Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ZpJTG2hycbYkPHGzvuxXbqw8UrQ.roa
File: ZpJTG2hycbYkPHGzvuxXbqw8UrQ.roa (raw, json)
Hash identifier: EHsdthm0V3hV1tzP6VFwm1gTxtvr2zoPkhwiwx6UN8Q=
Subject key identifier: 66:92:53:1B:68:72:71:B6:24:3C:71:B3:BE:EC:57:6E:AC:3C:52:B4
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0AB7
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ZpJTG2hycbYkPHGzvuxXbqw8UrQ.roa
Signing time: Thu 15 Sep 2022 02:37:42 +0000
ROA not before: Thu 15 Sep 2022 02:37:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9244
IP address blocks: 61.56.67.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2743 (0xab7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 15 02:37:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6692531B687271B6243C71B3BEEC576EAC3C52B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:93:d5:f9:2a:2f:9c:69:1b:e1:b5:e7:65:cd:
a4:9b:1e:22:85:94:4d:58:b7:d6:ee:c0:50:0f:af:
40:c6:2e:53:0a:87:ba:cf:d8:a3:b6:74:d8:92:d4:
b3:73:69:22:c5:0b:5a:19:7a:69:06:2a:d3:e3:92:
96:33:1c:50:84:52:a5:2f:d3:ff:34:93:10:e9:b1:
20:c4:f6:e0:ee:c6:97:77:8e:49:9a:d2:89:77:85:
6e:48:b5:63:d5:95:15:ab:a1:8b:93:17:2d:84:4f:
d1:80:e2:ae:f1:d6:8a:c6:97:5f:9d:10:b3:26:c1:
3a:77:f5:77:06:44:21:3b:7f:21:dd:1e:ff:75:44:
a5:e4:ca:8d:d9:62:6f:9e:3a:22:4f:82:29:f9:0c:
a3:2a:74:aa:71:e3:43:fc:5e:69:ef:e3:7b:d2:da:
d5:f8:33:62:cb:22:50:64:3a:cc:91:4e:74:9a:31:
43:8f:3c:34:7b:ef:63:3a:ac:e9:80:b8:98:ce:c8:
bd:ac:fb:64:5a:95:c9:35:a1:62:90:cf:27:f4:74:
d3:b5:33:3d:8b:0a:4a:0e:62:28:46:78:2a:26:53:
e6:8d:07:35:09:fb:fa:db:5e:33:3d:3b:7f:bb:56:
50:40:b5:a2:99:74:ca:cf:5c:aa:ae:d2:3c:5b:ef:
5d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:92:53:1B:68:72:71:B6:24:3C:71:B3:BE:EC:57:6E:AC:3C:52:B4
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/ZpJTG2hycbYkPHGzvuxXbqw8UrQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.67.0/24
Signature Algorithm: sha256WithRSAEncryption
11:ed:c8:52:e0:7c:bc:8c:18:2d:e8:88:59:a2:f7:7e:e8:76:
c0:12:da:67:1f:1b:48:2c:c9:3b:89:ee:3c:8c:0b:a7:57:ba:
f9:6e:5a:e3:b9:f7:bf:a1:63:30:c6:3d:16:04:11:f6:9c:a8:
dd:c3:fc:fa:94:55:de:71:40:50:63:66:7a:a0:b6:7b:b7:1c:
cd:b8:f3:8d:bd:28:12:a3:46:fa:41:5b:4e:3d:ab:9f:54:15:
00:31:80:28:2f:0b:56:d4:f1:0e:8e:fd:40:49:29:62:9c:09:
eb:cb:f4:b5:6c:42:db:1c:b9:78:f1:d1:15:8e:37:19:17:2d:
90:bd:7e:b4:3e:95:f7:15:5e:ce:b8:81:c5:a1:7a:6e:c2:5d:
a8:f5:0a:9d:09:18:09:f4:33:2d:36:48:07:7d:ec:39:77:8f:
33:c3:8d:c2:55:7c:47:82:d3:0a:5a:44:fe:b1:fa:84:ea:43:
e3:a7:c9:ae:21:b2:8f:65:9d:61:83:e4:03:de:c7:8f:bf:0a:
5b:75:1d:8f:99:93:50:cb:ed:58:eb:1c:47:8e:93:61:49:29:
87:06:5b:2e:73:e0:9f:86:e9:fc:19:7b:04:a6:a5:ab:06:9d:
7d:c1:29:2a:54:4d:f9:61:cc:4f:9b:73:5d:ea:66:9f:e8:ba:
9b:aa:65:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:39 2023 by rpki-client on console-ams.rpki-client.org