Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSNET/UVgRJG1lpfhpiaE27bw6QUF-CeA.roa
File: UVgRJG1lpfhpiaE27bw6QUF-CeA.roa (raw, json)
Hash identifier: ANNVGosRRJFcVC0gYEK54DGuB7cCvklotOgE0hGiZWo=
Subject key identifier: 51:58:11:24:6D:65:A5:F8:69:89:A1:36:ED:BC:3A:41:41:7E:09:E0
Certificate issuer: /CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F
Certificate serial: 0A33
Authority key identifier: 4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/UVgRJG1lpfhpiaE27bw6QUF-CeA.roa
Signing time: Thu 15 Sep 2022 02:42:37 +0000
ROA not before: Thu 15 Sep 2022 02:42:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38837
IP address blocks: 211.78.64.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2611 (0xa33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F
Validity
Not Before: Sep 15 02:42:37 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=515811246D65A5F86989A136EDBC3A41417E09E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e9:9b:54:5b:18:d8:73:ab:15:21:8f:f6:c4:
3d:67:28:99:e8:e9:9c:3d:8a:50:9a:9f:41:b3:9d:
a2:e0:d3:65:42:4d:59:28:47:db:6e:b6:e5:8b:de:
d1:1f:5b:4c:60:2f:e2:85:9a:a0:1d:c9:eb:2a:80:
5b:0b:0e:c9:11:8d:c0:f6:68:95:59:9b:0d:4e:c5:
17:72:00:c5:e3:e9:d9:44:1e:1d:a8:78:09:9e:3f:
0e:5b:13:d3:b0:5b:77:4c:e9:91:bc:53:ee:4e:69:
78:0b:0a:c2:81:2f:4c:5e:b0:11:fb:f6:01:66:63:
97:c7:63:8c:00:29:f9:23:5f:35:ce:31:ea:8e:41:
9f:a8:3f:2c:1c:78:67:08:c4:19:1a:57:35:6c:68:
64:36:02:7d:f3:92:05:f4:46:e0:86:40:b2:ca:d9:
67:3f:61:10:be:68:ad:7f:92:14:b2:02:61:d5:07:
71:6e:e8:97:74:cf:43:55:17:89:11:7e:24:cd:fc:
d3:7d:78:ec:b0:da:ec:37:c3:aa:b8:54:6b:66:31:
42:f8:40:b0:50:83:d8:84:23:7a:68:69:a3:0d:90:
02:e0:11:f2:ef:04:58:60:43:67:6b:5b:5f:b6:07:
d9:5f:65:49:ca:35:7e:94:ac:0b:6e:a5:bf:6d:81:
9a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:58:11:24:6D:65:A5:F8:69:89:A1:36:ED:BC:3A:41:41:7E:09:E0
X509v3 Authority Key Identifier:
keyid:4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/UVgRJG1lpfhpiaE27bw6QUF-CeA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.64.0/20
Signature Algorithm: sha256WithRSAEncryption
75:d4:5b:c9:7b:e9:5a:e7:6b:e6:f0:bd:f8:6a:cc:9c:d8:fb:
bf:2b:62:59:63:38:bb:fa:f4:6c:ca:5e:19:c8:e7:76:90:70:
2c:b6:67:37:51:c6:cd:b7:2e:22:1a:00:c0:e5:40:b3:19:72:
e8:b5:a2:65:47:0e:b4:90:9a:f6:a3:8f:ea:7c:8d:fb:91:7c:
cd:e4:0c:d5:d7:30:cc:08:66:44:a5:85:91:d0:1d:d9:28:f8:
b1:a0:a5:c7:94:b3:f1:da:d9:d7:76:24:8e:d0:74:8f:8e:c6:
f4:af:08:cf:23:2b:2c:ca:8b:bc:21:13:44:b8:7e:5a:70:bf:
ec:96:2b:70:89:38:e2:0a:24:10:7e:9a:01:42:b4:2d:8b:bf:
99:83:45:40:2b:25:8a:23:e1:2c:dc:00:95:7d:a1:4c:28:f2:
fa:d5:a6:c7:75:39:e1:af:b6:b9:68:30:0c:73:55:5c:43:3e:
b0:0b:45:45:af:06:1e:ab:96:3d:8c:cf:38:7e:69:d1:36:b4:
5b:f7:8c:38:b9:01:33:88:20:f0:35:e8:09:be:4c:72:34:f2:
0a:65:7b:65:35:fa:d2:f1:32:b0:92:f1:9b:b9:cd:ce:21:2c:
79:4c:48:99:1d:c4:4c:4f:b8:a5:0c:40:d1:11:c6:de:f3:44:
72:4c:9a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:40 2023 by rpki-client on console-ams.rpki-client.org