Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/P0jjd25svko_ILbulr3LafmiQwQ.roa
File: P0jjd25svko_ILbulr3LafmiQwQ.roa (raw, json)
Hash identifier: XRooRnbbdTLMbIRHO40syfGoqBYmKH5qLcc2nuu4378=
Subject key identifier: 3F:48:E3:77:6E:6C:BE:4A:3F:20:B6:EE:96:BD:CB:69:F9:A2:43:04
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/P0jjd25svko_ILbulr3LafmiQwQ.roa
Signing time: Thu 15 Sep 2022 02:48:14 +0000
ROA not before: Thu 15 Sep 2022 02:48:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 220.128.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3F48E3776E6CBE4A3F20B6EE96BDCB69F9A24304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bb:d0:e2:1b:d3:7d:7a:60:58:bc:e1:42:a6:
01:2c:ae:ce:e3:b7:5f:4b:9e:01:5b:b3:25:ab:cf:
98:0d:72:2f:49:bd:f4:1d:20:71:b2:dc:9f:0e:ca:
0f:f9:4c:16:1f:f8:22:a3:21:b7:29:46:97:3c:9f:
73:50:61:02:f4:d3:d6:d8:fb:4d:a2:a5:5e:2f:d5:
1d:ea:fd:53:23:b5:8d:95:b5:a1:c3:09:f6:2d:ff:
60:c5:fc:b2:48:72:04:6b:9c:4c:1a:b7:34:1c:f7:
40:b3:1e:14:0b:49:29:03:f5:3b:a2:8f:13:78:81:
a6:f1:1d:c7:86:21:42:a3:76:21:dc:56:0d:30:72:
c6:e1:6c:b3:ec:bd:0f:87:61:53:fd:76:1b:75:2c:
03:0a:41:b2:68:94:61:93:03:6f:63:00:c3:ba:74:
33:04:08:00:14:24:77:d1:63:26:f0:2e:27:df:9d:
ec:07:fd:2f:f8:b0:b7:05:a4:0c:e7:b0:b6:8e:96:
90:3b:78:c1:71:af:57:be:02:ed:28:f4:c6:9f:70:
31:43:66:b0:a4:c7:6b:49:dc:fe:0f:5a:d2:b1:d2:
d2:0a:d4:cf:b6:80:e8:3d:f1:79:83:fb:de:5d:e8:
3e:ed:bf:fb:fb:8c:f5:dd:9f:a9:d7:80:ae:ae:b7:
ca:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:48:E3:77:6E:6C:BE:4A:3F:20:B6:EE:96:BD:CB:69:F9:A2:43:04
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/P0jjd25svko_ILbulr3LafmiQwQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.128.0/17
Signature Algorithm: sha256WithRSAEncryption
9e:af:ab:0a:33:89:43:84:a6:5a:ba:08:ad:e3:74:dd:ca:4c:
ec:3a:a2:cb:31:39:15:c3:8d:46:44:22:58:69:0d:d6:02:f3:
9e:71:ab:b5:72:1b:be:d7:33:96:86:40:13:1b:68:51:87:06:
db:6f:56:66:31:52:e7:2d:e3:df:71:03:62:2a:6e:59:7a:20:
fe:a7:93:fa:d0:be:9c:78:27:fc:7e:4f:00:9e:48:69:dc:d9:
e6:c2:c9:62:ca:0b:a7:3d:ea:3f:97:8e:08:73:67:9b:4f:29:
69:a9:77:09:0c:a7:d8:d2:07:55:43:c7:2f:13:a9:71:df:1b:
86:f7:c6:b0:af:43:23:41:f9:9d:8c:80:b9:70:fc:28:9f:3e:
cc:71:3b:bb:dd:4d:76:3f:ce:53:d7:1c:d0:a9:2b:04:3c:52:
b4:3b:fe:36:25:32:94:c5:e0:66:f8:ce:d0:00:05:94:98:c1:
d6:9e:7c:49:82:02:09:7b:01:20:05:20:eb:44:1a:68:b2:4d:
84:9b:7d:09:70:cd:1a:60:bf:ab:43:e0:f5:60:cf:c4:76:a0:
89:88:80:b0:e4:c6:ca:6e:db:40:7e:19:12:13:ab:3a:30:f0:
9a:92:3c:99:bc:44:47:e8:c3:e6:d8:0e:32:de:b1:67:f2:2b:
c6:51:7f:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:40 2023 by rpki-client on console-ams.rpki-client.org