Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Ce2x6RLCz2B28jAHSmBWwarhDKo.roa
File: Ce2x6RLCz2B28jAHSmBWwarhDKo.roa (raw, json)
Hash identifier: IGzZc/svJK+Vhuqf3SJ7JG9r4W1x8xd72ttgTtkihhA=
Subject key identifier: 09:ED:B1:E9:12:C2:CF:60:76:F2:30:07:4A:60:56:C1:AA:E1:0C:AA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Ce2x6RLCz2B28jAHSmBWwarhDKo.roa
Signing time: Thu 15 Sep 2022 02:48:19 +0000
ROA not before: Thu 15 Sep 2022 02:48:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 2001:b000::/23 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=09EDB1E912C2CF6076F230074A6056C1AAE10CAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:98:64:57:04:14:20:44:1a:75:81:99:4d:d6:
2a:24:b4:9d:a1:2b:6d:c6:39:9b:bf:b4:96:fc:a2:
e8:f2:52:0c:ae:f2:75:47:08:b0:4f:2f:0e:38:4c:
2f:a8:43:50:16:77:ad:89:6d:4a:30:58:13:6f:ed:
83:cf:25:27:a7:dc:a9:43:40:b2:29:cd:b1:f8:83:
17:61:40:84:7d:66:71:42:a9:c4:46:25:f9:b4:0a:
99:ae:f0:81:c6:fd:0d:e1:bd:b0:49:34:d7:dc:85:
00:1a:6f:b5:81:4f:d5:b3:4d:0f:f2:60:89:89:16:
cd:02:3a:1f:88:0c:66:9a:40:03:2f:be:60:30:68:
fb:2a:0c:8f:e8:84:4f:ce:4a:c1:04:29:f8:fc:b0:
ed:80:8b:a4:80:79:eb:56:b0:ed:77:7a:ad:8d:8d:
03:da:23:70:7d:46:0d:0c:5a:2c:01:18:6b:6a:c7:
1b:94:39:3e:54:bb:ce:bd:17:86:22:02:3e:fc:e2:
8b:1c:67:20:c7:07:36:dc:94:98:02:29:55:08:6e:
cc:cc:aa:e8:6f:2c:77:b0:9e:4b:9f:01:a6:a0:f0:
38:87:2c:02:a7:74:52:92:7f:79:f8:b9:ec:4a:9b:
cb:73:75:b1:62:c2:6a:ac:68:39:3c:80:6a:39:6f:
c6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:ED:B1:E9:12:C2:CF:60:76:F2:30:07:4A:60:56:C1:AA:E1:0C:AA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Ce2x6RLCz2B28jAHSmBWwarhDKo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000::/23
Signature Algorithm: sha256WithRSAEncryption
2b:34:d0:7a:c2:79:7b:df:07:55:fd:f1:52:bc:f6:39:ef:ad:
86:30:8f:d3:65:85:8e:10:53:3e:35:90:a4:72:45:b9:d1:17:
8b:bf:2e:15:55:53:41:b7:65:51:89:c7:6b:f6:5f:8e:9e:86:
08:54:52:ef:67:cb:5d:a5:e5:f5:b3:21:ff:c5:de:86:cc:a3:
5b:1a:a3:9b:c8:39:a5:37:7c:af:fd:51:0f:ca:ba:d0:0b:7c:
de:db:cb:22:53:d3:8d:8f:27:ba:a0:e5:ca:cf:84:48:ff:81:
b5:ff:5e:09:0a:63:ae:a4:57:d7:4a:d7:d6:f4:2e:f7:76:4d:
9d:7b:38:84:3a:d6:f2:ae:42:ac:64:7c:ff:b5:71:cf:de:1a:
6a:70:7a:79:e4:9d:50:59:cf:70:71:76:ed:5d:f8:74:aa:14:
ee:2e:1a:5d:25:cf:e4:16:3e:b7:9a:72:9c:bd:65:8a:e5:d3:
59:dd:ea:56:9b:5a:56:57:f5:02:2b:0f:48:86:df:de:5a:94:
3a:7b:86:39:6e:77:99:b6:e1:6a:b6:e4:04:bc:cb:c0:b4:ca:
6a:68:3a:f7:03:38:60:ef:9b:be:2a:60:cd:28:33:c2:d4:5e:
a4:dc:87:32:65:83:d4:5b:76:4c:41:f8:db:be:d3:be:b9:22:
a8:22:a5:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:40 2023 by rpki-client on console-ams.rpki-client.org