Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/gH2R__P2hULcEsJd7y-17BHzsbM.roa
File: gH2R__P2hULcEsJd7y-17BHzsbM.roa (raw, json)
Hash identifier: CoPDGCCKDcgHmp4hTtCh1Pn93gOWPnbQ/OGahYtFCok=
Subject key identifier: 80:7D:91:FF:F3:F6:85:42:DC:12:C2:5D:EF:2F:B5:EC:11:F3:B1:B3
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B3F
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/gH2R__P2hULcEsJd7y-17BHzsbM.roa
Signing time: Thu 15 Dec 2022 02:56:53 +0000
ROA not before: Thu 15 Dec 2022 02:56:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 103.224.200.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2879 (0xb3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=807D91FFF3F68542DC12C25DEF2FB5EC11F3B1B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c0:ee:d7:e7:ed:59:72:bc:e0:23:46:59:fe:
3c:09:c2:84:9d:2d:4e:7a:bb:20:ce:30:c9:35:6b:
2e:ab:48:85:05:de:4e:9e:ec:3d:3a:30:30:d5:13:
47:d4:39:bc:93:43:42:f5:d1:1c:9b:0a:5e:30:b4:
52:81:60:72:f4:6e:17:ec:71:8c:7a:6d:52:cf:f5:
e1:a3:a2:a4:e1:17:a7:1a:e4:77:a7:f3:89:43:d0:
76:bb:d0:15:55:2a:7e:f6:42:5b:79:d5:cf:f3:40:
d2:96:3b:2e:39:ae:d5:2b:c6:2e:c6:66:3a:d5:5b:
96:87:2b:a5:44:1b:16:68:63:75:d9:0a:31:a8:46:
ff:35:a9:04:df:e4:a7:88:09:a0:36:ec:9b:fc:33:
7a:31:73:cb:b8:23:3e:a3:0c:f9:6c:db:18:2c:ac:
86:ee:11:cc:42:89:0a:9a:c6:69:ff:fe:63:0f:ff:
f0:50:ba:a2:0b:31:a1:0c:c8:2f:50:93:5f:47:5d:
15:55:21:ff:47:bd:37:01:58:ee:97:23:f5:da:ef:
7a:b7:7a:97:d1:5c:96:34:fb:36:46:1d:b3:7d:51:
ca:4b:d3:b2:33:fc:b3:62:95:da:9b:17:e1:ad:ee:
1a:65:81:f2:72:31:ff:65:05:3f:67:11:1e:7f:4d:
4b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7D:91:FF:F3:F6:85:42:DC:12:C2:5D:EF:2F:B5:EC:11:F3:B1:B3
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/gH2R__P2hULcEsJd7y-17BHzsbM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.200.0/22
Signature Algorithm: sha256WithRSAEncryption
07:ea:35:c4:01:8b:2b:39:26:8b:18:95:1f:4d:4c:b8:d3:09:
8c:e6:62:36:f8:d5:42:09:92:98:78:96:4b:17:52:e4:68:f4:
b2:84:d0:64:ad:97:fb:6a:fc:20:11:2b:e5:26:33:3e:a1:c7:
c8:29:d6:09:c7:10:93:e3:a4:9d:79:91:bd:7a:51:11:9a:87:
99:53:75:c5:2a:43:14:ec:df:31:bd:3d:c9:8c:80:0c:0f:24:
81:93:9d:73:3e:e5:91:13:66:7a:5a:3a:89:d4:18:5d:56:4b:
13:44:f7:8f:b1:1a:76:06:15:c8:d4:7e:53:3f:08:50:16:0c:
3d:13:f7:1e:a6:e6:82:f0:b2:e3:10:19:51:d9:91:43:f6:c2:
2e:ab:37:db:22:8d:49:f3:49:30:fe:1d:0a:52:00:4b:15:0f:
05:fb:62:aa:85:e0:81:b1:c3:40:9a:3f:bd:0d:fb:0c:25:87:
53:41:c2:99:30:ef:ec:83:5c:63:59:cd:a4:40:d6:17:b4:ba:
78:8b:43:fb:cc:38:50:89:de:ac:55:88:c7:f6:a0:0e:ee:5a:
da:bc:28:5b:86:37:d4:02:3d:d2:c6:64:ac:95:9d:0c:01:c2:
e1:aa:b4:5e:52:27:fe:3a:38:cc:ee:25:9e:11:b2:53:0c:f9:
56:c2:d3:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:36 2023 by rpki-client on console-ams.rpki-client.org