Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/i9EIC1CylWcKxCgjR2a7T0AnLD0.roa
File: i9EIC1CylWcKxCgjR2a7T0AnLD0.roa (raw, json)
Hash identifier: e76CiEpjThdO3SUK17I9eN2+xoOoii/QJUWB4+RVq74=
Subject key identifier: 8B:D1:08:0B:50:B2:95:67:0A:C4:28:23:47:66:BB:4F:40:27:2C:3D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/i9EIC1CylWcKxCgjR2a7T0AnLD0.roa
Signing time: Thu 15 Sep 2022 02:48:06 +0000
ROA not before: Thu 15 Sep 2022 02:48:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 198949
IP address blocks: 210.61.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8BD1080B50B295670AC428234766BB4F40272C3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:60:03:64:63:e4:09:3c:1d:34:17:40:40:39:
6c:05:21:09:be:51:60:3a:d3:50:51:71:07:95:7a:
4b:ca:5a:f9:93:a3:c6:55:39:f5:d1:14:d5:2c:58:
65:4a:e7:1e:44:96:32:1c:5a:63:85:4b:b5:70:08:
01:50:29:93:9b:e5:8a:a1:0c:c3:0a:90:43:06:b2:
c6:14:93:e9:30:c4:1f:a7:e8:95:66:e1:f9:52:cb:
b2:25:34:04:07:59:ff:32:45:0c:33:64:dc:a0:96:
55:9e:b9:e6:d1:68:65:dc:1c:ea:54:d7:cd:24:53:
71:af:43:32:ca:51:68:55:32:22:7e:45:65:19:01:
f0:5d:d2:3d:27:37:5f:fc:69:72:ea:51:10:d4:ad:
c8:a8:c6:c9:92:84:db:c8:ad:a7:d5:fd:24:fa:89:
e5:af:59:cc:e9:e3:4a:1e:62:70:cb:c1:76:04:93:
21:b9:ae:e3:cf:30:17:a5:c3:e5:b1:ae:ca:9b:7e:
fd:47:ba:b2:49:04:0d:51:92:a3:e2:e3:63:c2:6d:
46:c2:67:30:3e:48:d0:42:ba:ed:71:87:a7:48:7f:
99:6d:3f:7b:75:11:62:81:79:68:c8:54:93:56:c2:
36:5c:29:04:cd:44:5a:40:3d:26:d7:55:15:06:ad:
82:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D1:08:0B:50:B2:95:67:0A:C4:28:23:47:66:BB:4F:40:27:2C:3D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/i9EIC1CylWcKxCgjR2a7T0AnLD0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.3.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:db:0c:58:60:c8:8d:6e:10:e8:fd:84:6b:39:be:95:f4:83:
dc:cc:7d:e1:98:18:e7:03:33:ce:4a:f3:1e:b2:da:34:3d:10:
43:1e:df:51:c9:f1:6e:92:85:c1:a5:a8:31:f7:c1:66:45:b5:
47:97:6c:2e:fb:d1:ba:6c:93:a1:7e:fb:03:2c:a7:fe:f1:4f:
88:b0:5e:c3:6d:71:2c:1c:99:0f:27:87:76:36:73:97:23:f9:
ab:96:8d:9b:19:62:03:9b:72:04:b1:5b:f7:5d:53:53:90:49:
9d:a9:fa:7c:4a:12:d8:91:5c:22:ab:f9:ec:17:be:11:2c:87:
69:ce:38:60:de:73:30:22:e5:07:e0:8a:bc:b8:e8:d0:03:6c:
c1:d9:ef:be:5a:d5:36:e9:3a:9a:49:5e:a7:61:06:ca:9d:83:
36:7d:5f:17:b7:21:c3:82:d9:ce:30:57:24:bf:45:c3:fc:aa:
97:02:de:c1:50:40:aa:ab:96:b5:7e:dc:e7:a1:8c:25:6a:1d:
b5:83:21:0a:9f:c3:f4:16:a7:da:be:be:f4:17:09:88:29:78:
06:61:3c:b9:66:2e:3d:3e:1d:37:c4:a8:c0:ec:ab:b6:38:e5:
ba:33:a6:f2:ec:ae:9d:f4:63:c7:98:28:4b:55:69:10:be:21:
f3:52:02:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:41 2023 by rpki-client on console-ams.rpki-client.org