Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/v8nQovyF8vchSpbm6CtYlu_k3Os.roa
File: v8nQovyF8vchSpbm6CtYlu_k3Os.roa (raw, json)
Hash identifier: 1d3P0VECAmx+6Grk6jI5ynJCOUTp1z5iaJhqJKVbnh0=
Subject key identifier: BF:C9:D0:A2:FC:85:F2:F7:21:4A:96:E6:E8:2B:58:96:EF:E4:DC:EB
Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762
Certificate serial: 0125
Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/v8nQovyF8vchSpbm6CtYlu_k3Os.roa
Signing time: Thu 15 Sep 2022 02:41:28 +0000
ROA not before: Thu 15 Sep 2022 02:41:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7483
IP address blocks: 103.170.14.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293 (0x125)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762
Validity
Not Before: Sep 15 02:41:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BFC9D0A2FC85F2F7214A96E6E82B5896EFE4DCEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6a:bf:8d:ca:47:32:e2:e2:79:0d:8c:2a:b3:
47:8a:de:fb:cf:2d:38:17:2b:47:95:5c:d3:83:bc:
7c:50:16:3c:fe:e4:1a:89:30:8d:56:8f:a8:b6:b9:
5e:ca:af:21:e4:cb:99:54:ee:fe:b3:bf:af:74:16:
5a:00:f6:32:1f:52:2e:d9:78:eb:f1:32:71:a3:97:
e2:d2:cd:15:a2:4c:22:80:5e:07:42:0d:35:4f:0f:
55:ab:57:2d:6d:51:3b:f6:63:b7:16:e2:40:11:a8:
9b:e3:79:1b:f9:c6:f9:6c:73:98:c5:f8:35:e1:49:
39:ef:62:7f:8e:67:8f:32:77:c4:a6:18:97:5f:58:
94:f0:38:bb:df:63:60:4d:3a:b4:27:5f:80:90:e3:
c1:f1:48:a7:32:39:71:5f:f3:40:3a:2e:d6:2b:ae:
75:32:79:7e:f8:a6:db:b5:b1:db:09:13:95:4b:75:
d1:7d:17:74:86:10:94:69:de:33:70:9f:f4:36:c8:
e0:de:a6:41:88:37:ae:49:2a:3a:1c:37:05:9b:4d:
8d:66:bd:44:ef:77:8e:1b:30:4a:55:c2:17:b1:85:
62:65:52:d7:a9:fa:ce:ba:8c:2b:2b:59:01:6f:a0:
64:cc:72:81:f5:9b:37:05:9d:f9:29:4e:39:be:34:
84:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C9:D0:A2:FC:85:F2:F7:21:4A:96:E6:E8:2B:58:96:EF:E4:DC:EB
X509v3 Authority Key Identifier:
keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/v8nQovyF8vchSpbm6CtYlu_k3Os.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.170.14.0/23
Signature Algorithm: sha256WithRSAEncryption
10:6a:fd:da:33:94:2f:ad:5e:46:74:37:42:fb:d2:ca:81:a8:
6b:05:56:6e:67:6b:48:6e:2f:b5:c2:bf:92:49:83:77:c6:c4:
3e:ad:ce:58:e0:c8:34:80:db:d0:bf:37:d9:95:69:38:e6:ff:
26:f5:b2:ed:cb:b0:55:6b:a9:fc:81:73:d4:f6:45:73:83:c1:
a6:ff:da:de:52:e6:4e:27:fd:87:4d:80:55:3c:e1:df:2f:7a:
10:2d:7c:1f:3a:1a:93:4a:23:94:a5:90:0e:36:62:fc:2d:c8:
18:df:b7:61:4f:1d:29:11:fe:fb:c2:a6:06:d8:05:58:05:4e:
1d:64:cb:a1:0b:08:e3:9c:b7:13:59:5b:92:aa:7b:12:b3:35:
64:e5:ce:e9:8a:a3:0f:04:8c:d3:e7:39:a1:8f:c2:c8:86:0b:
b5:98:9e:37:06:a0:02:5a:99:0e:da:56:b6:90:02:6f:d3:40:
9b:f9:df:41:65:1d:3a:23:40:a2:e8:20:4f:d8:30:e3:f5:ab:
ce:d2:5e:96:98:fd:e3:bd:f2:ff:32:27:de:55:6c:a8:7f:96:
35:09:cf:8b:67:40:f8:d4:17:0e:37:7e:d9:ae:9c:4b:fb:41:
fa:0c:43:8a:59:50:b6:b1:af:fe:ec:76:f2:51:df:9a:92:6a:
c2:68:8d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:28:14 2023 by rpki-client on console-fra.rpki-client.org