Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/D2u6UcOpOCIbgOPmR7_JY0S1YQ4.roa
File: D2u6UcOpOCIbgOPmR7_JY0S1YQ4.roa (raw, json)
Hash identifier: 02/XveZcVnx6CzLZVqyx2pP38eZI93ljC+44nkT7c2c=
Subject key identifier: 0F:6B:BA:51:C3:A9:38:22:1B:80:E3:E6:47:BF:C9:63:44:B5:61:0E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/D2u6UcOpOCIbgOPmR7_JY0S1YQ4.roa
Signing time: Thu 15 Sep 2022 02:48:23 +0000
ROA not before: Thu 15 Sep 2022 02:48:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 103.25.236.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0F6BBA51C3A938221B80E3E647BFC96344B5610E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:36:cf:0f:66:49:8c:4c:00:bb:33:d6:34:ad:
1a:a3:6c:7a:14:d9:40:4b:67:9c:0d:76:4d:12:b0:
ed:7a:b9:19:ca:14:09:3c:87:d5:d8:2f:51:7c:2a:
91:8b:26:d1:55:fd:26:b7:77:c3:e1:98:4e:a1:4b:
bf:aa:99:df:63:28:47:8b:e2:48:0a:b1:79:ef:cd:
7d:00:00:ea:96:c8:8c:cc:6d:57:d8:28:8f:d5:5d:
65:2b:b5:1f:5b:08:33:b6:3f:1e:96:17:a2:42:ad:
ea:e3:12:ab:1c:da:3e:67:10:62:fc:e4:8e:b2:85:
8a:4e:84:0d:72:34:fa:f3:b7:43:11:27:4f:91:25:
98:99:57:fb:45:d4:60:a4:a2:54:51:bb:4f:d5:7f:
da:d1:7d:a5:11:60:52:20:a6:e8:79:71:1e:fc:ca:
f7:29:a0:93:27:9a:ea:ec:f7:76:26:72:5f:31:6c:
f7:bf:07:8b:59:ff:b0:a1:10:18:24:c8:6d:81:9e:
5e:8f:aa:57:fe:a4:87:8d:af:b8:8d:76:15:b8:5a:
d7:1a:7b:73:dc:0f:76:a5:c9:d9:7c:ee:17:ee:c3:
c2:8e:26:8e:c3:e4:30:e1:05:92:b3:5b:3e:8a:ab:
0a:3a:4d:a0:85:75:1e:c2:48:d5:1d:ae:f1:f4:0b:
e0:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:6B:BA:51:C3:A9:38:22:1B:80:E3:E6:47:BF:C9:63:44:B5:61:0E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/D2u6UcOpOCIbgOPmR7_JY0S1YQ4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.25.236.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:e4:54:58:c9:3c:20:a5:e9:9a:6a:8f:b7:cf:2f:cc:49:67:
4d:8a:da:96:37:7e:9a:ee:ca:1c:05:7e:0f:dc:2f:99:71:c3:
a7:d6:0e:fd:6a:ad:29:f6:4e:90:1d:0f:c7:e0:be:87:19:84:
d1:ac:0b:09:cf:3f:c4:4a:42:15:b5:39:8d:4a:50:7a:92:fe:
32:05:06:3e:44:3e:7e:75:96:4c:91:36:fc:fc:c4:e8:7d:a8:
74:b5:fd:d6:34:aa:61:a2:7c:5b:a4:12:b2:01:e5:b5:07:4c:
b6:3a:84:bb:cf:3d:27:f6:03:5f:b4:8d:e1:2a:a8:69:35:9e:
aa:76:a2:9d:29:9a:71:77:b8:86:6a:d6:03:b7:4a:36:88:d8:
e5:40:db:c9:19:94:2f:95:68:98:ee:a7:dc:a7:12:12:42:27:
18:28:3d:d0:4e:db:c7:a5:df:44:c8:27:17:63:fe:53:bb:0f:
0f:0a:fb:68:d0:89:19:31:14:f1:19:28:34:df:65:73:3f:e8:
c0:2a:95:06:2b:8d:70:39:ff:59:38:d4:be:04:e4:65:5a:e6:
67:17:f3:76:4b:80:ea:25:83:53:96:06:2e:72:e1:9e:3f:fd:
8c:02:77:18:40:2f:85:28:3c:0d:7a:cf:2d:09:af:39:ad:0b:
c2:5b:85:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:40 2023 by rpki-client on console-ams.rpki-client.org