Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/qstkcFF5bdqZVX8Se-zgCm7a3LY.roa
File: qstkcFF5bdqZVX8Se-zgCm7a3LY.roa (raw, json)
Hash identifier: pBI8Ym5CCbYPy1RAIiWvDN6E/Yzc/yADiXPpB/QG+OY=
Subject key identifier: AA:CB:64:70:51:79:6D:DA:99:55:7F:12:7B:EC:E0:0A:6E:DA:DC:B6
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0AE8
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/qstkcFF5bdqZVX8Se-zgCm7a3LY.roa
Signing time: Thu 15 Sep 2022 02:40:52 +0000
ROA not before: Thu 15 Sep 2022 02:40:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9416
IP address blocks: 124.155.128.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2792 (0xae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 15 02:40:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AACB647051796DDA99557F127BECE00A6EDADCB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:52:9e:8d:2b:65:80:b9:7a:c7:a3:0a:d0:03:
df:00:8f:04:3a:c4:76:6f:51:2a:05:79:e0:ac:9c:
95:ac:ed:75:cb:fe:59:84:00:d6:95:06:dd:c1:c2:
65:e0:7e:ed:4c:ed:95:d5:ba:d1:d3:db:e2:ae:9c:
49:b5:21:8d:28:80:da:af:57:74:5d:a9:30:c2:5e:
b9:37:7c:f0:9c:c9:7e:4b:b9:02:cd:4b:3f:d6:90:
89:20:de:86:7e:da:6f:1a:f6:99:41:62:d5:eb:ec:
12:cd:e3:85:e8:7d:eb:a5:ba:85:23:01:91:b4:ad:
0a:b4:28:33:5c:f1:ff:b5:33:ab:bc:a4:bb:26:3f:
a7:47:87:00:1d:d5:d5:ec:9d:5e:47:d8:db:69:3f:
5b:11:ed:10:4b:5b:ee:2e:c0:0a:f4:f9:41:a8:41:
f6:df:55:6c:6f:ba:8d:b1:4f:46:2f:5d:38:17:31:
5a:ab:a9:5f:94:36:c7:86:f6:8d:bd:3b:94:e1:9f:
8d:ab:2f:ef:c8:26:ce:29:bd:31:9c:e6:cb:88:71:
1c:71:23:44:02:f5:df:2b:26:4a:bb:3d:3b:26:61:
e0:c8:7a:24:08:89:53:b4:9b:04:52:45:65:00:0e:
02:6e:c8:23:ef:10:d9:62:29:4e:a4:c9:c5:d0:7f:
e0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:CB:64:70:51:79:6D:DA:99:55:7F:12:7B:EC:E0:0A:6E:DA:DC:B6
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/qstkcFF5bdqZVX8Se-zgCm7a3LY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.155.128.0/19
Signature Algorithm: sha256WithRSAEncryption
92:36:26:9a:66:9a:04:09:d0:49:79:f3:b9:4c:1f:20:58:1e:
b5:e8:09:a6:08:c0:51:2f:83:70:21:6a:34:ea:ff:30:5a:a9:
ac:64:9b:84:96:cd:ea:2a:1a:b1:bf:02:7f:0b:ce:dc:64:ff:
55:fb:c0:2c:d3:b5:90:7a:e5:8f:e6:0f:e4:f2:1d:33:62:ef:
61:76:52:61:c8:cf:84:df:41:11:26:40:4a:d8:19:51:61:c4:
e4:d7:91:85:4c:a2:1e:09:8b:8b:01:3c:f3:07:5f:05:37:b1:
46:83:b6:58:ad:d2:38:b7:f1:d6:d6:2f:78:ab:c8:ad:9e:f2:
a7:e5:29:47:1e:ee:9e:1f:08:a9:d7:09:fa:ff:c9:4e:56:85:
db:60:82:48:cf:68:c3:95:47:ec:f7:cc:58:16:25:46:3a:30:
35:9f:88:b2:05:73:a8:91:5f:c5:30:7b:94:bb:1d:ff:88:a2:
2d:4d:5e:79:82:fd:15:06:ff:69:30:be:32:16:dd:35:79:23:
2e:5d:70:b6:cd:1c:24:37:e0:02:12:29:19:71:da:e8:55:e3:
c4:03:19:93:da:30:66:92:b7:44:30:ae:4e:bd:6b:db:38:22:
84:a4:83:66:8c:e5:ad:12:55:b7:aa:34:ed:0c:87:17:c9:98:
9a:a3:83:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:14 2023 by rpki-client on console-fra.rpki-client.org