Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/v47HgHClYQ8f_tuSc8ddpAoHxsc.roa
File: v47HgHClYQ8f_tuSc8ddpAoHxsc.roa (raw, json)
Hash identifier: 5JN3Gz7Ss4KYYfxh6OP1UgyfuSTOkRPxgShnLPYTpoA=
Subject key identifier: BF:8E:C7:80:70:A5:61:0F:1F:FE:DB:92:73:C7:5D:A4:0A:07:C6:C7
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/v47HgHClYQ8f_tuSc8ddpAoHxsc.roa
Signing time: Thu 15 Sep 2022 02:48:13 +0000
ROA not before: Thu 15 Sep 2022 02:48:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 220.128.0.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=BF8EC78070A5610F1FFEDB9273C75DA40A07C6C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:72:b3:fe:51:57:4b:22:82:08:e8:fa:71:82:
f8:48:b2:c8:1d:cb:ef:73:c1:da:d4:08:2e:58:2b:
79:85:c4:04:51:0e:5a:79:fa:51:32:b7:d4:18:bb:
c8:00:dd:a2:7e:97:11:38:44:02:2c:d1:12:eb:66:
dc:97:e4:92:ea:c3:2f:56:1b:1f:70:bc:a3:57:ab:
24:3b:bd:ff:f6:a0:60:aa:00:c1:92:54:a8:7f:96:
d1:aa:8e:74:ee:73:c4:55:cc:96:f5:d4:0c:4c:83:
52:d9:22:03:53:ce:16:d5:e3:cd:42:fc:00:0e:80:
10:86:bf:d5:51:82:87:d3:a8:36:4a:89:18:bf:04:
9c:5d:b7:41:f8:10:29:14:35:3d:a9:bd:4c:31:40:
40:8d:ed:57:ef:9f:46:92:d2:16:ad:dd:8d:61:e8:
85:9b:ed:d6:12:72:57:75:27:7d:9f:ae:be:47:ba:
e9:d6:33:00:b4:65:86:8a:88:1b:3e:b0:71:83:1a:
38:d9:61:32:55:4a:9f:79:e3:84:cb:86:c3:58:a7:
98:30:45:03:f5:9f:b9:80:10:47:a0:f0:e4:a0:83:
71:6e:80:58:77:d4:e0:75:67:77:be:7a:5b:19:f3:
c3:be:04:31:00:80:3b:66:a7:41:cb:95:40:48:6f:
f6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:8E:C7:80:70:A5:61:0F:1F:FE:DB:92:73:C7:5D:A4:0A:07:C6:C7
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/v47HgHClYQ8f_tuSc8ddpAoHxsc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.0.0/18
Signature Algorithm: sha256WithRSAEncryption
0b:ab:61:ff:2f:40:c6:59:61:5b:f4:11:f5:b8:c2:68:ff:32:
0b:e7:a2:f8:3c:ca:fc:e6:5d:05:bc:af:0c:3b:da:00:91:74:
8a:aa:9c:01:c0:6d:88:b6:e8:3b:99:c4:0f:b1:8c:be:87:8a:
83:bb:18:57:60:43:0d:6b:ce:3d:29:4e:4a:55:86:09:78:91:
32:ed:2f:4f:d3:88:8b:5d:79:54:1f:63:70:4f:b9:2d:85:4b:
79:94:80:46:d1:e8:39:d6:48:9a:c2:75:09:fd:e2:68:43:fa:
05:1e:06:24:19:d0:5a:6b:d0:7b:8a:7c:08:1d:49:d3:79:7b:
2e:fc:17:53:96:ef:d0:b4:73:28:11:cc:fa:bc:3e:f2:26:d6:
ed:6a:34:49:38:7e:c9:75:5a:77:d4:5b:8c:90:9c:c0:07:ac:
07:c8:bb:c6:05:f3:83:b8:0a:eb:73:85:64:4c:d2:78:d8:40:
4c:94:7c:c4:42:fe:df:a0:fa:92:5e:c8:70:8c:21:9a:60:bf:
40:33:dc:5f:d1:7d:2c:85:bf:2c:55:51:7e:0a:f9:bd:62:32:
05:1e:ce:74:5a:7e:0a:64:92:22:83:4e:24:57:2a:89:e7:ce:
d8:62:6f:70:a5:5e:81:c8:e0:76:1a:27:d6:b8:d1:51:40:0b:
2b:ab:4c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:28:15 2023 by rpki-client on console-fra.rpki-client.org