Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/Vds4bzz5YgghJ5HGqNMn11iE1Ww.roa
File: Vds4bzz5YgghJ5HGqNMn11iE1Ww.roa (raw, json)
Hash identifier: QvOzKZ8Kgzm836O6eXaXqPzNQVrxQHu2fgKeVwZvRHs=
Subject key identifier: 55:DB:38:6F:3C:F9:62:08:21:27:91:C6:A8:D3:27:D7:58:84:D5:6C
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Vds4bzz5YgghJ5HGqNMn11iE1Ww.roa
Signing time: Thu 15 Sep 2022 02:49:48 +0000
ROA not before: Thu 15 Sep 2022 02:49:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 211.78.0.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=55DB386F3CF96208212791C6A8D327D75884D56C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:26:92:05:37:c5:f0:b2:d5:09:ac:16:77:f0:
74:c1:5d:ac:cc:f5:49:48:9f:8c:09:5d:e2:12:b6:
64:6d:1c:2b:b5:41:60:a9:d1:9a:fc:92:1d:19:b8:
5c:7e:62:83:9e:9c:c4:0e:26:22:cb:0b:88:0a:d8:
ee:a7:15:1f:fe:aa:31:22:6c:e6:06:a6:f1:fb:3e:
12:04:6e:ab:83:80:ce:4b:d2:6b:45:f3:5f:0f:71:
26:e8:d1:8d:f4:83:4d:5b:69:3f:f0:dc:0d:9f:d6:
9b:2b:1e:22:04:f8:e3:c0:ad:41:b4:51:14:4b:34:
be:bf:b3:9e:34:6a:b3:24:f3:d6:13:2a:81:f1:89:
d2:ac:da:6f:76:41:e8:61:a9:05:7e:98:e1:8a:cc:
fe:78:d2:52:0c:14:df:e3:f9:91:cf:c9:6d:c2:7d:
f7:73:28:59:4c:97:50:68:ea:a3:9c:57:c6:37:21:
e6:65:2f:e7:55:17:32:9a:78:b4:38:25:8b:1d:5c:
86:19:63:31:87:4a:23:ab:95:d6:13:f8:a8:cc:06:
6c:f7:58:6e:6a:7f:44:8b:12:28:45:64:f6:41:30:
9f:de:2a:5d:29:2f:b9:a5:b5:ed:ad:9a:d2:85:60:
68:fa:79:fa:35:ac:55:0d:33:c9:53:02:26:51:1a:
2a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:DB:38:6F:3C:F9:62:08:21:27:91:C6:A8:D3:27:D7:58:84:D5:6C
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Vds4bzz5YgghJ5HGqNMn11iE1Ww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.0.0/18
Signature Algorithm: sha256WithRSAEncryption
95:b9:9a:53:5e:fb:07:b8:12:9a:f8:9b:d1:26:3a:6c:83:52:
a1:ef:e6:40:1d:c8:c3:a9:da:05:b7:81:59:b9:e3:0c:c4:7f:
b3:90:69:a1:ec:54:c6:2d:6e:31:de:5f:e4:86:90:20:34:bb:
d1:5e:f6:74:c1:fc:fc:20:cb:39:be:06:78:2e:0e:b8:e2:bf:
2a:57:3b:40:15:39:85:c3:ce:24:76:49:72:70:3b:fa:1c:fc:
ad:fa:0a:62:52:af:9c:28:8d:77:56:f1:e5:80:97:a9:9c:e1:
be:6d:f7:93:ed:7a:16:46:db:a4:64:1a:b8:a2:8e:2a:bc:73:
26:55:21:5f:d0:2e:9f:fa:b5:07:4c:62:4f:18:d2:de:c0:c7:
be:43:bc:16:29:04:26:28:fa:f1:ed:7d:70:63:9f:34:e7:ee:
78:e0:44:65:db:16:a3:d0:f6:9d:6a:1b:32:29:fd:9a:ee:1e:
dc:02:41:ff:fd:b4:1f:d3:24:6f:80:13:23:d9:70:cd:03:f4:
5a:14:f5:58:39:56:a0:2d:9f:60:db:e5:a2:ab:1c:5a:da:f7:
ab:b2:d9:ce:98:e4:bf:f7:70:c9:f7:95:5f:aa:3d:14:2d:b3:
0d:fd:15:92:db:b5:94:d3:ce:b1:8b:5b:fd:88:cb:87:c0:6b:
5b:87:3f:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:49 2023 by rpki-client on console-ams.rpki-client.org