Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/EhzGOvbm4tSSsYl0xi147Ha0z34.roa
File: EhzGOvbm4tSSsYl0xi147Ha0z34.roa (raw, json)
Hash identifier: esGRTOTiUI/eBgOBv1wlm7pUuHnKLnqvKOmiK9qABLA=
Subject key identifier: 12:1C:C6:3A:F6:E6:E2:D4:92:B1:89:74:C6:2D:78:EC:76:B4:CF:7E
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0AB7
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/EhzGOvbm4tSSsYl0xi147Ha0z34.roa
Signing time: Thu 15 Sep 2022 02:37:44 +0000
ROA not before: Thu 15 Sep 2022 02:37:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9244
IP address blocks: 61.247.160.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2743 (0xab7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 15 02:37:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=121CC63AF6E6E2D492B18974C62D78EC76B4CF7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a9:b4:65:c2:71:62:31:24:14:99:f4:7c:40:
4d:01:bd:7d:b7:67:00:e9:9b:19:22:1d:37:0e:e6:
ca:ff:27:52:36:3e:e7:26:63:36:52:12:7c:d3:ef:
e7:09:84:0f:5e:92:36:19:c4:76:b9:a4:65:90:53:
89:f9:26:b9:f3:08:8e:9d:bd:a9:24:d1:45:a8:a7:
f3:c8:ae:e9:93:24:f5:b5:89:db:ff:1a:8a:2d:6f:
39:5f:2a:97:49:e4:6e:a8:79:ff:a4:31:5f:4d:2b:
64:a3:2b:a8:bb:20:f8:6c:dd:e4:69:45:dd:b0:e1:
ff:1d:34:6c:e8:96:28:83:54:6b:80:4d:2f:f6:e7:
fe:e1:73:9a:88:e4:0f:d5:70:20:a0:63:85:ea:8e:
60:24:0b:cd:7b:5d:18:ab:ce:04:38:4c:8a:5c:81:
86:31:78:a4:68:c8:2c:80:15:61:eb:2c:f4:e3:7d:
83:1c:15:b4:a4:be:fa:69:4b:76:c5:83:87:3d:70:
f4:32:0c:32:bd:1a:2b:0d:25:67:55:66:89:5c:33:
14:3d:11:e1:b9:38:95:30:a8:fa:66:7d:cd:a0:2a:
07:47:72:b5:18:b3:25:eb:fd:28:34:1b:21:c9:a5:
18:b7:cd:0e:59:c6:82:b4:ac:b0:65:55:52:46:a1:
bb:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:1C:C6:3A:F6:E6:E2:D4:92:B1:89:74:C6:2D:78:EC:76:B4:CF:7E
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/EhzGOvbm4tSSsYl0xi147Ha0z34.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.247.160.0/20
Signature Algorithm: sha256WithRSAEncryption
a8:96:31:50:00:33:06:3e:34:e1:bf:ca:b3:08:7e:ac:09:ab:
b6:ed:0a:7d:e7:86:d1:8f:8b:10:0d:88:3e:7a:3b:bf:81:24:
d9:0a:1c:e4:d6:2c:bf:32:07:92:2e:09:7f:2f:4c:a9:88:cc:
cc:0f:14:11:fa:67:0a:fe:78:d6:65:4f:4c:fb:f2:60:98:2e:
e9:fa:d2:20:f4:02:68:87:db:4f:83:1b:3a:5e:db:73:92:f5:
76:24:5f:6f:8f:e6:20:bb:c8:cc:d1:7e:f1:07:57:cf:84:95:
d2:a5:99:67:7f:6b:7b:ed:28:c3:87:3d:df:06:2c:1f:ec:6d:
c8:30:01:4c:81:93:18:0d:57:01:8d:e7:d5:fe:d7:a7:67:84:
a1:ad:8e:02:97:e7:9c:ea:f1:ae:b0:57:cd:5b:4f:06:1a:c0:
3c:ba:26:2c:05:17:b8:64:7d:44:9e:a9:c3:b4:8a:83:dc:23:
3f:02:c8:08:4f:79:c6:44:5c:6f:93:73:9a:d1:a2:a4:86:ed:
db:4c:da:ff:a5:2f:9b:09:e7:d1:44:5b:d6:c8:da:ee:ae:e8:
0b:26:3d:f0:5f:43:11:f1:8c:8e:05:e6:d0:f7:e9:31:86:d6:
28:40:87:d4:8f:e7:f8:3d:aa:5c:71:1a:9a:4c:6d:b1:53:23:
d6:34:59:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:03:15 2023 by rpki-client on console-fra.rpki-client.org