Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/jHx0uVFHaH7G4gwG1-1vLFFn4Ts.roa
File: jHx0uVFHaH7G4gwG1-1vLFFn4Ts.roa (raw, json)
Hash identifier: PX9JPdW9uF5IElN/FBmvE0ygm21PUqLFWN7G0vDqD5w=
Subject key identifier: 8C:7C:74:B9:51:47:68:7E:C6:E2:0C:06:D7:ED:6F:2C:51:67:E1:3B
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B52
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/jHx0uVFHaH7G4gwG1-1vLFFn4Ts.roa
Signing time: Thu 15 Dec 2022 02:56:59 +0000
ROA not before: Thu 15 Dec 2022 02:56:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 61.57.128.0/21 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2898 (0xb52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8C7C74B95147687EC6E20C06D7ED6F2C5167E13B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:49:fe:39:f3:53:ca:85:14:6e:51:f1:fc:c6:
eb:fe:5a:21:06:c4:08:08:18:16:54:d0:3d:a4:ff:
ad:e1:3f:c9:7a:31:f7:9f:ba:c0:3f:c4:0c:ed:31:
66:e6:cf:89:fd:14:33:fe:5b:b7:f9:71:40:86:9e:
f5:02:22:17:aa:9e:e0:bf:e0:37:e3:ec:a1:57:a1:
b3:a5:e9:98:60:93:89:9b:50:65:ed:dc:1b:5a:49:
f3:51:8c:a9:45:ce:72:98:07:d9:66:83:ea:76:c7:
f5:6d:40:90:cb:cf:28:f5:98:f3:79:77:63:0a:a9:
80:d5:ec:bc:41:fc:19:a3:e5:76:0a:61:67:d7:75:
36:c2:e7:c1:b2:13:b7:e9:c4:7e:a9:b1:ed:e2:de:
a9:d2:0a:79:9e:a9:1e:ed:c1:05:53:7d:c2:ed:2a:
5d:9b:e5:86:ee:e6:47:42:94:1d:10:0b:07:54:0f:
e9:c7:fb:e0:fe:c8:68:d6:52:48:bf:0d:4d:ef:11:
d5:f4:7b:6a:5d:af:b6:29:27:10:32:93:b4:9f:8a:
6b:41:c9:cd:82:4b:c6:d8:79:08:14:1a:f0:7b:8f:
f3:ae:0b:12:74:83:05:20:56:77:94:f8:a2:a2:af:
6c:90:bd:63:4d:f6:eb:f4:9d:d6:fe:e9:ea:32:38:
1c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:7C:74:B9:51:47:68:7E:C6:E2:0C:06:D7:ED:6F:2C:51:67:E1:3B
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/jHx0uVFHaH7G4gwG1-1vLFFn4Ts.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.128.0/21
Signature Algorithm: sha256WithRSAEncryption
47:c2:31:14:a0:7e:28:c9:c7:f2:57:46:d2:3e:03:06:47:ca:
fa:34:8f:fb:69:9c:b4:df:91:02:7f:05:3c:5f:f7:27:7c:fa:
7a:7a:88:bd:e1:3e:83:73:58:15:f1:8c:fd:6c:97:5e:9f:20:
fd:f0:53:56:b9:84:87:91:13:7d:ca:ba:87:1a:55:01:de:6d:
db:2c:cc:19:80:60:fa:d3:3d:c3:cc:84:43:9b:90:26:67:50:
e1:e8:23:54:d6:16:45:c8:df:9c:32:8c:c7:ba:16:9c:43:a7:
2a:83:3c:02:d7:72:78:cc:3d:43:26:bb:b7:e9:a5:7c:05:74:
5a:40:85:8c:41:82:8b:c0:80:71:33:49:7a:6f:61:45:ad:4c:
a3:63:6c:05:53:15:2f:35:b0:44:c4:9e:a5:5a:c5:5a:90:79:
88:8e:56:b1:8a:c6:30:68:50:23:a6:53:19:39:f5:f4:4d:f2:
69:c1:c1:4d:71:16:86:76:c0:50:d5:df:a7:c6:91:95:5b:04:
a5:c7:eb:ad:e6:7d:34:20:85:0a:77:fb:72:e1:4a:f9:11:5e:
26:75:f7:0c:2b:b9:96:28:27:66:03:3a:13:53:d6:39:47:ea:
26:d9:b2:7c:94:f7:2d:c8:4f:6f:68:e2:b5:42:68:df:28:ec:
80:bc:60:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:36 2023 by rpki-client on console-ams.rpki-client.org