Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/72TvVv7Ud_0Gk98oLqIhJ3p_iQI.roa
File: 72TvVv7Ud_0Gk98oLqIhJ3p_iQI.roa (raw, json)
Hash identifier: FO9jQ5psEKz/UwiNUrePYU0nWsqREp4gN6sX1FDh9nI=
Subject key identifier: EF:64:EF:56:FE:D4:77:FD:06:93:DF:28:2E:A2:21:27:7A:7F:89:02
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/72TvVv7Ud_0Gk98oLqIhJ3p_iQI.roa
Signing time: Thu 15 Sep 2022 02:49:46 +0000
ROA not before: Thu 15 Sep 2022 02:49:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 211.78.0.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EF64EF56FED477FD0693DF282EA221277A7F8902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:13:4d:ff:b4:40:58:8c:b1:0d:ca:e9:0a:21:
31:8a:d9:8a:8e:e6:8f:90:08:86:b7:e0:aa:92:0d:
d1:4f:d4:a0:99:8d:58:c9:0e:5d:86:ee:8b:a7:c5:
0c:da:b4:03:f6:7e:66:bc:83:eb:27:06:ee:ec:6b:
bc:02:f3:d2:18:67:3d:45:06:b3:8f:1a:cf:e9:5f:
4d:10:cd:9b:92:38:64:f8:e9:ab:6d:e2:56:e3:f3:
e8:03:d8:d7:76:9d:4a:7a:7d:37:9c:13:77:92:7c:
1e:51:f7:ce:19:dc:c9:8b:2d:70:a3:3f:60:82:c4:
c9:c8:80:6a:10:80:56:ac:98:0f:ee:10:6c:6c:58:
5c:e7:77:4b:71:5c:54:f9:55:2a:42:92:6b:a8:09:
6e:4c:c8:b9:99:47:64:dc:4c:1b:76:09:3d:f2:c7:
df:0e:3d:8d:12:05:85:aa:25:d4:25:b8:6a:bb:a5:
59:f8:2f:0a:e4:d5:1d:cd:88:12:68:1a:ce:32:d4:
a4:bb:61:e9:bc:81:39:24:01:11:a9:bf:31:04:3c:
92:8c:aa:a4:bf:80:2b:23:a3:3f:4f:4a:ec:95:7b:
3a:1f:36:06:00:ea:09:76:56:8b:28:74:c6:c5:d3:
fd:b4:12:c8:56:71:6c:3f:47:ae:76:d9:2b:e4:fc:
cf:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:64:EF:56:FE:D4:77:FD:06:93:DF:28:2E:A2:21:27:7A:7F:89:02
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/72TvVv7Ud_0Gk98oLqIhJ3p_iQI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.0.0/18
Signature Algorithm: sha256WithRSAEncryption
04:0d:11:35:fe:95:5a:ad:69:4e:f2:b6:65:93:62:ca:f0:79:
d1:de:ab:ba:5b:b5:b1:70:c6:f2:65:03:d6:5f:22:ac:cf:17:
0a:23:c1:d9:e4:43:8d:e0:c4:bd:b3:22:6d:50:22:b8:59:5d:
92:4c:5a:93:9d:e1:de:5f:6b:72:9f:ba:7d:11:e6:e5:25:a7:
aa:77:f6:97:d6:37:02:33:8f:d4:ff:d4:76:e4:09:6f:b7:ce:
0e:24:96:70:2a:4c:16:f4:c8:c5:63:43:37:e0:5d:e9:9d:f9:
ab:7f:61:90:15:8c:4c:72:d1:94:43:61:1d:1b:ac:c1:b9:bc:
40:f5:e3:f2:03:7f:b7:e4:c1:0c:35:db:81:52:00:07:b1:95:
41:0c:d2:c3:20:fe:ca:e1:ce:9a:2f:b8:8d:13:d0:49:70:de:
4d:10:a0:24:66:42:46:99:58:04:8a:6a:32:cc:cb:05:2c:9f:
e3:45:74:be:b0:77:2f:13:12:58:aa:34:cb:97:b5:fd:13:bc:
1a:70:d6:6c:3a:7a:f0:78:50:e6:2d:2a:10:ae:52:80:82:6a:
d4:00:99:8a:c7:8a:79:30:e2:94:2d:76:6f:f3:00:eb:29:71:
db:1b:b9:a6:33:d4:3c:b4:5f:bc:f6:d9:16:6b:80:4c:fa:e4:
12:16:9e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:49 2023 by rpki-client on console-ams.rpki-client.org