Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dkoCJxmglwtIK1Zpi9z6pn9htMY.roa
File: dkoCJxmglwtIK1Zpi9z6pn9htMY.roa (raw, json)
Hash identifier: AMCMjUtRhnsnNUDZuF+jO8EgiMgbCONE68KBr/TwESA=
Subject key identifier: 76:4A:02:27:19:A0:97:0B:48:2B:56:69:8B:DC:FA:A6:7F:61:B4:C6
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0DCA
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dkoCJxmglwtIK1Zpi9z6pn9htMY.roa
Signing time: Thu 29 Dec 2022 09:31:51 +0000
ROA not before: Thu 29 Dec 2022 09:31:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 150.117.168.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3530 (0xdca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Dec 29 09:31:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=764A022719A0970B482B56698BDCFAA67F61B4C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:57:f7:73:5e:fe:a5:3f:86:af:d8:80:f1:02:
68:f9:c3:1b:db:df:69:0d:d2:de:a2:46:a6:ce:ac:
9d:f9:f8:3a:d8:ee:ca:5e:50:c7:8e:4f:7e:2e:17:
7b:c3:92:d3:2c:c7:38:dd:08:78:9e:a9:14:72:59:
8d:52:ac:03:98:de:5b:83:c2:f8:1a:a7:e4:ce:80:
56:c7:01:62:d7:76:d6:c2:49:bf:1c:27:be:2d:47:
ae:83:8a:e5:56:4f:63:67:2a:b1:77:ab:ce:ec:94:
1f:67:21:f7:66:18:a4:b9:00:6c:0b:a7:a1:45:ed:
f3:2a:92:9a:e2:b5:e3:10:dd:13:df:9c:47:57:60:
8e:60:4e:60:12:88:fe:aa:d0:55:6d:72:03:65:b2:
11:3b:86:20:a7:88:5b:04:96:81:b8:1b:4d:b6:1a:
0d:b7:7b:ec:d6:f5:64:c2:79:a7:a0:87:d6:97:57:
53:fd:4d:63:2a:f0:03:a6:99:12:12:38:84:30:aa:
e7:f6:94:53:05:41:b6:b3:8d:09:68:4d:aa:40:50:
c9:87:05:5b:3a:f4:b4:79:c2:cf:cd:6e:88:51:15:
3a:e2:c1:03:46:d4:c8:37:99:8c:68:d3:15:b4:af:
da:fb:13:2a:f8:c4:68:be:a8:b7:00:37:83:e9:36:
ff:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:4A:02:27:19:A0:97:0B:48:2B:56:69:8B:DC:FA:A6:7F:61:B4:C6
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dkoCJxmglwtIK1Zpi9z6pn9htMY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.168.0/21
Signature Algorithm: sha256WithRSAEncryption
9f:e9:4c:58:23:15:e0:97:ab:e1:a4:73:89:a9:b3:9e:a1:c9:
51:d0:82:87:fb:e2:1d:f4:ba:99:79:e0:f4:7e:7a:c6:f0:90:
60:69:c3:fb:49:90:7e:c3:c5:9d:16:d8:09:b6:17:f5:03:9a:
cb:1b:52:1c:cc:3a:a1:f7:97:71:b9:f8:00:6a:d6:0e:cc:d0:
c7:2e:6e:5b:f0:bf:8d:53:17:1d:83:3c:63:b9:7c:c2:9d:88:
d0:db:c4:ee:60:c7:2f:93:c4:95:43:43:0d:9c:95:a5:8e:ab:
db:f0:43:64:a4:68:2e:b0:43:8b:07:27:d9:6a:c0:d7:78:a0:
bf:ce:d8:3c:dd:7d:64:6c:25:ad:06:c6:77:01:87:83:72:54:
25:11:70:99:ab:94:14:3d:f5:80:af:0c:db:b7:57:9f:8c:32:
e4:bc:87:99:eb:0a:85:fe:1f:6d:d8:10:af:16:a9:71:6b:51:
25:c4:73:21:56:5a:b0:76:f4:a7:ec:a9:25:0a:e9:7e:55:c9:
a3:77:30:79:e0:e5:6e:a5:31:00:7f:89:a2:42:ad:65:0f:b4:
51:8c:74:9c:6a:63:88:6e:25:ae:eb:e6:33:b3:8c:5f:1b:ba:
b6:43:33:23:be:5f:83:67:b7:2e:64:d4:5a:1c:7b:bd:38:38:
5d:07:c0:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:54:37 2023 by rpki-client on console-ams.rpki-client.org