Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/iFTDr3JbqAKPgeQC3LgcMHEfa2Q.roa
File: iFTDr3JbqAKPgeQC3LgcMHEfa2Q.roa (raw, json)
Hash identifier: z71utXlOLTmoVDhPJG6bXHIv+v3yREO5396oOea0W5s=
Subject key identifier: 88:54:C3:AF:72:5B:A8:02:8F:81:E4:02:DC:B8:1C:30:71:1F:6B:64
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0A87
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/iFTDr3JbqAKPgeQC3LgcMHEfa2Q.roa
Signing time: Thu 15 Sep 2022 02:38:43 +0000
ROA not before: Thu 15 Sep 2022 02:38:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4782
IP address blocks: 124.199.96.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2695 (0xa87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 15 02:38:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8854C3AF725BA8028F81E402DCB81C30711F6B64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4a:a7:9a:0b:3a:15:2b:ef:64:5e:cf:51:c9:
d3:88:7b:5a:b7:c1:26:bd:01:5d:40:bf:ee:a5:e3:
32:b4:fa:e6:0c:67:60:f9:d9:4c:34:77:ad:ae:b0:
c1:63:a9:83:cd:2e:8e:20:5c:ee:f1:f0:8b:ec:ee:
b9:04:fd:ff:c2:af:3f:6e:79:c0:f8:01:26:5d:5d:
99:a6:24:46:f1:c5:e9:7b:c6:15:a6:a1:ff:a3:a9:
b1:52:fa:9e:85:37:44:66:7e:f2:95:1a:bd:54:67:
89:7a:33:6b:6d:ba:77:d8:93:8e:2b:f6:ef:44:7d:
69:7e:d0:b4:50:b9:07:28:be:b5:7f:ce:cc:74:ad:
a9:7f:30:91:43:c7:65:c7:03:69:03:e6:c2:f7:dc:
a7:b6:db:a3:1e:a1:26:bd:05:08:df:c0:bd:c2:76:
45:6b:b6:06:b8:98:fb:fb:d4:bc:75:93:0a:e1:33:
1d:29:61:1b:ab:cd:3a:37:c8:d7:d7:af:17:d6:ae:
cc:b6:80:11:d2:06:69:af:81:58:bd:dd:4e:9f:da:
8f:ae:ea:23:12:0b:d9:a4:03:15:14:8d:94:8f:38:
f1:57:dd:5d:ea:ef:11:a1:07:22:b7:1f:42:04:af:
a4:38:d0:58:d4:4c:11:6a:21:f9:a4:b4:93:f1:67:
5d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:54:C3:AF:72:5B:A8:02:8F:81:E4:02:DC:B8:1C:30:71:1F:6B:64
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/iFTDr3JbqAKPgeQC3LgcMHEfa2Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.199.96.0/20
Signature Algorithm: sha256WithRSAEncryption
cf:a8:bb:ec:18:04:e3:f9:ab:ad:3a:dd:65:49:34:5d:e3:b4:
20:4e:28:67:4f:5e:8f:38:e4:43:f7:56:4c:d4:1e:ff:a7:10:
d2:2d:e5:45:bc:24:26:8f:1b:20:24:09:37:50:37:a8:1c:fd:
da:a3:f3:80:97:ce:d3:fe:5f:ec:dc:e2:c3:fa:3e:5e:0e:15:
18:bc:86:89:ab:a7:06:df:89:26:eb:42:22:0b:2d:9b:a0:cd:
ec:b9:29:d3:df:30:9e:72:d0:75:3b:b6:09:6a:65:09:2c:dc:
d5:3f:a1:ac:b8:a3:47:ba:80:9a:be:aa:8c:71:15:e4:52:57:
a0:a6:8d:66:07:42:a7:5d:2e:0f:b6:00:77:6d:4b:fa:92:31:
6a:55:5f:ba:58:fa:82:8b:60:93:2e:29:68:df:8b:eb:fa:df:
f1:eb:0e:f7:8c:ff:eb:84:da:6f:68:5e:d2:cc:c1:6a:89:a2:
10:88:0e:52:ff:ae:0c:1c:f0:02:3f:40:db:18:fd:4f:75:bc:
70:d4:fa:b1:6c:9f:c8:ce:69:bf:26:8f:44:19:99:5f:05:ce:
fb:d8:cf:5f:55:9f:f6:dd:f1:9d:ec:f9:bb:3d:d8:b8:63:59:
88:1e:e4:9e:c3:db:2f:ab:52:49:26:e6:2a:05:fe:2e:b4:7b:
26:e8:9a:2f
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCocwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG
RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yMjA5MTUw
MjM4NDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg4NTRDM0FGNzI1QkE4
MDI4RjgxRTQwMkRDQjgxQzMwNzExRjZCNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPSqeaCzoVK+9kXs9RydOIe1q3wSa9AV1Av+6l4zK0+uYMZ2D5
2Uw0d62usMFjqYPNLo4gXO7x8Ivs7rkE/f/Crz9uecD4ASZdXZmmJEbxxel7xhWm
of+jqbFS+p6FN0RmfvKVGr1UZ4l6M2ttunfYk44r9u9EfWl+0LRQuQcovrV/zsx0
ral/MJFDx2XHA2kD5sL33Ke226MeoSa9BQjfwL3CdkVrtga4mPv71Lx1kwrhMx0p
YRurzTo3yNfXrxfWrsy2gBHSBmmvgVi93U6f2o+u6iMSC9mkAxUUjZSPOPFX3V3q
7xGhByK3H0IEr6Q40FjUTBFqIfmktJPxZ11bAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUiFTDr3JbqAKPgeQC3LgcMHEfa2QwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ
7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm
NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2lGVERyM0picUFLUGdlUUMzTGdjTUhF
ZmEyUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR8x2AwDQYJ
KoZIhvcNAQELBQADggEBAM+ou+wYBOP5q6063WVJNF3jtCBOKGdPXo845EP3VkzU
Hv+nENIt5UW8JCaPGyAkCTdQN6gc/dqj84CXztP+X+zc4sP6Pl4OFRi8homrpwbf
iSbrQiILLZugzey5KdPfMJ5y0HU7tglqZQks3NU/oay4o0e6gJq+qoxxFeRSV6Cm
jWYHQqddLg+2AHdtS/qSMWpVX7pY+oKLYJMuKWjfi+v63/HrDveM/+uE2m9oXtLM
wWqJohCIDlL/rgwc8AI/QNsY/U91vHDU+rFsn8jOab8mj0QZmV8FzvvYz19Vn/bd
8Z3s+bs92LhjWYge5J7D2y+rUkkm5ioF/i60eybomi8=
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:28:14 2023 by rpki-client on console-fra.rpki-client.org