:
63:10:9f:29:6e:d0:b4:27:89:a4:28:f1:7b:f4:fd:
81:44:a6:29:e6:d1:d6:f7:72:69:ff:cb:08:89:92:
50:44:2a:09:0b:43:39:55:1e:d9:a0:64:99:ca:d6:
d2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:4D:F1:0D:20:00:7A:DB:F3:FC:F8:98:DF:C5:63:C4:EB:F3:37:F2
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/bU3xDSAAetvz_PiY38VjxOvzN_I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.48.0/20
Signature Algorithm: sha256WithRSAEncryption
76:55:69:3b:36:b1:7d:22:cc:a2:af:7c:3a:6e:84:e6:f3:e5:
34:2e:a4:db:ca:03:12:76:76:e3:49:1b:55:43:6c:b3:15:c5:
44:ed:de:d1:78:d6:5c:96:b8:3e:b4:b8:55:3f:af:1b:15:7c:
fb:0a:c4:2c:76:73:2b:b7:27:13:8e:ee:c3:b1:47:62:ef:6d:
74:f5:92:56:9f:6c:09:fb:9a:70:8f:0e:81:d5:4f:29:46:7b:
1c:43:ef:82:ed:82:c6:f0:4c:44:88:d3:fd:ac:a5:ab:35:fd:
f8:6b:88:77:4b:8a:f4:ed:91:4f:42:52:06:77:7e:d1:5b:ac:
0d:76:d4:3e:37:df:47:11:70:52:9a:9f:72:1f:f1:82:dc:0d:
75:b8:0c:ca:fb:96:05:b7:32:ff:1a:18:cb:de:34:a1:06:fc:
29:be:63:ad:3f:79:51:a6:ac:e3:c1:bb:bd:4a:c3:6c:85:c1:
c9:23:a0:1f:6a:34:9b:dd:4b:35:49:43:87:c5:d8:79:1f:85:
80:80:34:3d:46:39:71:7d:f9:75:7f:bb:39:7a:e6:5b:21:51:
d8:63:b2:71:3b:2d:bb:14:85:86:1a:c3:07:95:da:9d:e4:26:
8d:12:81:3e:29:8f:52:38:9c:43:d2:8c:06:c6:fd:81:e7:0d:
21:31:5d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:03:14 2023 by rpki-client on console-fra.rpki-client.org