Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/gFGYOka6nFvbwlmluaNEk-5vwjA.roa
File: gFGYOka6nFvbwlmluaNEk-5vwjA.roa (raw, json)
Hash identifier: gtW11CwcnOkSq9n0vgKp3+jBqMr83ob/A4kWII5KzgY=
Subject key identifier: 80:51:98:3A:46:BA:9C:5B:DB:C2:59:A5:B9:A3:44:93:EE:6F:C2:30
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/gFGYOka6nFvbwlmluaNEk-5vwjA.roa
Signing time: Thu 15 Sep 2022 02:49:54 +0000
ROA not before: Thu 15 Sep 2022 02:49:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 61.61.71.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8051983A46BA9C5BDBC259A5B9A34493EE6FC230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ad:6f:c3:6b:b8:25:a7:1e:79:d9:c9:ec:2e:
28:d7:d0:77:78:ed:ea:a0:68:5c:5a:ee:08:91:38:
39:1f:c7:57:18:60:68:6f:00:8c:eb:55:1f:4e:26:
01:45:52:6d:cb:4d:0f:77:d8:fb:bc:ac:1a:f8:ba:
5e:2b:c3:13:2c:71:ff:d9:8e:fb:5f:2d:62:15:73:
95:c9:fa:28:f9:9c:76:26:bd:8c:a0:8f:87:07:01:
72:a3:3e:af:43:54:b8:c1:9a:e0:78:02:f1:37:8a:
72:cf:80:40:55:f9:bc:e1:f8:74:28:9b:32:88:24:
b1:5d:d3:5f:15:35:2e:61:ec:ca:c4:b8:48:8f:aa:
9c:25:c7:0f:ee:66:b7:0f:f0:b6:17:00:f1:60:e0:
13:70:12:7e:63:a0:2a:cd:3f:66:7e:43:6d:4c:f8:
78:3a:00:7d:b1:9e:3f:94:a8:06:22:6c:0a:e6:c1:
bc:85:e7:bf:2c:3a:96:6d:fa:ba:d7:89:04:22:fd:
01:8c:c5:ca:87:43:62:2c:9c:6f:36:24:b6:97:34:
4c:f2:8b:f0:5c:dc:30:83:fb:30:51:c5:68:96:0d:
c9:53:df:1b:08:aa:78:61:a1:ef:bf:7c:77:33:25:
91:f5:e7:6c:3a:b5:e7:12:24:38:fd:e6:5e:39:52:
ea:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:51:98:3A:46:BA:9C:5B:DB:C2:59:A5:B9:A3:44:93:EE:6F:C2:30
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/gFGYOka6nFvbwlmluaNEk-5vwjA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.71.0/24
Signature Algorithm: sha256WithRSAEncryption
42:e4:c3:cf:49:b2:d5:83:79:ac:e0:53:02:4c:e4:a9:03:d7:
20:97:14:92:7f:c9:65:aa:9e:82:bd:4c:ec:82:e1:34:e8:70:
1f:b3:ff:84:c9:b4:2c:5c:8d:76:93:83:79:26:3d:4a:87:76:
49:04:83:c7:d8:f4:eb:7e:16:45:fa:80:58:df:9a:f6:7c:dc:
f7:78:cc:56:a0:73:3d:ce:c9:38:15:84:b4:29:be:55:ab:08:
8d:a1:9b:9f:f2:45:7d:e1:7b:f3:74:30:28:d2:c0:eb:3a:42:
f6:7d:ad:87:f8:48:31:60:f3:4a:7b:0a:11:16:68:f7:50:58:
bd:cb:ca:0b:e3:bc:7e:5f:82:c6:1f:ed:9f:ad:74:a5:5a:33:
3d:39:c4:68:47:e1:32:78:f8:26:b5:9c:ad:db:37:bc:a8:9d:
cd:3c:ae:a2:1f:fe:27:cb:4c:96:db:b9:26:b0:fd:dc:23:23:
28:f0:0b:ac:9e:ce:2d:c1:e7:56:0a:75:7f:cd:d4:d2:1d:f6:
2c:24:3f:bc:58:4b:af:3c:84:0d:79:0a:4a:6d:ba:bf:7e:47:
88:f0:dd:2f:d0:7a:58:9f:37:b4:a0:a9:ed:57:89:02:8f:6f:
c2:3c:bb:01:8b:a9:0c:b2:c9:07:bd:0b:49:45:80:43:f3:f1:
0d:a5:24:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:53:14 2023 by rpki-client on console-fra.rpki-client.org