Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/GLLZ9MATA7lO-Uon82rKg4RVwbM.roa
File: GLLZ9MATA7lO-Uon82rKg4RVwbM.roa (raw, json)
Hash identifier: mOI7CDLV2XvQWf1ZnAx1/HjkRovLv0RUvPD5NVpBHPg=
Subject key identifier: 18:B2:D9:F4:C0:13:03:B9:4E:F9:4A:27:F3:6A:CA:83:84:55:C1:B3
Certificate issuer: /CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6
Certificate serial: 0A21
Authority key identifier: 32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/GLLZ9MATA7lO-Uon82rKg4RVwbM.roa
Signing time: Thu 15 Sep 2022 02:37:33 +0000
ROA not before: Thu 15 Sep 2022 02:37:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18046
IP address blocks: 220.158.228.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2593 (0xa21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6
Validity
Not Before: Sep 15 02:37:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=18B2D9F4C01303B94EF94A27F36ACA838455C1B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2d:49:91:3f:4f:6b:8b:14:29:21:43:56:ab:
8f:41:99:da:b6:45:14:d4:88:77:8c:c8:71:a2:ab:
5b:e8:ae:8f:48:b3:8f:bc:31:57:6a:ae:17:22:10:
55:4c:86:89:80:c7:15:6a:a7:a8:ed:0a:6d:92:6a:
ed:61:f2:55:a8:e6:68:f2:21:b9:e6:8a:25:6c:dd:
20:d5:ad:00:cc:ae:a2:52:45:c7:69:4d:9f:48:06:
f1:98:cc:26:08:d8:02:a9:26:66:3d:78:14:33:f8:
11:e7:2e:ac:1b:33:9d:48:47:5b:60:db:63:2a:6d:
7f:b4:93:59:c6:81:48:f5:ee:7e:d9:1b:f2:fd:35:
e4:db:44:22:69:79:41:a4:e1:96:56:a9:9d:6d:2d:
fe:75:a5:0d:15:77:e5:b0:4c:bd:79:3f:92:dc:ba:
c9:e7:e6:32:13:e2:67:4e:c8:97:c7:56:6d:6c:b8:
fa:f6:31:32:15:80:df:5b:ae:eb:65:7d:d7:96:52:
27:5f:17:8c:67:a7:aa:32:92:c7:17:0b:8c:df:35:
c2:06:57:4a:0a:a7:78:4e:55:f5:df:14:5a:1d:88:
39:67:1c:b3:0a:3f:35:4f:19:1e:bb:fe:62:bc:9a:
2e:09:ef:9a:2e:fd:c3:70:aa:5c:b5:e3:67:c4:1f:
e3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:B2:D9:F4:C0:13:03:B9:4E:F9:4A:27:F3:6A:CA:83:84:55:C1:B3
X509v3 Authority Key Identifier:
keyid:32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/GLLZ9MATA7lO-Uon82rKg4RVwbM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.158.228.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:e2:0a:74:41:63:f6:0d:7e:cb:ec:93:5f:ba:ec:41:02:74:
cb:3d:10:47:d5:41:34:3a:2c:a4:b0:76:d0:3a:18:1a:0d:52:
c0:7b:54:a1:c5:0a:f7:8a:05:0e:0c:62:36:a3:10:5b:25:19:
0e:27:af:e4:9f:c0:3d:86:f0:11:e2:95:28:c0:c8:e1:b5:61:
43:83:5b:da:8e:01:ef:83:2e:91:02:11:32:c5:59:6d:2d:b3:
d4:08:2e:e8:91:6b:92:a1:86:5b:70:79:d1:8d:eb:0a:f9:b5:
cc:42:f7:60:d5:ae:c8:f6:b8:d7:f1:75:04:7c:0e:99:81:0b:
2a:86:13:23:6a:35:fd:7d:77:5e:bf:17:12:05:0d:17:84:f8:
41:3a:3f:91:ec:00:46:15:d8:dc:ae:33:67:9c:b9:72:27:a2:
ac:a3:78:e2:a5:80:90:4a:9d:e6:89:74:41:bf:5a:a8:7a:59:
e5:84:63:b3:a9:9b:30:90:a4:01:a8:d2:b6:44:29:46:f7:27:
2d:7d:5a:0a:e8:67:6e:53:ed:26:d7:2f:c1:fc:99:ce:09:3b:
dc:1c:ad:6a:29:58:66:2f:47:eb:c9:67:c1:14:d6:39:be:d6:
cb:e9:c2:8c:ea:3e:f2:26:00:80:09:84:35:f3:43:21:32:16:
7b:82:a3:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:41 2023 by rpki-client on console-ams.rpki-client.org