Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/AjVmG4gq6kfONyOz7mPEZ607_cw.roa
File: AjVmG4gq6kfONyOz7mPEZ607_cw.roa (raw, json)
Hash identifier: 3wSAJ5UxWWbWDpWj+D12jJ6aWcBQGfFGa6Yhvn2L9pw=
Subject key identifier: 02:35:66:1B:88:2A:EA:47:CE:37:23:B3:EE:63:C4:67:AD:3B:FD:CC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/AjVmG4gq6kfONyOz7mPEZ607_cw.roa
Signing time: Thu 15 Sep 2022 02:48:40 +0000
ROA not before: Thu 15 Sep 2022 02:48:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 15133
IP address blocks: 2001:b032:c101::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0235661B882AEA47CE3723B3EE63C467AD3BFDCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:cf:52:07:f6:50:82:d5:5e:94:8c:78:20:83:
97:d2:48:dd:85:20:1a:c1:77:79:58:a8:22:a8:3a:
6f:1c:61:6f:f1:3d:89:89:4f:d0:15:e4:7d:19:50:
47:1d:af:d8:c8:d7:58:6f:cf:7c:ac:a9:8e:4e:aa:
61:f5:6b:48:b6:1e:40:15:b8:cd:f6:7a:56:dd:20:
d1:65:b9:b7:e8:63:df:a0:40:72:ba:9e:99:5c:67:
b1:78:ae:0d:e6:39:56:3c:b5:24:19:23:fd:d3:60:
b4:8a:e6:45:6a:05:d7:81:a3:b5:5c:7e:de:8b:f4:
88:dc:2b:05:d4:69:a7:a7:7f:01:32:22:bc:05:38:
f0:c4:a3:79:f7:4e:9a:06:b2:5c:8f:19:a3:49:0b:
d6:e3:a5:9a:f3:42:b3:c8:b9:c0:c7:66:27:2f:17:
cb:f6:8c:e5:1c:48:62:6a:95:ee:7c:a1:b5:21:0a:
0b:6a:8f:85:f1:4d:00:d5:c3:77:22:db:77:1d:08:
87:6e:83:75:39:0e:49:da:01:d4:3c:74:51:fe:94:
14:2b:b5:98:9b:ab:62:aa:0a:11:31:b8:ac:a6:82:
43:d5:3a:5d:83:1d:3d:93:56:e1:d8:f1:cd:31:2f:
ab:18:4a:2e:d2:27:71:0f:c6:66:4a:9f:67:55:61:
9d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:35:66:1B:88:2A:EA:47:CE:37:23:B3:EE:63:C4:67:AD:3B:FD:CC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/AjVmG4gq6kfONyOz7mPEZ607_cw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b032:c101::/48
Signature Algorithm: sha256WithRSAEncryption
a2:11:c7:82:fe:20:2d:c0:b7:6c:41:61:3c:94:41:90:45:32:
ae:4e:f1:23:10:75:3d:a5:24:a1:6f:c7:c9:06:3c:3f:d9:17:
df:a4:58:ed:61:4a:f2:90:52:67:98:0d:3f:80:a2:e0:bb:c2:
fd:dc:35:e1:61:a8:30:09:ed:a6:1f:2f:40:69:ee:f3:38:35:
da:39:36:61:81:c1:04:36:1a:b3:92:02:43:3c:91:42:98:ca:
90:2d:47:1a:a1:3c:f4:90:c3:6a:94:b6:c4:0d:90:ca:94:09:
3a:b1:98:a8:95:4b:92:60:92:47:47:7c:3c:d6:cb:f3:f9:50:
62:1a:fe:fa:fa:b5:5d:b9:6b:52:48:0f:ca:fb:9e:3b:f4:0f:
99:d9:82:6a:9e:80:57:e7:bb:c4:9a:f9:22:df:c5:90:ee:6e:
df:00:c6:3a:ba:b2:07:ba:ce:67:f1:d6:fa:6d:73:89:cc:af:
6e:ea:47:ea:9f:09:e2:83:7e:1f:3c:50:a7:2d:dc:19:58:d3:
ce:dd:79:11:10:17:1d:3c:26:2c:ae:f6:44:96:94:fd:ea:77:
ea:2c:34:04:8d:93:74:45:d7:57:c8:0f:83:4f:70:af:69:32:
88:39:c2:61:a3:e7:cf:c4:d4:33:f9:49:85:d6:24:1c:1f:33:
ef:e8:42:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:40 2023 by rpki-client on console-ams.rpki-client.org