Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COMPAL/PyM_55iwylV6fmOekIw5yJZuKeM.roa
File: PyM_55iwylV6fmOekIw5yJZuKeM.roa (raw, json)
Hash identifier: PyrYp1UVGjae3tHO0uTIdJj8pJ+UxD95NXvZ3OWgsp8=
Subject key identifier: 3F:23:3F:E7:98:B0:CA:55:7A:7E:63:9E:90:8C:39:C8:96:6E:29:E3
Certificate issuer: /CN=791128256BB12B79908180ABC59F2CF8629889EF
Certificate serial: 09ED
Authority key identifier: 79:11:28:25:6B:B1:2B:79:90:81:80:AB:C5:9F:2C:F8:62:98:89:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/PyM_55iwylV6fmOekIw5yJZuKeM.roa
Signing time: Thu 15 Sep 2022 02:50:07 +0000
ROA not before: Thu 15 Sep 2022 02:50:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131680
IP address blocks: 103.122.216.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2541 (0x9ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=791128256BB12B79908180ABC59F2CF8629889EF
Validity
Not Before: Sep 15 02:50:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3F233FE798B0CA557A7E639E908C39C8966E29E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e9:66:bc:1e:e7:d2:85:b0:f6:6f:0f:83:ff:
aa:29:6c:32:f7:a7:93:ca:cb:35:0a:00:43:cf:24:
1b:96:ad:9b:65:b9:7e:04:be:85:20:6e:17:5b:1c:
52:a3:ac:b3:bf:4d:9b:14:61:d0:d9:de:3d:06:8b:
62:38:7e:b6:c8:22:0c:ae:40:27:34:9b:04:03:99:
56:c6:a0:e6:02:47:19:c0:60:57:33:2d:a8:1d:ff:
93:a2:97:c8:93:d2:b5:41:10:cb:f3:9e:8a:97:89:
dd:74:84:9e:37:dd:30:cb:3f:ea:66:a2:c8:82:1d:
43:91:5e:a4:6d:3e:a1:6f:c7:84:06:31:3f:ac:a7:
29:3d:43:f8:dc:fd:50:78:0f:85:e8:0c:9e:89:a6:
49:78:bf:5a:11:ac:e9:27:f1:d8:ee:25:06:6f:3c:
ab:79:61:a1:e2:e5:75:88:b6:6d:dd:6f:d5:79:e3:
67:ad:b4:a1:86:6e:0a:90:fc:59:12:77:87:be:a5:
2c:12:e8:ca:6f:d7:15:56:c9:2e:60:d8:4d:8b:51:
4b:70:28:92:40:c6:4e:a6:d9:d1:36:e9:5f:92:b5:
53:73:f9:10:0c:9b:d3:e5:c4:50:5a:37:d8:2c:32:
9f:d4:ce:59:57:8f:d9:32:61:df:d7:d9:2a:04:ad:
14:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:23:3F:E7:98:B0:CA:55:7A:7E:63:9E:90:8C:39:C8:96:6E:29:E3
X509v3 Authority Key Identifier:
keyid:79:11:28:25:6B:B1:2B:79:90:81:80:AB:C5:9F:2C:F8:62:98:89:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/eREoJWuxK3mQgYCrxZ8s-GKYie8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/PyM_55iwylV6fmOekIw5yJZuKeM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.216.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:a9:09:08:2e:bb:8c:21:87:6b:76:8b:5e:c6:02:91:37:0d:
4d:f6:2d:bb:c6:96:7f:d8:d4:45:ce:2c:ae:ae:80:f5:c3:cf:
ca:79:e2:6b:c4:72:96:45:b3:13:8f:53:e8:cb:36:36:66:e6:
98:dd:21:14:63:49:6b:25:c8:30:a4:74:65:bc:cf:8c:e2:53:
7c:2a:53:30:2e:98:92:66:64:34:60:17:d3:fd:83:b6:28:57:
d0:06:74:0e:23:9c:d7:a8:5b:7c:84:a9:b1:2b:81:a0:3d:a7:
5b:2a:99:e9:c3:5d:e3:8f:90:32:8d:56:fe:8a:38:b5:6d:ae:
f6:19:ba:ed:a5:e5:35:33:64:99:c9:1e:ea:e4:ee:b3:95:4a:
c9:8e:13:40:3e:4c:e0:ae:26:b9:c4:fb:a1:29:8e:e7:7b:0a:
30:cf:b1:1f:a5:f5:af:d7:0a:8e:53:72:c7:90:e5:cd:af:23:
ad:e2:dd:97:7e:9e:c7:06:8f:e9:09:6b:d8:ef:c8:7f:56:48:
46:7a:41:0e:04:8e:7b:80:0e:50:8d:90:9b:72:22:b1:58:d9:
07:1a:92:a2:18:0e:22:40:6e:61:08:15:77:f7:fa:fc:84:af:
58:c3:f1:dc:11:cb:c5:30:2f:2f:8d:0b:18:59:29:f4:f7:ee:
0c:dc:92:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:03:15 2023 by rpki-client on console-fra.rpki-client.org