Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/2lsbxj3aJ6WAa7lsC_9nPUKFQzg.roa
File: 2lsbxj3aJ6WAa7lsC_9nPUKFQzg.roa (raw, json)
Hash identifier: IEzvF7hLUeaM6JMrx83fogqa3rYOU37tjod252N9xg4=
Subject key identifier: DA:5B:1B:C6:3D:DA:27:A5:80:6B:B9:6C:0B:FF:67:3D:42:85:43:38
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2lsbxj3aJ6WAa7lsC_9nPUKFQzg.roa
Signing time: Thu 15 Sep 2022 02:48:40 +0000
ROA not before: Thu 15 Sep 2022 02:48:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 60.249.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DA5B1BC63DDA27A5806BB96C0BFF673D42854338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d9:99:a4:7a:8d:74:e9:5a:0c:69:bc:38:4e:
36:8f:64:8c:a3:70:cb:8d:88:5d:2f:03:48:b0:81:
9b:df:bd:41:af:7e:ab:3b:b4:89:5a:f5:de:46:2a:
3f:be:99:61:5c:85:d3:da:b0:6f:04:d7:ca:11:c5:
26:bc:5d:42:88:68:d3:32:51:b5:7e:57:19:de:f4:
07:54:97:40:4c:e4:be:f0:cd:2b:4f:eb:be:ff:20:
2d:18:38:83:5c:97:4d:ce:51:35:5d:44:ca:19:c5:
df:77:14:a2:c7:88:25:72:10:9b:6e:cf:55:e8:95:
b7:dc:aa:28:53:26:8c:36:fd:1d:3e:e4:e3:70:d5:
c1:3f:df:27:83:36:89:65:0d:7b:be:a0:a4:7c:7f:
3f:9a:b4:3c:af:da:38:17:59:04:40:4f:bf:3f:f5:
9d:f2:63:68:64:36:a8:cb:5f:8a:71:1e:8b:16:8c:
55:99:8b:79:48:b7:db:9c:ad:a8:12:2e:a8:9a:2a:
49:dd:d1:f0:3e:97:ba:62:ca:5c:aa:50:81:92:d5:
21:7a:93:db:89:e5:4e:92:ae:82:e1:92:c4:03:3e:
4b:eb:62:e2:d9:8e:18:1b:18:f1:b0:8f:d1:22:ef:
84:08:d0:8c:f1:92:33:28:11:26:3d:34:57:07:af:
30:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:5B:1B:C6:3D:DA:27:A5:80:6B:B9:6C:0B:FF:67:3D:42:85:43:38
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2lsbxj3aJ6WAa7lsC_9nPUKFQzg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.249.0.0/16
Signature Algorithm: sha256WithRSAEncryption
68:4f:39:6b:fa:b0:cc:d5:f5:f5:3d:10:01:3e:03:ac:a7:56:
74:1b:19:ae:ba:14:c8:b2:8e:c1:f6:f4:40:1e:07:52:2d:14:
29:4d:ea:c0:b5:2a:49:2a:b5:63:67:a0:75:52:33:59:4c:7f:
90:ee:42:0c:65:3a:1b:83:b9:76:a7:89:2c:fe:b6:ec:c7:1b:
d2:d1:cc:e4:76:3c:e6:63:f2:ff:cc:ac:0b:51:42:a0:54:4b:
85:dc:29:db:fe:0a:20:aa:1c:ee:a4:6d:8d:93:7c:e6:48:5e:
1d:41:b1:9d:3d:a5:ce:f9:19:b7:95:96:f8:d7:51:b5:b9:38:
6f:6d:ab:dc:73:df:75:97:7e:ae:eb:f8:d4:ec:9a:48:a8:e0:
4a:72:5b:5a:23:da:1b:2d:d1:5a:59:01:fe:9e:1e:8a:36:6a:
25:b6:59:18:1c:24:e9:e7:69:fa:2f:fd:e8:69:15:71:66:81:
72:4b:d7:a4:a3:c8:f1:65:ba:33:3a:35:74:02:e0:23:12:bd:
bc:dd:6f:d1:e3:ad:ae:57:5b:d1:be:aa:4b:c4:9d:12:96:a6:
c8:39:7a:81:87:a5:f2:17:47:aa:d9:53:3a:a9:d8:cb:9e:9b:
32:cd:fe:a2:4f:2e:1b:b0:9e:05:87:92:ce:72:81:b4:21:45:
d7:30:11:83
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4NDBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKERBNUIxQkM2M0REQTI3
QTU4MDZCQjk2QzBCRkY2NzNENDI4NTQzMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDI2Zmkeo106VoMabw4TjaPZIyjcMuNiF0vA0iwgZvfvUGvfqs7
tIla9d5GKj++mWFchdPasG8E18oRxSa8XUKIaNMyUbV+Vxne9AdUl0BM5L7wzStP
677/IC0YOINcl03OUTVdRMoZxd93FKLHiCVyEJtuz1XolbfcqihTJow2/R0+5ONw
1cE/3yeDNollDXu+oKR8fz+atDyv2jgXWQRAT78/9Z3yY2hkNqjLX4pxHosWjFWZ
i3lIt9ucragSLqiaKknd0fA+l7piylyqUIGS1SF6k9uJ5U6SroLhksQDPkvrYuLZ
jhgbGPGwj9Ei74QI0IzxkjMoESY9NFcHrzAnAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU2lsbxj3aJ6WAa7lsC/9nPUKFQzgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8ybHNieGozYUo2V0FhN2xzQ185
blBVS0ZRemcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAPPkw
DQYJKoZIhvcNAQELBQADggEBAGhPOWv6sMzV9fU9EAE+A6ynVnQbGa66FMiyjsH2
9EAeB1ItFClN6sC1KkkqtWNnoHVSM1lMf5DuQgxlOhuDuXaniSz+tuzHG9LRzOR2
POZj8v/MrAtRQqBUS4XcKdv+CiCqHO6kbY2TfOZIXh1BsZ09pc75GbeVlvjXUbW5
OG9tq9xz33WXfq7r+NTsmkio4EpyW1oj2hst0VpZAf6eHoo2aiW2WRgcJOnnafov
/ehpFXFmgXJL16SjyPFlujM6NXQC4CMSvbzdb9Hjra5XW9G+qkvEnRKWpsg5eoGH
pfIXR6rZUzqp2MuemzLN/qJPLhuwngWHks5ygbQhRdcwEYM=
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:40 2023 by rpki-client on console-ams.rpki-client.org