Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/mG-Z0N5vQ1U8-FbZqPaHRcei3_s.roa
File: mG-Z0N5vQ1U8-FbZqPaHRcei3_s.roa (raw, json)
Hash identifier: 8NQz8H4gmKCOtL3inbPyLv9p3fdJRTuuLPVkU5qlBqQ=
Subject key identifier: 98:6F:99:D0:DE:6F:43:55:3C:F8:56:D9:A8:F6:87:45:C7:A2:DF:FB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mG-Z0N5vQ1U8-FbZqPaHRcei3_s.roa
Signing time: Thu 15 Sep 2022 02:48:18 +0000
ROA not before: Thu 15 Sep 2022 02:48:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 43.255.92.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=986F99D0DE6F43553CF856D9A8F68745C7A2DFFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c5:a1:24:05:cf:1a:f6:04:ae:25:13:02:a9:
e1:2d:e0:82:42:0b:1a:74:51:13:97:2c:e0:4c:34:
8c:d3:1f:69:c0:e9:cd:8b:11:c4:00:34:24:4a:7c:
7a:bc:e4:67:b9:56:62:c0:2a:c4:9c:c9:34:47:73:
f0:d6:a9:e9:8c:4a:5a:0b:7c:2c:9e:77:d2:ea:6a:
43:a1:15:e3:d5:72:57:11:38:1b:34:cc:28:eb:d7:
8e:23:a6:82:32:68:56:2d:ba:98:46:bd:6a:69:64:
ca:07:af:1f:60:2a:c5:2b:87:4c:8d:42:74:bb:ab:
d3:38:77:a5:59:5a:75:27:18:80:68:c1:00:2f:45:
bb:a1:32:0a:f4:cc:26:0c:3c:d3:04:b8:1b:ef:86:
4b:55:38:e6:b1:c6:6a:cd:7a:b9:e8:0c:f2:00:8a:
87:6e:77:7f:22:b7:7f:bb:3a:f7:92:66:ee:53:1f:
8a:e8:cf:08:f4:b9:e8:81:b3:8e:a3:44:99:55:f5:
cb:63:1b:9d:27:fa:52:e5:a5:9a:4b:a2:74:60:bd:
fd:70:b3:e4:26:31:0a:60:9a:3c:5f:c9:6c:d0:d0:
03:be:88:6f:e0:e9:65:2f:50:b2:98:a7:e4:82:06:
65:bf:3e:e5:c5:e9:2c:6e:2b:5d:12:36:0d:d7:40:
9b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6F:99:D0:DE:6F:43:55:3C:F8:56:D9:A8:F6:87:45:C7:A2:DF:FB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mG-Z0N5vQ1U8-FbZqPaHRcei3_s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.92.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:bd:e1:7c:df:41:84:f8:a0:b2:55:be:e2:cc:2b:74:10:3a:
e3:1a:5a:7e:2e:59:1a:d6:85:63:11:2d:20:82:e0:40:b1:99:
d8:04:9d:50:be:a3:0d:92:0e:71:55:ee:ce:e1:bb:67:63:59:
48:f2:a2:b5:74:27:46:71:98:94:9e:12:b5:23:53:12:31:2a:
f5:f1:b0:19:1d:f4:51:12:c8:96:07:1f:36:7b:e5:e7:57:4d:
af:09:d2:88:15:aa:de:8b:b2:97:42:16:86:e8:08:d4:c9:e7:
b6:28:26:22:82:23:0c:bf:41:34:14:70:89:65:43:78:f6:5d:
7b:4e:6c:52:0b:6d:df:c9:55:ed:eb:09:db:22:9a:c6:a0:95:
63:1f:c8:d2:9e:e5:17:65:b1:93:b9:0f:7e:5b:d3:e9:12:17:
10:aa:c9:1a:66:16:19:ee:77:a3:fc:8f:87:8d:06:49:a3:25:
a2:02:58:39:96:64:b4:5e:21:fd:a2:5b:a8:27:84:fe:41:aa:
7b:ad:8d:c9:e3:85:e8:71:59:56:0d:b0:ea:02:81:78:d7:e9:
f5:ba:24:99:d8:d4:9a:fa:c1:eb:41:78:a4:f2:67:8f:62:56:
f8:a9:26:21:f8:87:23:03:f1:fb:67:15:f7:9e:1e:f5:0e:31:
71:04:a3:f6
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk4NkY5OUQwREU2RjQz
NTUzQ0Y4NTZEOUE4RjY4NzQ1QzdBMkRGRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQxaEkBc8a9gSuJRMCqeEt4IJCCxp0UROXLOBMNIzTH2nA6c2L
EcQANCRKfHq85Ge5VmLAKsScyTRHc/DWqemMSloLfCyed9LqakOhFePVclcROBs0
zCjr144jpoIyaFYtuphGvWppZMoHrx9gKsUrh0yNQnS7q9M4d6VZWnUnGIBowQAv
RbuhMgr0zCYMPNMEuBvvhktVOOaxxmrNernoDPIAiodud38it3+7OveSZu5TH4ro
zwj0ueiBs46jRJlV9ctjG50n+lLlpZpLonRgvf1ws+QmMQpgmjxfyWzQ0AO+iG/g
6WUvULKYp+SCBmW/PuXF6SxuK10SNg3XQJuDAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUmG+Z0N5vQ1U8+FbZqPaHRcei3/swHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9tRy1aME41dlExVTgtRmJacVBh
SFJjZWkzX3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCK/9c
MA0GCSqGSIb3DQEBCwUAA4IBAQAMveF830GE+KCyVb7izCt0EDrjGlp+Llka1oVj
ES0gguBAsZnYBJ1QvqMNkg5xVe7O4btnY1lI8qK1dCdGcZiUnhK1I1MSMSr18bAZ
HfRREsiWBx82e+XnV02vCdKIFarei7KXQhaG6AjUyee2KCYigiMMv0E0FHCJZUN4
9l17TmxSC23fyVXt6wnbIprGoJVjH8jSnuUXZbGTuQ9+W9PpEhcQqskaZhYZ7nej
/I+HjQZJoyWiAlg5lmS0XiH9oluoJ4T+Qap7rY3J44XocVlWDbDqAoF41+n1uiSZ
2NSa+sHrQXik8mePYlb4qSYh+IcjA/H7ZxX3nh71DjFxBKP2
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:28:15 2023 by rpki-client on console-fra.rpki-client.org