Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/c7DRgvzi93wugxpDNOkSIlmBVCE.roa
File: c7DRgvzi93wugxpDNOkSIlmBVCE.roa (raw, json)
Hash identifier: hI/zMhVywvNERz4PczZLECZRfBBaDYa51BROCRocfO0=
Subject key identifier: 73:B0:D1:82:FC:E2:F7:7C:2E:83:1A:43:34:E9:12:22:59:81:54:21
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/c7DRgvzi93wugxpDNOkSIlmBVCE.roa
Signing time: Thu 15 Sep 2022 02:49:50 +0000
ROA not before: Thu 15 Sep 2022 02:49:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9919
IP address blocks: 61.61.0.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=73B0D182FCE2F77C2E831A4334E9122259815421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:34:36:cf:59:b0:04:ba:a7:54:17:ad:f4:b8:
3c:4a:b1:ee:b9:ab:2f:c0:ef:5d:a3:8a:e6:16:65:
eb:dd:85:ad:0d:db:dc:58:59:08:d5:eb:5b:71:e7:
59:b5:37:d3:83:dc:d0:a1:09:50:cb:70:ba:0a:3b:
09:77:93:bc:91:13:21:3d:8a:bf:61:95:ff:9c:9c:
cc:a5:76:bc:c2:6f:1d:03:cc:bc:a1:d7:03:2c:21:
77:5a:a8:65:b7:a9:a0:66:13:f9:b8:72:f5:8c:5e:
f5:a6:a6:c9:df:0a:c7:b4:eb:ec:33:f6:ca:82:3c:
4a:16:ff:ea:2d:d3:f3:81:a6:f9:28:ac:9b:73:72:
e1:e0:5b:27:8a:61:f6:8b:21:82:76:d7:69:6b:d7:
18:18:4d:48:84:d2:9c:cc:9a:25:1c:3b:61:aa:6c:
6b:81:99:c5:2f:06:e5:87:7a:89:90:24:70:29:79:
fb:46:13:60:53:3f:b5:05:70:4e:fc:c0:2c:d5:05:
9b:33:da:0e:1b:32:eb:2d:da:d8:57:b8:8e:bf:3c:
32:67:cd:dc:d2:db:37:43:aa:79:ee:64:3d:d1:ac:
58:2d:3d:eb:de:38:5f:4c:9f:70:66:fd:70:ac:80:
ff:45:08:2b:3c:12:8f:1a:e1:01:0e:69:f3:4b:d8:
a5:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B0:D1:82:FC:E2:F7:7C:2E:83:1A:43:34:E9:12:22:59:81:54:21
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/c7DRgvzi93wugxpDNOkSIlmBVCE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.0.0/17
Signature Algorithm: sha256WithRSAEncryption
12:e8:d9:4d:97:41:56:0a:80:7c:58:e4:b0:f3:f0:6b:69:9d:
29:c2:d1:d4:3a:61:e4:ac:f0:84:c6:f4:ee:6f:5f:76:92:a4:
2b:05:62:bf:5b:d1:88:36:c4:53:5f:7c:5d:cc:c6:83:d1:d3:
16:a4:54:ee:40:f8:bd:b6:4c:ee:3f:2b:fc:7e:26:9e:b8:5f:
f4:d0:f7:e2:28:c8:e7:27:2c:86:75:50:f6:05:e6:89:91:a1:
5d:a7:a1:d7:8e:90:f9:5c:c0:97:14:ee:34:b7:72:7c:28:be:
36:6f:70:06:91:eb:e4:0a:6a:70:78:5c:cb:e6:de:79:a6:8b:
c3:f9:e0:d2:00:18:9c:82:33:8c:10:cf:79:f4:96:6b:dc:46:
87:70:86:ff:d9:a9:93:13:9c:02:96:c6:1a:ff:69:c5:7b:15:
b5:ad:4e:a8:dc:a4:da:d7:38:58:0d:bb:f5:82:74:e7:19:37:
8f:ea:4f:c6:ca:80:3d:1b:1d:bd:04:28:fc:dc:f6:f6:26:c9:
bb:fd:b5:ca:86:66:d7:71:f4:a9:80:72:c2:94:4c:4d:d0:fe:
96:53:7a:51:18:62:c8:3c:4f:44:ab:11:57:a1:c0:7a:8e:6f:
e4:06:7d:5b:06:0b:33:09:81:c1:46:e2:14:6c:c4:9c:08:fe:
46:40:e2:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:52:49 2023 by rpki-client on console-ams.rpki-client.org