Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCT/XrE_vVlQRi9luJ8SGXQaHsgYucA.roa
File: XrE_vVlQRi9luJ8SGXQaHsgYucA.roa (raw, json)
Hash identifier: YB7r12dQnkU99+Yc2NOTRs3TL9ag4jfxOibSRteMxyo=
Subject key identifier: 5E:B1:3F:BD:59:50:46:2F:65:B8:9F:12:19:74:1A:1E:C8:18:B9:C0
Certificate issuer: /CN=9B062D74C7F512F04AE60955C5456FC19755337F
Certificate serial: 0A39
Authority key identifier: 9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/XrE_vVlQRi9luJ8SGXQaHsgYucA.roa
Signing time: Thu 15 Sep 2022 02:50:21 +0000
ROA not before: Thu 15 Sep 2022 02:50:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131601
IP address blocks: 114.29.244.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2617 (0xa39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B062D74C7F512F04AE60955C5456FC19755337F
Validity
Not Before: Sep 15 02:50:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5EB13FBD5950462F65B89F1219741A1EC818B9C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2a:a2:b5:79:87:65:3f:f2:a1:6a:a0:ae:6d:
43:bc:d2:78:19:77:36:6e:31:d8:61:cb:f7:f5:8f:
ce:80:51:0f:35:c2:11:79:c4:99:5e:8a:de:58:2d:
2c:cf:48:04:eb:f1:eb:4b:21:c6:d1:7c:08:53:b9:
b4:a4:12:af:17:31:b4:b7:15:e8:9c:3d:1a:0d:a4:
c9:6a:39:9b:5f:68:17:1a:c7:9d:21:be:df:aa:46:
a2:e5:0c:89:cc:54:a8:a8:b5:76:3e:c4:a8:b1:69:
38:f9:75:6b:54:d1:4f:28:a6:44:9d:f8:14:0b:20:
4e:4d:46:1c:1f:aa:3a:98:19:6b:94:54:a5:f8:eb:
e1:5a:5d:9b:4a:aa:48:d1:9b:08:ad:94:12:99:f6:
58:43:2d:01:c2:68:c1:a5:d8:0c:e5:07:67:05:ad:
cc:e5:ca:df:a7:e9:bb:7e:5e:aa:fb:57:bd:6f:1f:
9b:da:b2:ba:fe:02:47:1a:f6:c6:84:ff:a4:39:7a:
f2:83:dc:f3:84:62:e9:7c:0f:51:c8:ac:33:b7:aa:
4e:53:85:23:ae:c2:6d:6c:25:a5:c3:e8:c2:c0:4a:
3c:a6:f9:4b:80:a3:46:be:0c:3d:ff:04:5e:28:db:
1f:8d:29:53:ce:1d:af:b6:2e:85:47:02:bd:95:f7:
08:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:B1:3F:BD:59:50:46:2F:65:B8:9F:12:19:74:1A:1E:C8:18:B9:C0
X509v3 Authority Key Identifier:
keyid:9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/XrE_vVlQRi9luJ8SGXQaHsgYucA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.29.244.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:d2:74:d2:4f:b7:61:38:68:fe:1c:29:1d:2a:ef:b7:93:85:
16:f3:86:bf:40:70:f6:3b:1e:df:68:d3:46:db:d5:4f:8f:b7:
34:7d:d8:ca:0a:5a:49:2a:bd:cd:34:f8:5c:da:f0:73:d6:68:
27:f4:a2:a6:b9:df:54:c2:10:07:09:6b:b0:d7:08:00:e0:ff:
10:52:e5:80:3e:7d:1b:27:a1:85:b0:e2:bb:f1:5d:d0:b3:bb:
81:f5:57:da:ab:11:84:93:44:02:77:30:dc:7f:83:3e:d7:43:
00:d5:6a:8d:ca:63:d6:93:6d:43:24:c8:62:cb:49:84:fb:3f:
a0:1e:d4:b4:54:24:82:9b:c7:0f:63:ba:78:0c:18:51:0a:91:
47:9a:d3:24:d4:9a:72:6e:59:1f:11:7b:c0:11:0c:04:4c:f4:
53:a9:07:cc:be:d0:19:82:87:e5:05:d6:e5:3d:98:cf:74:74:
ae:9c:97:64:5d:52:be:b3:2b:40:1a:59:9c:d2:3a:c0:c1:ca:
f6:ce:c1:72:ec:86:63:2d:f0:60:ad:5f:f2:3f:ea:2a:57:fe:
98:37:96:40:9a:8c:27:56:4a:33:cd:ca:22:3d:de:df:e5:1e:
9f:8a:ae:2a:cf:3f:1e:6f:2d:72:33:df:df:46:34:60:24:f4:
b0:7b:71:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:03:15 2023 by rpki-client on console-fra.rpki-client.org