Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/mBkV3b9KiZSbRj2Fr9DB6yVMk68.roa
File: mBkV3b9KiZSbRj2Fr9DB6yVMk68.roa (raw, json)
Hash identifier: oQ2atdvi1dA1k+G3dqUjrnwWTbSqBYD5hgkOW768x7A=
Subject key identifier: 98:19:15:DD:BF:4A:89:94:9B:46:3D:85:AF:D0:C1:EB:25:4C:93:AF
Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Certificate serial: 04
Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/mBkV3b9KiZSbRj2Fr9DB6yVMk68.roa
Signing time: Wed 03 Jan 2024 03:00:26 +0000
ROA not before: Wed 03 Jan 2024 03:00:26 +0000
ROA not after: Tue 24 Dec 2024 15:30:20 +0000
asID: 150766
IP address blocks: 36.50.228.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Validity
Not Before: Jan 3 03:00:26 2024 GMT
Not After : Dec 24 15:30:20 2024 GMT
Subject: CN=981915DDBF4A89949B463D85AFD0C1EB254C93AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:26:94:d4:36:77:fe:c0:1f:79:cd:b3:38:ab:
fd:1c:d4:cf:f1:d9:5e:68:38:a3:40:17:1a:c4:c0:
be:7f:50:22:f2:ad:de:90:c8:c4:77:ee:52:b7:5d:
dc:d7:e3:65:f2:89:b5:34:14:92:bd:cb:52:ab:71:
f4:23:f1:1a:6c:b5:fb:60:0d:1e:26:78:7d:c8:34:
5f:e9:68:61:66:76:76:29:25:40:39:46:ac:e6:b8:
9c:71:a4:b6:6d:c9:6a:74:6d:dc:1d:be:87:ef:46:
d2:29:88:6a:2e:cb:3a:3c:c9:a6:fd:82:7e:26:a9:
28:41:e4:5d:56:23:4b:ec:2e:b5:3d:99:f5:d3:a7:
24:91:64:31:b8:53:c3:b4:20:5f:b6:31:b3:86:12:
ba:fb:2f:40:62:dc:6c:b5:91:29:b6:1e:f7:35:1e:
ec:d0:f5:5f:6b:d3:d0:3e:3a:03:c0:c0:6d:15:59:
ee:eb:64:ec:62:4b:cb:49:c3:9a:50:56:79:c6:85:
1e:9c:4b:4e:3d:93:21:4b:c3:fd:43:0a:c1:9c:c6:
e2:08:c3:4b:86:7d:64:19:5f:5a:18:08:8d:6e:df:
01:bd:be:2a:38:a7:67:aa:d8:87:e5:5e:ca:a8:01:
fd:47:23:cd:3d:cb:8b:96:27:48:50:13:c3:eb:3e:
e6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:19:15:DD:BF:4A:89:94:9B:46:3D:85:AF:D0:C1:EB:25:4C:93:AF
X509v3 Authority Key Identifier:
keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/mBkV3b9KiZSbRj2Fr9DB6yVMk68.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.228.0/23
Signature Algorithm: sha256WithRSAEncryption
75:74:cd:0b:29:79:33:c4:28:9b:9b:f0:ef:72:3e:49:f7:98:
bc:ad:5f:ec:f8:62:45:46:cc:d2:92:19:0b:d2:ca:a8:1f:6c:
d3:0b:0c:7a:e5:e1:08:da:2b:82:ee:59:8a:56:a6:6b:61:a2:
a8:40:f8:af:da:1d:c6:67:fc:2e:09:44:36:47:7c:cf:d1:2a:
a7:2c:22:00:2c:69:8d:54:04:e5:be:82:3c:77:e8:40:36:21:
c7:ce:3b:25:0f:62:9a:a5:cc:f6:40:e2:a7:fa:f3:8a:a1:97:
55:67:08:22:f5:0e:4e:a0:c0:bc:91:13:6b:4a:ae:73:8b:57:
db:ed:13:aa:82:ee:0b:1e:11:05:0f:85:84:b7:97:e6:79:1c:
27:20:82:ad:06:38:61:25:72:05:ea:22:78:b1:48:7b:1d:fb:
b7:da:bb:e5:7b:fb:f9:32:03:ab:c2:0d:45:a2:a1:fd:20:84:
78:ed:e2:a3:d8:5d:ec:60:d4:e3:79:10:a4:75:27:0c:c7:01:
4d:b6:1c:0a:5b:9b:5b:83:ba:e8:2c:8c:7e:83:79:b1:a3:1f:
58:0d:70:93:6b:1a:d6:63:7c:fd:e4:92:89:71:7b:9a:e9:cf:
82:67:73:a8:d5:36:04:b3:0c:a3:7a:8f:79:30:c3:a3:ac:f2:
16:52:46:65
-----BEGIN CERTIFICATE-----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Generated at Wed Jan 3 20:26:17 2024 by rpki-client on console-fra.rpki-client.org