Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/PVQMutBNNlDq1aAr2hFbyGdtEjw.roa
File: PVQMutBNNlDq1aAr2hFbyGdtEjw.roa (raw, json)
Hash identifier: aB3RNlDvSHuJTZBC3B+7IEa0MHWD5fdioRP3SEgpBw8=
Subject key identifier: 3D:54:0C:BA:D0:4D:36:50:EA:D5:A0:2B:DA:11:5B:C8:67:6D:12:3C
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 0C65
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/PVQMutBNNlDq1aAr2hFbyGdtEjw.roa
Signing time: Thu 15 Sep 2022 02:50:50 +0000
ROA not before: Thu 15 Sep 2022 02:50:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38042
IP address blocks: 103.137.246.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3173 (0xc65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Sep 15 02:50:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3D540CBAD04D3650EAD5A02BDA115BC8676D123C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:64:43:a7:b3:4b:d0:88:79:bd:a8:5a:b8:fb:
8b:db:5b:0f:e2:b3:4d:99:0b:a0:8e:ec:58:12:87:
bb:81:7f:4d:59:e2:a4:f3:d6:f2:be:af:d8:18:2e:
29:0c:ee:d4:bc:dc:6b:6d:9b:0f:b5:1f:c9:c1:3d:
3c:00:20:03:38:a5:bb:16:b4:89:55:5d:74:fa:e8:
a0:c0:e0:2f:66:d1:df:b8:26:fd:c2:4f:be:3f:fd:
56:c7:95:bd:6c:04:97:20:fd:eb:84:b8:8a:ff:35:
cd:cb:7a:65:c9:52:22:6e:97:72:ac:eb:31:61:3e:
74:69:dc:7e:6f:01:fb:02:f5:aa:b0:31:3c:35:56:
8e:85:e9:78:e0:13:bf:c4:b8:35:0c:ef:7f:ca:72:
b1:84:5d:59:d8:0c:99:40:55:e9:29:c6:11:86:73:
69:12:76:4b:11:ef:ce:4d:74:17:29:6b:c0:e9:47:
99:4d:35:77:07:bc:4e:b4:e7:f7:4b:c5:1c:b4:93:
35:2e:0b:0f:15:54:36:e9:f9:cc:f6:e8:4f:59:6c:
62:a1:a5:70:4b:7d:97:47:1c:10:98:5e:de:2f:eb:
cc:a0:9c:36:46:06:ce:a2:bd:e8:04:87:d3:9a:e6:
a2:c9:23:31:f1:fc:e3:b9:6b:e2:f3:b5:c0:de:4d:
b1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:54:0C:BA:D0:4D:36:50:EA:D5:A0:2B:DA:11:5B:C8:67:6D:12:3C
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/PVQMutBNNlDq1aAr2hFbyGdtEjw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.246.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:62:a9:14:af:60:03:eb:50:bf:66:1b:03:23:19:52:e5:de:
74:77:81:81:39:bc:f9:83:2d:da:82:95:16:56:02:16:4d:9e:
ba:2d:1f:30:65:75:56:27:b1:51:4e:5c:bd:2c:9b:1a:2c:59:
cb:2b:9f:d1:7c:04:5d:80:7f:dc:32:34:be:92:b3:49:c0:6c:
f5:97:2a:f4:df:68:4b:fa:08:78:d0:34:fd:48:a4:8a:69:21:
d5:e2:99:d0:7d:50:2f:39:0e:e6:73:42:d7:19:1e:5e:e2:2d:
d4:df:21:03:05:b8:a2:49:94:a6:cb:dd:16:9b:74:d4:de:6b:
ff:b5:60:50:f0:ff:d4:40:5d:59:f1:ae:e1:d7:d2:a8:4c:19:
63:51:8e:2c:1a:19:00:f5:6b:f5:4d:d2:09:aa:b3:44:16:bc:
52:2b:9f:fb:9e:42:af:d0:15:4c:4d:fd:04:11:b2:ca:81:fc:
70:4a:e2:2f:6c:49:44:08:bf:65:cb:0f:e5:fd:ce:a1:09:d3:
d8:e1:dd:8f:e4:75:1a:80:52:52:8c:07:49:1e:98:9b:c1:2a:
46:4d:36:74:19:1d:9a:81:91:34:f9:e9:71:d3:b4:28:be:6e:
e6:53:2c:c1:e8:a6:3e:d4:e3:05:60:18:bb:fe:34:90:70:7d:
00:f4:96:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:28:14 2023 by rpki-client on console-fra.rpki-client.org