Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FISC/KOGdykZ-mkUw3iYdvITPWzPhD50.roa
File: KOGdykZ-mkUw3iYdvITPWzPhD50.roa (raw, json)
Hash identifier: Jylh5Xq3bOeiNzKE5eGFprSx8turb4z81PyE0m+YLQQ=
Subject key identifier: 28:E1:9D:CA:46:7E:9A:45:30:DE:26:1D:BC:84:CF:5B:33:E1:0F:9D
Certificate issuer: /CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2
Certificate serial: 0A47
Authority key identifier: F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/KOGdykZ-mkUw3iYdvITPWzPhD50.roa
Signing time: Thu 15 Sep 2022 02:38:48 +0000
ROA not before: Thu 15 Sep 2022 02:38:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131588
IP address blocks: 103.229.134.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2631 (0xa47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2
Validity
Not Before: Sep 15 02:38:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=28E19DCA467E9A4530DE261DBC84CF5B33E10F9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5f:e1:fb:28:a5:c7:03:c8:70:51:51:2d:bb:
45:d8:56:fc:73:84:3d:ec:4f:14:de:0b:4e:8c:61:
ae:56:96:df:3d:03:9c:a6:ce:81:02:f1:f7:d6:60:
13:fe:91:5a:0c:3d:a6:7c:57:68:bb:40:f0:8b:3b:
f6:0f:5e:c9:f8:90:49:5e:1e:a3:d8:53:dc:e0:1d:
2c:e3:07:f4:2f:41:48:59:2a:af:aa:b9:03:1b:ca:
26:39:70:71:e7:e8:59:04:63:9f:17:94:7e:e6:9c:
e2:f9:ed:c9:4f:93:aa:6c:72:b3:49:d5:4e:db:8a:
fa:28:f9:9a:e2:07:02:9e:62:5f:d6:51:40:56:7e:
b8:4b:c3:32:59:89:19:ba:4d:c8:d6:43:d5:4f:ea:
65:d9:49:20:9f:01:31:f8:06:ec:bf:b1:08:63:80:
db:96:f8:5c:3b:1f:95:85:3f:b5:a6:db:64:e0:39:
8b:50:87:47:a1:0c:a4:67:28:b5:e7:30:38:8c:8c:
68:e4:c7:8e:b5:9b:d5:91:d1:e4:d0:34:ed:bd:5e:
08:8c:99:8c:84:c6:db:9e:d3:65:7f:1b:26:04:15:
3a:ff:ba:7d:cd:cd:df:21:55:ed:4e:8a:48:84:62:
77:a6:16:72:89:bd:3a:e2:76:1d:1a:40:62:a1:53:
bb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:E1:9D:CA:46:7E:9A:45:30:DE:26:1D:BC:84:CF:5B:33:E1:0F:9D
X509v3 Authority Key Identifier:
keyid:F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/KOGdykZ-mkUw3iYdvITPWzPhD50.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.229.134.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:c2:af:ee:4b:8a:31:35:db:14:87:c1:77:b1:83:92:f4:e9:
40:da:4e:b8:53:94:b4:92:60:bd:22:c4:21:54:c8:23:cb:49:
0c:5c:23:68:f4:50:6d:c8:ac:f3:00:89:c7:73:d2:c9:f6:93:
0d:e4:3c:52:0d:4d:d4:4c:a6:4b:1a:9b:3a:e9:c9:8b:7f:25:
59:5c:4e:d2:ac:b3:86:db:68:a5:a1:55:23:fd:63:19:20:d8:
9c:a9:00:a3:90:e3:ff:3b:cc:0a:13:04:4d:14:ed:a1:30:5d:
40:15:89:30:d8:83:03:08:7b:08:ea:b5:3f:85:d6:d1:91:58:
7e:a8:93:af:79:9b:9e:7f:4c:ac:00:c9:13:16:64:9d:25:c9:
59:50:c8:67:15:25:6d:ca:db:49:66:ca:ef:31:8d:38:9d:fb:
b3:2f:c8:a6:62:54:04:43:09:ab:56:bb:bc:99:30:00:16:6f:
a1:28:f7:a4:e5:6b:2b:b3:1c:5b:14:c3:14:06:79:33:80:0c:
1e:49:14:7d:97:2d:20:b5:51:47:0f:71:dd:c8:23:26:c6:ab:
b4:f3:64:5f:b0:e2:19:66:64:f2:3c:63:43:16:32:dc:74:45:
7b:e5:6d:2c:a3:5b:4f:7a:e9:20:af:28:a0:6e:09:fa:e1:bd:
7c:67:eb:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:28:14 2023 by rpki-client on console-fra.rpki-client.org