Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1xXsHk7KPkaC6YxQxoWWx4dqwJI.roa
File: 1xXsHk7KPkaC6YxQxoWWx4dqwJI.roa (raw, json)
Hash identifier: WDyJon3nsnvrlI7rgrGuK5L+Gag/9mybwcbwCkQdY94=
Subject key identifier: D7:15:EC:1E:4E:CA:3E:46:82:E9:8C:50:C6:85:96:C7:87:6A:C0:92
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DCD
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1xXsHk7KPkaC6YxQxoWWx4dqwJI.roa
Signing time: Thu 29 Dec 2022 09:31:53 +0000
ROA not before: Thu 29 Dec 2022 09:31:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 150.117.192.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3533 (0xdcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D715EC1E4ECA3E4682E98C50C68596C7876AC092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:13:46:63:7c:9e:c2:12:fc:e4:f6:ec:01:ca:
73:c6:db:50:30:0c:76:5f:4f:3e:83:d7:e5:5d:55:
31:0f:58:d2:09:2e:a7:71:52:ff:b8:10:76:98:bf:
99:04:d7:d5:2e:c4:82:37:c0:32:95:ed:57:ba:d3:
ae:8b:6c:5d:d9:0b:1c:90:95:75:f5:42:04:58:ef:
b8:63:88:63:2e:3a:9d:f6:53:f8:33:04:e6:21:64:
6f:72:71:cd:d0:32:c1:1a:a1:1b:fc:45:42:4e:1e:
ec:8a:9b:e3:97:66:20:6e:d7:10:ec:7d:1f:5c:28:
1e:2d:c2:9f:f1:39:40:15:e6:db:c8:74:3f:60:94:
8c:d8:05:68:8d:08:b4:d5:8f:c6:40:0f:01:5a:e4:
b2:4d:02:91:26:f5:f5:07:b5:c8:14:3a:e2:35:37:
18:60:07:d1:d4:b8:9a:6a:15:e2:c5:e8:c6:a2:ca:
62:d3:d6:02:f0:ed:bd:88:63:ea:d3:55:e2:b0:da:
db:20:55:51:f5:b6:03:55:93:f3:ce:b0:0e:dc:f1:
dc:3a:14:4b:30:47:22:cd:58:fd:29:57:d4:78:46:
2f:82:4d:76:eb:c9:b6:33:50:51:b8:c3:bd:97:b0:
4c:d1:3c:22:ab:e0:d4:3e:20:9b:89:67:a4:57:72:
a1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:15:EC:1E:4E:CA:3E:46:82:E9:8C:50:C6:85:96:C7:87:6A:C0:92
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1xXsHk7KPkaC6YxQxoWWx4dqwJI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.192.0/20
Signature Algorithm: sha256WithRSAEncryption
28:18:7f:f9:1e:97:47:3f:f4:3c:6f:37:30:de:e2:f0:09:6b:
6b:91:77:ea:21:13:5a:df:13:af:3b:08:d9:20:df:01:df:5d:
a5:bc:1f:99:e7:02:e6:9f:c7:b4:7a:64:79:5c:d1:72:f2:a0:
c4:44:1b:ff:25:00:63:20:c9:de:68:ee:78:84:c9:30:f1:fa:
49:95:7c:5c:0d:8d:9d:6f:cb:5b:ad:c4:86:9c:1f:3c:0d:b4:
8f:af:19:82:82:3f:4b:0b:0e:b2:47:5b:f5:ba:41:48:d2:86:
29:a8:e4:d9:c0:b9:a9:70:72:a8:a3:ca:7b:ce:78:dd:e5:95:
f8:cc:f5:94:01:d9:e8:6b:79:b0:27:8d:5e:10:42:93:08:e5:
b8:9a:a3:b8:fc:1f:24:fa:1d:ca:ca:de:6e:df:d0:f1:c0:9e:
2f:63:ab:2a:3b:a5:d6:d2:c3:ca:43:de:de:68:bc:24:f7:77:
bc:8f:62:6a:7d:cb:f4:da:38:ab:4d:0c:e0:6e:13:a2:b5:8c:
60:4b:db:12:2e:20:5e:cf:3f:77:fd:07:38:12:f1:da:39:16:
5c:ad:fd:10:3e:b7:34:bf:52:37:70:dd:32:77:79:5d:16:e6:
ae:10:e6:30:4e:70:f8:72:d9:02:6b:70:40:8c:d5:e3:4d:cf:
ba:db:d7:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:36 2023 by rpki-client on console-ams.rpki-client.org