Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/sHZ_pURolBHp1uLudvHv7QAwOsE.roa
File: sHZ_pURolBHp1uLudvHv7QAwOsE.roa (raw, json)
Hash identifier: FyHIjUehwMQiv4dSQEzSMZFFECn8tHuJ2/8dk+KkYdo=
Subject key identifier: B0:76:7F:A5:44:68:94:11:E9:D6:E2:EE:76:F1:EF:ED:00:30:3A:C1
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0B50
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/sHZ_pURolBHp1uLudvHv7QAwOsE.roa
Signing time: Thu 15 Dec 2022 02:56:58 +0000
ROA not before: Thu 15 Dec 2022 02:56:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18429
IP address blocks: 61.57.152.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2896 (0xb50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Dec 15 02:56:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B0767FA544689411E9D6E2EE76F1EFED00303AC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e7:10:a8:cf:38:6b:2b:67:0b:27:76:5f:0c:
20:a0:9e:ed:9f:28:ed:e8:17:40:37:6b:e5:fe:99:
f7:26:85:20:d7:87:14:5b:c2:33:ca:e2:83:72:97:
78:8e:49:c6:0e:46:2e:94:dc:9c:26:b8:4a:5f:4a:
22:f8:26:36:2b:c0:c1:a0:93:f0:4e:9d:99:8e:91:
e0:5f:ca:33:dc:e9:7d:bb:a1:03:48:6d:55:61:96:
9d:c0:1a:84:e8:b2:92:62:da:b5:78:04:c5:d5:38:
f8:7a:20:4f:02:45:08:94:7c:e0:56:f0:a0:d8:58:
57:23:4d:b6:5a:4b:6d:0a:de:c8:9f:80:aa:f3:91:
fc:85:f9:60:74:58:56:fb:e1:98:cf:0b:e3:bb:6d:
67:bf:ca:f7:3c:a6:4a:43:15:f7:f9:a3:fc:75:2f:
d0:0f:45:56:d3:63:0c:32:ac:c5:74:d3:9e:69:30:
bf:88:46:5f:20:23:2b:5d:6c:82:26:6f:b6:f3:87:
86:0e:34:8d:22:67:31:b6:de:25:b3:dd:c8:68:87:
56:27:df:0f:b2:60:23:d3:2f:e4:e9:de:16:3b:0e:
d1:7b:7e:81:1b:c9:f8:ed:b1:10:e3:71:c5:f5:55:
eb:f8:ad:e8:4c:e3:48:69:cb:67:72:76:60:ac:fa:
2b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:76:7F:A5:44:68:94:11:E9:D6:E2:EE:76:F1:EF:ED:00:30:3A:C1
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/sHZ_pURolBHp1uLudvHv7QAwOsE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.152.0/21
Signature Algorithm: sha256WithRSAEncryption
6e:00:9b:d5:65:92:8d:e9:7b:f0:dc:87:74:66:02:48:a2:e5:
dd:e2:32:ab:b0:5b:66:6e:dd:47:b5:56:47:2d:00:9a:a8:68:
92:0c:7f:1a:88:a1:2e:4d:fe:ec:21:1c:c3:e7:c8:06:ed:a9:
33:44:27:8a:4a:66:89:a8:80:fd:17:1d:dc:97:90:0a:03:18:
d4:e2:29:da:b8:ef:c5:77:fb:16:7d:98:f4:2b:f7:db:bc:b7:
85:5d:af:4e:aa:98:df:53:26:14:27:4c:a1:68:3d:c1:dc:ce:
7f:0b:17:a9:eb:58:8e:49:47:f3:83:5f:e4:7a:9b:3a:fd:59:
89:c3:6a:23:54:19:a0:5f:13:be:5d:72:4f:1c:e2:28:c9:b1:
ab:95:29:fd:60:81:65:df:cf:ca:b0:2f:2f:2c:ed:db:b7:a4:
64:6d:4f:b4:76:b7:cd:c0:04:0c:56:35:28:d8:ac:f8:5c:eb:
3c:bb:5f:21:fc:e6:45:3e:d4:7b:4f:9f:d5:e0:7c:26:99:cb:
cd:ba:72:04:57:03:74:d2:1b:15:46:89:1a:40:70:a4:d3:9c:
49:77:43:7c:9b:4d:46:36:f5:d8:77:ec:f6:a9:dd:32:35:60:
e2:46:33:9f:21:c2:08:53:28:aa:f7:62:9d:b2:4e:c4:07:55:
2c:68:3b:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:03:14 2023 by rpki-client on console-fra.rpki-client.org