Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/asH32xsD-g2AErZ_tQsEp-Ob1_o.roa
File: asH32xsD-g2AErZ_tQsEp-Ob1_o.roa (raw, json)
Hash identifier: 45lDOe7+g6jbzClsS9rPK7eM/EiqXGZCPYjwSSDbLmE=
Subject key identifier: 6A:C1:F7:DB:1B:03:FA:0D:80:12:B6:7F:B5:0B:04:A7:E3:9B:D7:FA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/asH32xsD-g2AErZ_tQsEp-Ob1_o.roa
Signing time: Thu 15 Sep 2022 02:48:08 +0000
ROA not before: Thu 15 Sep 2022 02:48:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10126
IP address blocks: 220.128.80.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6AC1F7DB1B03FA0D8012B67FB50B04A7E39BD7FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:48:42:79:46:27:e8:c7:fb:f3:8b:a0:07:54:
ad:7e:60:10:5f:26:61:c2:74:d6:f0:f5:6e:97:6d:
9d:bf:71:f0:a0:cd:b6:2c:fc:0e:f3:5d:d0:7e:cf:
18:63:fe:cf:fa:94:5e:e3:40:a8:ed:33:69:99:a4:
cc:17:75:a7:44:44:b3:5c:85:13:84:3d:12:aa:f5:
1a:0e:bf:e8:c3:52:e5:43:44:93:42:78:e8:7c:86:
f1:0d:69:2e:10:d1:82:3c:d8:6b:e7:31:ad:72:5d:
f8:fb:07:cc:5b:0e:b4:94:bf:e8:42:18:ad:c7:f7:
3e:83:1f:09:29:b8:b1:94:0d:97:e4:05:73:23:23:
48:2f:9d:49:a5:4f:69:bb:55:38:ce:78:dd:2e:8c:
0a:6b:25:cb:5e:14:05:b5:0c:22:66:b7:ca:50:e6:
6a:dc:6b:f2:e6:04:66:05:0d:42:4f:6e:03:72:dd:
51:97:c7:83:e0:14:df:8d:9e:64:66:ee:5b:be:99:
b7:1c:05:cc:31:84:be:3e:81:17:ae:74:58:86:92:
c1:9f:b8:c0:c5:84:d1:cf:68:0e:c5:9d:4c:2a:70:
6f:49:ef:b5:45:10:6b:f9:f4:2b:77:82:4c:14:14:
40:e1:a3:39:35:a1:3f:7e:2e:0a:fc:b2:4f:41:41:
f4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:C1:F7:DB:1B:03:FA:0D:80:12:B6:7F:B5:0B:04:A7:E3:9B:D7:FA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/asH32xsD-g2AErZ_tQsEp-Ob1_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.80.0/20
Signature Algorithm: sha256WithRSAEncryption
2c:2e:f6:15:a4:af:f1:a2:b4:b4:cd:d4:bd:f3:cf:5c:16:4d:
90:01:e7:d9:8a:8c:db:7e:0a:a8:9a:69:88:f3:93:3e:36:a1:
af:8b:4d:87:7e:3a:5f:a3:37:cc:51:9f:b7:7a:34:62:79:3b:
10:6c:8b:14:1b:d9:7c:0b:02:f8:5e:e9:29:bf:f2:6a:de:7f:
df:13:73:34:83:e3:70:51:13:cd:ce:6d:d0:ed:b7:6c:62:6e:
6e:c6:f8:9c:05:e9:35:34:10:92:c9:45:31:b8:9b:ac:3e:71:
fc:a8:27:89:9e:85:c7:01:4b:df:3c:6b:00:40:69:13:e1:a9:
85:12:0c:b9:32:16:4d:da:0f:27:60:e3:ed:5e:09:2d:4e:11:
f1:07:30:bf:f6:ac:f4:84:b5:cb:3a:49:e5:c2:26:2a:cc:96:
db:39:87:ba:91:0c:49:bd:3c:fc:77:63:22:14:1e:2e:f2:d9:
f9:04:d5:aa:d2:95:25:9b:24:ae:e5:00:f4:3f:57:3e:68:c2:
a3:f2:88:4a:32:ba:4f:dc:28:fc:fd:f5:53:fe:3c:2b:a9:71:
a3:83:cf:0b:ed:2b:f1:1f:90:15:d1:e8:f8:86:b3:d2:8b:39:
40:b4:a8:91:52:3b:dd:aa:ab:aa:71:0c:37:5b:2d:99:17:38:
bd:27:2c:c4
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MDhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDZBQzFGN0RCMUIwM0ZB
MEQ4MDEyQjY3RkI1MEIwNEE3RTM5QkQ3RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRSEJ5Rifox/vzi6AHVK1+YBBfJmHCdNbw9W6XbZ2/cfCgzbYs
/A7zXdB+zxhj/s/6lF7jQKjtM2mZpMwXdadERLNchROEPRKq9RoOv+jDUuVDRJNC
eOh8hvENaS4Q0YI82GvnMa1yXfj7B8xbDrSUv+hCGK3H9z6DHwkpuLGUDZfkBXMj
I0gvnUmlT2m7VTjOeN0ujAprJcteFAW1DCJmt8pQ5mrca/LmBGYFDUJPbgNy3VGX
x4PgFN+NnmRm7lu+mbccBcwxhL4+gReudFiGksGfuMDFhNHPaA7FnUwqcG9J77VF
EGv59Ct3gkwUFEDhozk1oT9+Lgr8sk9BQfSRAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUasH32xsD+g2AErZ/tQsEp+Ob1/owHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9hc0gzMnhzRC1nMkFFclpfdFFz
RXAtT2IxX28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE3IBQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAsLvYVpK/xorS0zdS9889cFk2QAefZiozbfgqo
mmmI85M+NqGvi02HfjpfozfMUZ+3ejRieTsQbIsUG9l8CwL4Xukpv/Jq3n/fE3M0
g+NwURPNzm3Q7bdsYm5uxvicBek1NBCSyUUxuJusPnH8qCeJnoXHAUvfPGsAQGkT
4amFEgy5MhZN2g8nYOPtXgktThHxBzC/9qz0hLXLOknlwiYqzJbbOYe6kQxJvTz8
d2MiFB4u8tn5BNWq0pUlmySu5QD0P1c+aMKj8ohKMrpP3Cj8/fVT/jwrqXGjg88L
7SvxH5AV0ej4hrPSizlAtKiRUjvdqquqcQw3Wy2ZFzi9JyzE
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:41 2023 by rpki-client on console-ams.rpki-client.org