Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/oGKj4WbTUh_ZLQcYcOhJQLN7nzM.roa
File: oGKj4WbTUh_ZLQcYcOhJQLN7nzM.roa (raw, json)
Hash identifier: J52aSySoayU3cDZFn9YJVSjEwdHnQgGidKxGGlb+1Go=
Subject key identifier: A0:62:A3:E1:66:D3:52:1F:D9:2D:07:18:70:E8:49:40:B3:7B:9F:33
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/oGKj4WbTUh_ZLQcYcOhJQLN7nzM.roa
Signing time: Thu 15 Sep 2022 02:48:15 +0000
ROA not before: Thu 15 Sep 2022 02:48:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10126
IP address blocks: 220.128.56.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A062A3E166D3521FD92D071870E84940B37B9F33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:af:a1:e5:63:4c:3c:ae:8e:34:3c:d1:ec:43:
33:1f:df:b7:51:a2:71:66:03:8f:f7:c2:90:71:06:
c9:a4:0d:4b:74:f9:c2:81:5c:3d:f1:6d:0f:08:58:
3a:b7:5f:6b:62:0f:14:13:50:1f:a5:0a:05:fb:56:
c3:ab:18:b8:a5:1c:43:5d:b4:71:7f:b5:8e:6b:3e:
e0:49:ed:3d:4e:d9:77:7e:a8:6b:17:85:93:d7:8e:
2a:e9:c4:0f:eb:d1:b5:f4:11:ef:9b:31:89:ba:e9:
e7:95:29:23:1a:c5:e4:c6:57:37:9a:14:ac:54:f8:
66:8f:fb:f0:ab:c9:e8:ce:ea:44:b9:72:0e:76:ce:
ff:7a:42:95:57:f2:9b:5a:f7:5c:95:a1:7b:9e:b1:
ed:d2:f4:98:76:e5:43:d8:37:da:d7:cf:cc:75:e2:
84:03:8b:0b:28:3b:aa:79:8e:62:5f:4e:91:28:15:
9f:7e:4a:f1:f2:3f:aa:f5:ee:fe:d1:7f:11:9c:06:
19:76:26:01:e0:65:b4:3a:5d:31:c9:17:4f:7d:a4:
1a:b5:ab:d5:cf:12:06:2e:14:56:ed:52:20:0c:fd:
74:31:72:ad:e1:61:9c:7d:99:5e:17:fa:cd:5b:bb:
17:af:09:c8:27:40:73:d6:34:ac:84:0d:e2:d1:2f:
55:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:62:A3:E1:66:D3:52:1F:D9:2D:07:18:70:E8:49:40:B3:7B:9F:33
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/oGKj4WbTUh_ZLQcYcOhJQLN7nzM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.56.0/21
Signature Algorithm: sha256WithRSAEncryption
79:b1:06:b9:ef:40:7b:52:95:4a:37:29:1c:57:68:07:5c:5c:
91:51:2a:0c:99:f4:a4:43:64:2c:3b:67:0f:29:79:af:97:7c:
d7:bc:9b:dd:1e:31:47:35:ac:c7:f4:58:bb:dd:1b:e1:e7:fd:
8a:47:40:09:d5:ca:f2:40:c7:06:8f:4e:f0:54:1a:d3:9a:42:
b3:99:36:cb:9f:35:5c:0a:dd:45:37:0b:9e:d2:8c:66:2f:6e:
ad:00:fd:06:3b:81:e7:08:57:26:26:e0:a4:a4:e1:96:d7:e6:
23:73:fa:c1:9f:d3:ed:fe:d3:80:49:56:46:31:66:05:b1:ea:
ed:59:e5:ca:5f:c6:b4:b6:57:41:b1:21:d3:85:70:f8:2c:e9:
b6:92:09:20:25:40:cc:d9:58:92:8b:10:88:1d:4a:48:d7:a3:
b9:00:f1:fd:45:69:33:f4:0e:08:a4:64:80:79:3f:48:c3:59:
1f:65:35:bf:4a:b9:1d:3b:b7:7f:06:fd:47:fe:66:ab:31:e8:
08:56:67:4a:c3:e2:52:7a:f0:6a:80:cc:42:af:e7:01:a1:24:
02:a5:1b:fa:88:1c:1c:ac:a4:0c:68:75:39:b1:ae:87:e3:24:
05:a5:04:fc:36:89:ff:87:a0:4f:55:be:5a:ef:60:0f:34:39:
f4:0a:18:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:41 2023 by rpki-client on console-ams.rpki-client.org