Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fVxIsZjY1pWwNfp1aArUD2A0sUQ.roa
File: fVxIsZjY1pWwNfp1aArUD2A0sUQ.roa (raw, json)
Hash identifier: BMdnBA53mgs5oVMgHu4kVpYVSsCiPAjiePOR0/0bFSI=
Subject key identifier: 7D:5C:48:B1:98:D8:D6:95:B0:35:FA:75:68:0A:D4:0F:60:34:B1:44
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 0D61
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fVxIsZjY1pWwNfp1aArUD2A0sUQ.roa
Signing time: Thu 15 Sep 2022 02:38:58 +0000
ROA not before: Thu 15 Sep 2022 02:38:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 150.116.232.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3425 (0xd61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Sep 15 02:38:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7D5C48B198D8D695B035FA75680AD40F6034B144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d6:0b:88:e4:a5:f6:11:1e:e5:ea:24:6d:76:
e0:99:de:3c:e0:b8:e9:a0:88:06:aa:06:6a:28:23:
64:65:cd:db:86:38:79:ce:f9:de:75:ec:d5:8b:12:
3b:14:2c:b5:e9:b0:ae:8c:78:15:38:f0:31:2d:08:
de:21:71:11:b5:54:50:75:6a:50:ad:6f:30:07:62:
92:ba:b0:2d:64:6d:7f:ab:f4:d2:22:46:94:24:3b:
f5:18:5e:be:cd:9c:6e:0a:e3:8a:a7:5c:32:81:fe:
6e:90:30:0a:d6:41:4f:26:1a:24:ff:43:d9:72:c3:
f7:8b:6c:6d:90:ac:67:4a:d6:6e:76:8a:64:1b:48:
52:b3:fc:79:75:04:06:2d:89:3a:38:94:08:0e:ad:
5d:ce:18:b2:d0:4b:54:67:77:03:d6:82:d5:85:4e:
c1:c0:d7:98:1c:09:68:81:84:fe:5b:83:88:ad:62:
87:48:09:c0:33:66:35:97:43:20:37:c1:f7:7d:a1:
22:b8:0d:58:aa:d1:cc:9a:5d:8f:b3:72:82:9f:62:
7a:58:70:25:ee:12:98:05:b4:eb:aa:e5:c3:30:21:
f5:ac:53:e6:6b:aa:9f:cc:e9:d2:fe:e8:8e:66:46:
e7:97:91:1d:40:7a:fb:8f:d8:d8:23:e5:58:1c:eb:
d0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:5C:48:B1:98:D8:D6:95:B0:35:FA:75:68:0A:D4:0F:60:34:B1:44
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fVxIsZjY1pWwNfp1aArUD2A0sUQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.116.232.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:e1:0c:c0:6b:8f:07:14:b5:a6:f4:1c:e7:c9:53:83:35:be:
5d:29:12:15:c8:b0:c3:1e:3e:8a:ff:e6:02:d2:aa:d7:07:73:
c7:7c:b6:0c:b1:2a:ea:48:e1:29:43:aa:4d:8b:51:d8:24:23:
e3:a1:0c:46:7d:82:37:57:11:4c:ff:1d:ce:e2:be:1d:e8:92:
9c:07:14:6d:ff:37:aa:d2:ff:96:f1:f1:2e:31:06:25:9d:c7:
7b:a6:3d:8e:f0:69:00:10:d1:11:7f:1d:82:9d:1b:47:01:f9:
9b:31:9d:3e:63:6d:04:e8:09:9b:5e:a7:b7:34:68:71:a9:ed:
40:05:a3:6d:49:f0:9b:3a:4d:d6:12:55:eb:63:3e:7b:2d:4f:
1d:fa:e6:c9:ab:86:d0:4e:2d:fd:50:46:94:2b:0f:ea:7e:d6:
91:aa:6b:de:9e:86:28:e1:3b:ac:72:15:b7:cd:77:f2:ad:f4:
0a:3d:63:9d:20:f2:20:dc:c5:79:a7:b7:cb:f2:61:5a:69:53:
ec:6a:77:8f:a8:f1:3c:37:d1:34:74:40:39:0b:40:06:88:d4:
56:82:c1:54:06:7f:3c:ce:7f:2a:df:0a:f1:55:5d:2e:90:de:
ec:93:2d:86:5b:3b:b5:5e:f2:bf:32:ba:57:90:64:97:37:79:
35:02:58:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:58 2023 by rpki-client on console-fra.rpki-client.org