Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/yKPgcBuA8TywGXJIU8fvaTBziak.roa
File: yKPgcBuA8TywGXJIU8fvaTBziak.roa (raw, json)
Hash identifier: OtryUYPIn7P7Rw1lY1dmGStkpnSXuTcnWhwqZ0scxs4=
Subject key identifier: C8:A3:E0:70:1B:80:F1:3C:B0:19:72:48:53:C7:EF:69:30:73:89:A9
Certificate issuer: /CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Certificate serial: 10B0
Authority key identifier: F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/yKPgcBuA8TywGXJIU8fvaTBziak.roa
Signing time: Thu 15 Sep 2022 02:35:09 +0000
ROA not before: Thu 15 Sep 2022 02:35:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131606
IP address blocks: 103.124.40.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4272 (0x10b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Validity
Not Before: Sep 15 02:35:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C8A3E0701B80F13CB019724853C7EF69307389A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3b:4e:12:11:aa:c6:6c:55:fb:92:9e:4a:28:
46:b6:78:14:1e:2f:5f:45:ef:ba:b9:b1:dc:8b:5d:
18:1c:13:47:00:d4:d4:be:65:4f:74:49:18:f3:ed:
aa:03:68:1b:ba:9c:0b:7f:43:44:7f:3e:88:d7:b6:
15:af:93:71:88:48:51:5d:81:c7:c2:45:4c:73:08:
5d:16:56:39:59:ed:cf:ee:52:87:e0:3b:a7:3e:83:
e8:c3:2e:c0:e1:19:73:a0:2b:fe:44:11:95:f7:04:
7f:1f:7f:15:f4:85:f1:75:b9:9f:84:60:3a:59:6b:
88:6e:2e:c7:87:e2:47:01:5a:d4:d9:ef:67:07:c7:
35:ed:b9:89:82:9b:e7:d5:20:a5:32:06:5f:f3:10:
c8:cb:83:f9:41:e4:e2:39:4c:0a:40:d2:f0:80:89:
ac:d7:5f:23:1f:4e:07:f8:8b:a9:fc:e7:0e:a0:5c:
d5:aa:8b:34:1b:fb:aa:47:b0:fa:e8:85:15:7a:be:
57:7e:c3:28:54:ae:25:c5:eb:30:f4:70:d0:fc:fe:
93:62:11:97:56:f9:07:d3:01:e5:92:99:e2:55:e1:
10:ea:d0:ae:2e:58:ab:55:c0:0a:50:69:cb:b4:6c:
67:3a:1a:09:eb:f6:f5:d3:37:3b:6f:b5:e2:60:af:
30:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:A3:E0:70:1B:80:F1:3C:B0:19:72:48:53:C7:EF:69:30:73:89:A9
X509v3 Authority Key Identifier:
keyid:F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/yKPgcBuA8TywGXJIU8fvaTBziak.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.40.0/23
Signature Algorithm: sha256WithRSAEncryption
50:3a:cc:9a:58:cf:a1:53:89:c8:3c:ef:e3:c8:42:56:e9:a2:
5f:17:e8:d6:43:13:d5:01:dd:27:c0:17:b3:9c:1b:9a:47:95:
13:5a:4a:67:b7:56:e6:df:6f:e8:3b:94:27:78:1c:eb:54:3e:
29:cc:2f:ab:4c:49:c3:53:2e:2d:04:07:d3:8d:14:b8:68:e1:
31:40:70:8b:04:5a:3b:da:e8:4c:34:a2:b2:29:e3:1e:a8:57:
b6:6d:2e:13:ae:38:e5:df:ed:65:cb:1f:46:1c:b4:9c:79:88:
cb:3a:fc:bd:96:84:7c:de:14:56:c2:ca:ec:f8:c3:7f:d4:d1:
69:a5:b5:ba:b5:c8:5e:99:e1:04:51:76:c7:d2:d5:f5:11:d5:
2b:7e:c5:7f:82:20:e3:df:95:18:94:9f:a2:1d:8e:6a:48:20:
6b:ea:c8:e7:ad:87:58:7d:6f:26:d5:0c:b5:6b:c0:9b:43:b8:
e0:41:53:4d:2f:5b:fd:f9:c3:f2:ab:15:44:f7:80:59:d6:29:
bc:cc:2d:9b:fa:ff:9d:eb:37:20:ce:a3:1d:94:fe:e9:ee:ff:
12:94:71:3b:40:34:14:b5:74:c1:e2:60:56:af:12:b7:b2:ea:
38:54:2a:af:c8:21:fd:01:6f:99:15:77:aa:fc:23:ae:69:51:
0a:b4:d6:b6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:40 2023 by rpki-client on console-ams.rpki-client.org